Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-05-2023
Exécuté par Ramzi (administrateur) sur FILALI (25-05-2023 22:21:07)
Exécuté depuis C:\Users\Ramzi\Downloads\FRST64.exe
Profils chargés: Ramzi & cathy
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe <2>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <8>
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis, Inc -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe <2>
(C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(explorer.exe ->) (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(Logitech Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LogiTray.exe <2>
(services.exe ->) (Acronis, Inc -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis, Inc -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
(services.exe ->) (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe
(services.exe ->) (GuinpinSoft inc) [Fichier non signé] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(services.exe ->) (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(services.exe ->) (Logitech -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe <2>
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(services.exe ->) (Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe
(services.exe ->) (Thrustmaster®) [Fichier non signé] C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.22031.10091.0_x64__8wekyb3d8bbwe\Music.UI.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxOutlook.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxTsr.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384360 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [256952 2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Service Scheduler2 Acronis] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [358024 2009-09-12] (Acronis, Inc -> Acronis)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2023-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-11-16] () [Fichier non signé]
HKLM-x32\...\Run: [LogitechVideoRepair] => C:\Program Files (x86)\Logitech\Video\ISStart.exe [458752 2005-06-08] (Logitech Inc.) [Fichier non signé]
HKLM-x32\...\Run: [LogitechVideoTray] => C:\Program Files (x86)\Logitech\Video\LogiTray.exe [217088 2005-06-08] (Logitech Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409936 2018-02-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5081912 2009-09-12] (Acronis, Inc -> Acronis)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [30870320 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [30870320 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Run: [SoftAuto.exe] => C:\Program Files (x86)\Creative\Software Update 3\SoftAuto.exe [405504 2008-08-13] (Creative Technology Ltd) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412984 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2602424 2023-05-22] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\MountPoints2: {31079735-e8ce-11ec-9d22-94de8088a8f7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\MountPoints2: {31079a41-e8ce-11ec-9d22-94de8088a8f7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\MountPoints2: {e9a635ec-3938-11e9-9cb1-94de8088a8f7} - "H:\CHECKINS.EXE"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1002\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [30870320 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2602424 2023-05-22] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1002\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2023-03-15] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1002\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2602424 2023-05-22] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2602424 2023-05-22] (Microsoft Corporation -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\...\MountPoints2: {31079735-e8ce-11ec-9d22-94de8088a8f7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\...\MountPoints2: {31079a41-e8ce-11ec-9d22-94de8088a8f7} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\...\MountPoints2: {e9a635ec-3938-11e9-9cb1-94de8088a8f7} - "D:\CHECKINS.EXE"
HKLM\...\Windows x64\Print Processors\JournalPrint: jnwppr.dll (Pas de fichier)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.127\Installer\chrmstp.exe [2023-05-20] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2020-04-06]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Config.lnk [2018-03-25]
ShortcutTarget: Wireless Config.lnk -> C:\Program Files (x86)\Wireless Technology Corporation\Wireless LAN 802.11b USB\ZDConfig.exe () [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0F2A54F6-9DB4-4FF0-9784-263693FF3236} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "48510b77-0a2f-49d5-9f94-6bbfb0eeb004" --version "6.11.10455" --silent
Task: {1C99D612-11CC-4550-A519-030A369548AC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1004 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4194736 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E90BECC-BE0D-4F7B-9378-3DE8C478813C} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2096976 2018-07-21] (Microsoft Windows Hardware Compatibility Publisher -> )
Task: {287C5828-0F42-4922-B5F5-B127EDF7D473} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {39BDAB7A-5770-4290-8280-00F80BCE1120} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-20] (Google Inc -> Google Inc.)
Task: {4260745E-4629-46CF-B080-D07A84CB34E1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BB43726-8A82-4CD0-9883-B3ECDA63838A} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {4FC7582E-531A-4D14-889A-68F355D3E725} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
Task: {69E83771-EA88-475D-B0AE-6DEDE3F74204} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {6C581711-BE64-4859-8439-CFD82260DE49} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {73E427C0-8BC7-4F8A-A97E-11381A18B26E} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6885240 2017-08-10] (Nero AG -> Nero AG)
Task: {753481CB-C1BA-45CC-9013-FA1A2D0BA5DE} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [4921784 2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {7B25B11F-77F6-49C4-9F89-C45D69FFB0B8} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4194736 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C4EBA84-DA61-43C6-B9AB-42A5A7D26BBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {7E006339-BD00-46AF-B387-2DFBF60F26AA} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2172344 2023-04-12] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {8EF2263C-E9E2-464B-9BE3-B78B6E8BFCD4} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe $(Arg0) (Pas de fichier)
Task: {A1CABBB4-E626-4A5A-A38B-A4DEB5C73EE6} - System32\Tasks\{DAF2CF7F-B377-4EC1-AFC1-AF4D76573782} => C:\Windows\system32\pcalua.exe [53760 2023-04-12] (Microsoft Windows -> Microsoft Corporation) -> -a "D:\Nouveau dossier\InstallDriver.exe" -d "D:\Nouveau dossier"
Task: {B48749D1-8461-43BA-BB82-37AC22F540CC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF48791A-4E79-4872-A9CE-E62DEE7CE635} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-20] (Google Inc -> Google Inc.)
Task: {D5519C5C-9292-4A96-AB0B-E3436ACCDE37} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4194736 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3526D4C-0B08-44BD-8087-9E34954A1297} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4194736 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E55CBBAA-75F9-456C-8BE9-781D190F9A69} - System32\Tasks\1215avtUpdateInfo => C:\ProgramData\Avg_Update_1215avt\1215avt_AVG-Secure-Search-Update.exe /SETINFO /CMPID=1215avt /INFORETRY=3 /RUNBY=AV (Pas de fichier)
Task: {E8F9BD10-F2E5-4222-9B2A-0E43E2D09F82} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FB8B0263-4FDB-4F40-A2BA-589B6E0D27FF} - System32\Tasks\CCleanerSkipUAC - Ramzi => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FE7E82B6-B641-46A5-984D-B4D340BBCDE3} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe [3172120 2023-05-16] (Google LLC -> Google LLC) -> "hxxp://www.cfos.de/fr/cfosspeed/documentation/status.htm?sw-10.26.2312&days=26"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0f508652-985c-4217-81f9-c0ba9c975f2f}: [DhcpNameServer] 1.1.1.2 1.0.0.2
Tcpip\..\Interfaces\{1f5ec951-5083-497c-8000-90b0cd03fe0c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{35749a76-8048-4dbf-83c5-c19eb8d01f33}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{36a1d29d-39ba-40df-85e4-bd937444d235}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{36a1d29d-39ba-40df-85e4-bd937444d235}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{5715404d-319b-40d0-bd11-34d5259c0e7f}: [DhcpNameServer] 1.1.1.2 1.0.0.2
Tcpip\..\Interfaces\{5a835435-dd55-4c74-b65a-0236fb1df7e6}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{5ba84044-ef32-4d15-b181-87a38b334c62}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{73b7c3cf-3488-49b1-8b96-e9bdf23018ca}: [DhcpNameServer] 192.168.202.220
Tcpip\..\Interfaces\{7b5f6a09-c392-48fc-89d4-2c713d3cdffc}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{ae3243ad-1ed9-4b53-8599-788eb772a9b4}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{e590ca20-afbd-436b-ba4c-91d591c55da0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{f033f8c6-d8c9-4215-85a5-4caa40063be0}: [DhcpNameServer] 1.1.1.2 1.0.0.2
Edge:
=======
DownloadDir: C:\Users\Ramzi\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-25]
Edge Extension: (Flash Video Downloader) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2020-10-05]
Edge Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2020-10-05]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-10-05]
Edge Extension: (MyJDownloader Browser Extension) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-09-27]
Edge Extension: (MyJDownloader Browser Extension) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ieapabanbplofifeaapjocpaogdhncdd [2022-05-23]
Edge Extension: (Edge relevant text changes) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-25]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-05-02]
Edge Extension: (Web Nanny) - C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pbdfeeacmbjblfbnkgknimpgdikjhpha [2020-10-05]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-10-20] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-10-21] [] [non signé]
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-02-14] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll [2015-08-28] (Nero AG -> Nero AG)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-02-14] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default [2023-05-25]
CHR Notifications: Default -> hxxps://www.maisonsdumonde.com; hxxps://www.rentacar.fr
CHR Extension: (Flash Video Downloader) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2019-05-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-11-17]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2015-10-21]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-05-25]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-06-28]
CHR Extension: (Cloud SWF Player with Drive) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffhhaadihgfcgmlefioblaahpnglnkbk [2017-03-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-24]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-04]
CHR Extension: (Local SWF Player) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmbckedabpbgjagmkgcejooabcdnone [2017-02-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Web Nanny) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdfeeacmbjblfbnkgknimpgdikjhpha [2017-05-19]
CHR Extension: (Beach) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pldjedicbnjmccbpbgbiddfbgilpgmgm [2019-05-24]
CHR Profile: C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-19]
CHR Profile: C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-12-17]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-12-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-14]
CHR Profile: C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-06-29]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [892072 2009-09-12] (Acronis, Inc -> Acronis)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088 2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-02-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2326920 2019-05-21] (Acronis, Inc -> Acronis)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [621496 2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [622008 2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8846264 2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [388968 2018-09-11] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063736 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [107832 2022-11-25] (Shenzhen Moyea Software -> Leawo Software)
R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe [9728 2022-11-19] (GuinpinSoft inc) [Fichier non signé]
R2 CTDevice_Srv; C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe [61440 2007-04-02] (Creative Technology Ltd) [Fichier non signé]
S3 CTUPnPSv; C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe [64000 2008-05-21] (Creative Technology Ltd) [Fichier non signé]
R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [4231408 2023-05-05] (Wondershare Technology Group Co.,Ltd -> wondershare)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2022-05-12] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S3 EPMVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{91D4576B-712E-46A2-995C-F6D18CDBD46E} [21312 2020-11-11] (Microsoft Windows -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncHelper.exe [3444152 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-07] (HP Inc. -> HP Inc.)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Fichier non signé]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-25] (Malwarebytes Inc. -> Malwarebytes)
R2 NativePushService; C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [755600 2022-09-17] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 NVWMI; C:\WINDOWS\system32\nvwmi64.exe [4436816 2018-07-21] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.091.0430.0001\OneDriveUpdaterService.exe [3779496 2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336256 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 tmGAInstall; C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe [32256 2016-03-23] (Thrustmaster®) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe [120016 2018-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleIPod; C:\WINDOWS\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 athrusb; C:\WINDOWS\System32\drivers\athrxusb.sys [1075712 2008-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [31416 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [235976 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [391896 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297912 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96512 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39688 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [270568 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [556152 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105288 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80456 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [942984 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [703328 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [212680 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319600 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 CXCVBS; C:\WINDOWS\system32\drivers\cxCVBS.sys [252544 2018-04-17] (Shenzhen Geniatech Technology LTD. -> Conexant Systems, Inc.)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-11] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-11] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2019-12-09] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2020-12-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 gdrv; C:\Windows\gdrv.sys [25640 2015-10-21] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-10-21] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [199640 2023-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77752 2023-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181984 2023-05-25] (Malwarebytes Inc. -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-12-01] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 rt2870; C:\WINDOWS\system32\DRIVERS\rt2870.sys [3445592 2016-08-12] (MEDIATEK INC. -> MediaTek Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R0 tdrpman251; C:\WINDOWS\System32\DRIVERS\tdrpm251.sys [1455648 2019-05-21] (Acronis, Inc -> Acronis)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-05-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-25] (Microsoft Windows -> Microsoft Corporation)
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-25 22:21 - 2023-05-25 22:22 - 000045829 _____ C:\Users\Ramzi\Downloads\FRST.txt
2023-05-25 22:21 - 2023-05-25 22:21 - 002382848 _____ (Farbar) C:\Users\Ramzi\Downloads\FRST64.exe
2023-05-25 22:21 - 2023-05-25 22:21 - 000000000 ____D C:\Users\Ramzi\Downloads\FRST-OlderVersion
2023-05-25 22:20 - 2023-05-25 22:21 - 000000000 ____D C:\FRST
2023-05-25 22:20 - 2023-05-25 22:20 - 000000000 ____D C:\Users\Ramzi\AppData\LocalLow\IGDump
2023-05-25 18:30 - 2023-05-25 18:31 - 000000000 ____D C:\Users\cathy\AppData\Local\Malwarebytes
2023-05-25 17:07 - 2023-05-25 17:07 - 000181984 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-05-25 17:05 - 2023-05-25 17:05 - 000000000 ____D C:\Users\Ramzi\AppData\Local\mbam
2023-05-25 17:02 - 2023-05-25 17:02 - 000002052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-25 17:02 - 2023-05-25 17:02 - 000002040 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-05-25 17:02 - 2023-05-25 17:02 - 000000000 ____D C:\Users\Ramzi\AppData\Local\Malwarebytes
2023-05-25 16:59 - 2023-05-25 16:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-25 16:59 - 2023-05-25 16:59 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-25 16:56 - 2023-05-25 16:56 - 002638680 _____ (Malwarebytes) C:\Users\Ramzi\Downloads\MBSetup.exe
2023-05-24 15:44 - 2023-05-24 16:03 - 000000000 ____D C:\KVRT2020_Data
2023-05-24 15:42 - 2023-05-24 15:43 - 105759928 _____ (AO Kaspersky Lab) C:\Users\Ramzi\Downloads\KVRT.exe
2023-05-24 15:42 - 2023-05-24 15:43 - 025231360 _____ C:\Users\Ramzi\Downloads\Non confirmé 667014.crdownload
2023-05-24 15:39 - 2023-05-24 15:39 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\TaiG
2023-05-24 15:39 - 2023-05-24 15:39 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Microsoft\VisualStudio
2023-05-24 15:29 - 2023-05-24 15:29 - 000000000 ____D C:\Program Files (x86)\UltFone
2023-05-24 15:03 - 2023-05-24 15:22 - 000017408 _____ C:\Users\Ramzi\AppData\Local\WebpageIcons.db
2023-05-24 14:56 - 2023-05-24 14:56 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\MobileBackupForeverIni
2023-05-24 14:24 - 2023-05-24 14:24 - 000000000 ____D C:\Program Files\chrome_url_fetcher_8124_1526948714
2023-05-24 14:13 - 2023-05-24 14:24 - 000000000 ____D C:\Program Files (x86)\PassFab iPhone Unlocker
2023-05-24 14:03 - 2023-05-24 14:03 - 000214312 _____ C:\Users\Ramzi\Documents\cc_20230524_140337.reg
2023-05-24 14:01 - 2023-05-24 14:01 - 000000000 ____D C:\ProgramData\Piriform
2023-05-24 12:16 - 2023-05-24 12:16 - 000771457 _____ C:\Users\cathy\Documents\confirmation de commande.pdf
2023-05-23 19:38 - 2023-05-23 19:39 - 000000128 _____ C:\Users\Ramzi\AppData\Local\PUTTY.RND
2023-05-23 19:38 - 2023-05-23 19:38 - 000000000 ____D C:\Users\Ramzi\fileDownload
2023-05-23 19:38 - 2023-05-23 19:38 - 000000000 ____D C:\Users\Ramzi\AppData\Local\iMyFone iBypasser
2023-05-23 19:34 - 2023-05-23 19:41 - 000000000 ____D C:\Program Files (x86)\iMyFone
2023-05-23 19:33 - 2023-05-24 14:24 - 000000000 ____D C:\Program Files (x86)\imyfone_down
2023-05-23 18:26 - 2023-05-23 18:26 - 000000000 ____D C:\ProgramData\wsr
2023-05-23 18:21 - 2023-05-23 18:21 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\TSMonitor
2023-05-23 17:12 - 2023-05-23 17:12 - 000785484 _____ C:\Users\cathy\Documents\questinnaire IRM Joanny.pdf
2023-05-23 17:00 - 2023-05-23 17:00 - 000394674 _____ C:\Users\cathy\Documents\ordonnance Joanny IRM cérébrale.pdf
2023-05-22 22:49 - 2023-05-23 17:22 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\HYXDevPsnList
2023-05-22 22:49 - 2023-05-22 22:49 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\dr.extra.config
2023-05-22 19:42 - 2023-05-24 19:43 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-05-22 19:42 - 2023-05-22 19:42 - 000002191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-20 18:10 - 2023-05-20 18:11 - 000234684 _____ C:\Users\Ramzi\Documents\impotsPDF.pdf
2023-05-16 13:48 - 2023-05-16 13:48 - 005807994 _____ C:\Users\Ramzi\Documents\Contrat de bail.pdf
2023-05-16 13:41 - 2023-05-16 13:41 - 000467930 _____ C:\Users\Ramzi\Documents\rupture de contrat de bail.pdf
2023-05-15 22:01 - 2023-05-15 22:02 - 002431101 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_9-_152kbit_Opus_.m4a
2023-05-15 22:01 - 2023-05-15 22:01 - 001992329 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_13-_152kbit_Opus_.m4a
2023-05-15 21:55 - 2023-05-15 21:55 - 001438570 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_14-_152kbit_Opus_.m4a
2023-05-15 21:55 - 2023-05-15 21:55 - 000966227 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_16-_152kbit_Opus_.m4a
2023-05-15 21:52 - 2023-05-15 21:52 - 002091632 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_22-_152kbit_Opus_.m4a
2023-05-15 21:52 - 2023-05-15 21:52 - 000949166 _____ C:\Users\Ramzi\Downloads\Dj-Keef-Special-Snoop-Dogg-_17-_152kbit_Opus_.m4a
2023-05-13 19:00 - 2023-05-13 18:59 - 000221848 _____ C:\Users\cathy\Downloads\Évaluation 7.m4a
2023-05-13 18:59 - 2023-05-13 18:59 - 002435197 _____ C:\Users\cathy\Documents\devoir Joanny Estermann espagnol 7.pdf
2023-05-11 13:28 - 2023-05-11 13:28 - 003324446 _____ C:\Users\Ramzi\Downloads\Fiche de paie de mars 2019 a Avril 2023 PSA.zip
2023-05-11 13:09 - 2023-05-11 13:09 - 000000000 ___HD C:\$WinREAgent
2023-05-09 18:35 - 2023-05-09 18:35 - 000282879 _____ C:\Users\Ramzi\Downloads\CE230509175[4394].pdf
2023-05-09 14:12 - 2023-05-09 14:09 - 000153366 ____T C:\Users\Ramzi\Downloads\ticket avril 2023.pdf
2023-05-09 13:58 - 2023-05-24 19:43 - 000003262 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-05-09 13:57 - 2023-05-09 13:57 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-05-08 15:40 - 2023-05-08 15:39 - 000153662 ____T C:\Users\Ramzi\Downloads\mars 2023.pdf
2023-05-08 15:40 - 2023-05-08 15:39 - 000153595 ____T C:\Users\Ramzi\Downloads\février 2023.pdf
2023-05-08 15:28 - 2023-05-08 15:28 - 000036054 _____ C:\Users\Ramzi\Downloads\264604.pdf
2023-05-08 15:23 - 2023-05-08 15:23 - 000152658 _____ C:\Users\Ramzi\Downloads\218320.pdf
2023-05-08 15:15 - 2023-05-08 15:15 - 000073138 _____ C:\Users\Ramzi\Downloads\attestationPaiement (15).pdf
2023-05-08 15:15 - 2023-05-08 15:15 - 000073138 _____ C:\Users\Ramzi\Downloads\attestationPaiement (14).pdf
2023-05-08 12:47 - 2023-05-08 12:47 - 000196900 _____ C:\Users\Ramzi\Documents\Impots sur le revenu.pdf
2023-05-08 11:29 - 2023-05-08 11:29 - 000114059 _____ C:\Users\cathy\Downloads\Declaration_en_ligne_des_revenus_2021_le_01_06_2022_a_13_39_ (1).pdf
2023-05-08 11:22 - 2023-05-08 11:22 - 000049850 _____ C:\Users\cathy\Downloads\urssaf-attestation-fiscale-20230508-11h22.pdf
2023-05-06 18:04 - 2023-05-25 10:58 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-05-06 18:04 - 2023-05-24 19:43 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-05-06 18:04 - 2023-05-24 19:43 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-05-04 14:06 - 2023-05-04 14:06 - 001731883 _____ C:\Users\cathy\Documents\devoir Joanny Estermann Espagnol 6.pdf
2023-05-04 14:01 - 2023-05-04 14:01 - 003040770 _____ C:\Users\cathy\Downloads\ESTERMANN_JOANNY_4139-20-1142-6_ES32_D5C (1).pdf
2023-05-04 14:00 - 2023-05-04 14:00 - 003040770 _____ C:\Users\cathy\Downloads\ESTERMANN_JOANNY_4139-20-1142-6_ES32_D5C.pdf
2023-05-04 13:59 - 2023-05-04 13:58 - 000365581 ____T C:\Users\cathy\Downloads\Évaluation 6.m4a
2023-05-02 11:47 - 2023-05-02 11:47 - 000322700 _____ C:\Users\cathy\Documents\facture Thomas A avril 2023.pdf
2023-05-02 11:37 - 2023-05-02 11:37 - 000324103 _____ C:\Users\cathy\Documents\facture Simon avril 2023.pdf
2023-05-02 11:30 - 2023-05-02 11:30 - 000323878 _____ C:\Users\cathy\Documents\facture Rachid avril 2023.pdf
2023-05-02 11:28 - 2023-05-02 11:28 - 000323575 _____ C:\Users\cathy\Documents\facture Zélie avril 2023.pdf
2023-05-02 11:26 - 2023-05-02 11:26 - 000323849 _____ C:\Users\cathy\Documents\facture Florient avril 2023.pdf
2023-05-02 11:12 - 2023-05-02 11:12 - 000322919 _____ C:\Users\cathy\Documents\facture Damien avril 2023.pdf
2023-05-02 11:09 - 2023-05-02 11:09 - 000322945 _____ C:\Users\cathy\Documents\facture Anaïs avril 2023 .pdf
2023-05-02 11:08 - 2023-05-02 11:08 - 000323640 _____ C:\Users\cathy\Documents\facture Véronique avril 2023.pdf
2023-05-02 11:06 - 2023-05-02 11:06 - 000322760 _____ C:\Users\cathy\Documents\facture Estelle avril 2023.pdf
2023-05-02 11:01 - 2023-05-02 11:01 - 000323032 _____ C:\Users\cathy\Documents\facture Corinne L avril 2023.pdf
2023-05-01 13:31 - 2023-05-01 13:31 - 000001827 _____ C:\Users\Public\Desktop\iTunes.lnk
2023-05-01 13:31 - 2023-05-01 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2023-05-01 13:31 - 2023-05-01 13:31 - 000000000 ____D C:\Program Files\iTunes
2023-05-01 13:20 - 2023-05-25 15:59 - 000008192 ___SH C:\DumpStack.log.tmp
2023-04-27 12:05 - 2023-04-27 12:05 - 000322572 _____ C:\Users\cathy\Documents\facture Thomas V avril 2023.pdf
2023-04-27 12:00 - 2023-04-27 12:00 - 000323993 _____ C:\Users\cathy\Documents\facture Manu Avril 2023.pdf
2023-04-27 11:30 - 2023-04-27 11:30 - 000323337 _____ C:\Users\cathy\Documents\facture Marina avril 2023.pdf
2023-04-27 11:25 - 2023-04-27 11:25 - 000322815 _____ C:\Users\cathy\Documents\facture Yves avril 2023.pdf
2023-04-27 11:18 - 2023-04-27 11:18 - 000322004 _____ C:\Users\cathy\Documents\facture madame Steiner Andrée.pdf
2023-04-26 17:13 - 2023-04-26 17:13 - 000001075 _____ C:\Users\Ramzi\Desktop\MakeMKV.lnk
2023-04-26 17:13 - 2023-04-26 17:13 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2023-04-26 17:13 - 2023-04-26 17:13 - 000000000 ____D C:\Program Files (x86)\MakeMKV
2023-04-26 17:12 - 2023-04-26 17:13 - 015297637 _____ (GuinpinSoft inc) C:\Users\Ramzi\Downloads\Setup_MakeMKV_v1.17.3.exe
2023-04-25 12:31 - 2023-04-25 12:31 - 000093994 _____ C:\Users\cathy\Documents\P 3 COVID REVE INDIVIDUEL AVEC LES PARENTS MAJ pagez 2.pdf
2023-04-25 12:15 - 2023-04-25 12:15 - 000104993 _____ C:\Users\cathy\Documents\P 3 COVID REVE INDIVIDUEL AVEC LES PARENTS page 1.pdf
2023-04-25 12:13 - 2023-04-14 17:40 - 000797851 ___RT C:\Users\cathy\Downloads\P 5 AUTORISATION PARENTALE PHOTOS FILMS REVES PP MINEUR 26 04 22.pdf
2023-04-25 12:09 - 2023-04-25 12:09 - 000896321 _____ C:\Users\cathy\Documents\joanny procédure 5 page 2.pdf
2023-04-25 11:16 - 2023-04-25 11:16 - 000323224 _____ C:\Users\cathy\Documents\facture Corinne H avril 2023.pdf
2023-04-25 10:54 - 2023-04-25 10:54 - 000322544 _____ C:\Users\cathy\Documents\facture Jacques avril 2023.pdf
2023-04-25 10:52 - 2023-04-25 10:52 - 000323456 _____ C:\Users\cathy\Documents\facture Agnès avril 2023.pdf
2023-04-25 10:51 - 2023-04-25 10:51 - 000322667 _____ C:\Users\cathy\Documents\facture Jean Daniel avril 2023.pdf
2023-04-25 10:39 - 2023-04-25 10:39 - 001177723 _____ C:\Users\cathy\Documents\dossier petit prince.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-25 22:18 - 2020-11-11 17:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-05-25 22:18 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-25 22:12 - 2015-10-20 23:23 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-25 18:30 - 2016-10-14 05:15 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-25 18:16 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-25 18:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-05-25 18:04 - 2021-09-08 16:15 - 000000000 ____D C:\Program Files\CCleaner
2023-05-25 17:24 - 2015-11-02 00:49 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Microsoft\Word
2023-05-25 17:22 - 2021-07-21 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost
2023-05-25 17:22 - 2019-05-23 17:41 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2023-05-25 17:22 - 2017-06-14 18:48 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Innovative Solutions
2023-05-25 17:22 - 2017-06-14 18:48 - 000000000 ____D C:\Users\Ramzi\AppData\Local\Innovative Solutions
2023-05-25 17:22 - 2016-03-13 02:16 - 000000000 ____D C:\Users\Ramzi\Downloads\Windows Loader 2.2.2
2023-05-25 17:22 - 2015-10-20 23:10 - 000000000 ____D C:\Users\Ramzi\Desktop\Activation
2023-05-25 17:01 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-25 16:58 - 2016-01-28 17:42 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Microsoft\Excel
2023-05-25 16:04 - 2020-11-11 17:25 - 001778880 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-25 16:04 - 2019-12-07 16:50 - 000794548 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-25 16:04 - 2019-12-07 16:50 - 000150948 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-25 16:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-25 15:59 - 2020-11-11 17:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-25 15:59 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-05-25 15:59 - 2019-05-23 17:57 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2023-05-25 15:59 - 2019-05-23 17:31 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2023-05-25 15:59 - 2016-04-01 06:13 - 000000000 ____D C:\ProgramData\Avg
2023-05-25 13:54 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-05-25 13:54 - 2018-08-16 13:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-05-25 13:46 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-05-24 21:54 - 2020-11-11 17:17 - 000000000 ____D C:\Users\Ramzi
2023-05-24 21:50 - 2016-10-02 13:15 - 000000000 ____D C:\Users\Ramzi\AppData\Local\JDownloader v2.0
2023-05-24 19:43 - 2023-03-08 15:37 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1002
2023-05-24 19:43 - 2021-12-14 21:54 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1001
2023-05-24 19:43 - 2021-12-13 19:15 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2550859982-2044651290-1562170072-1004
2023-05-24 19:43 - 2021-09-08 16:15 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Ramzi
2023-05-24 19:43 - 2020-11-11 17:28 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-24 19:43 - 2020-11-11 17:28 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-05-24 19:43 - 2020-11-11 17:28 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-24 19:43 - 2020-11-11 17:28 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-05-24 19:43 - 2020-11-11 17:28 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater
2023-05-24 19:43 - 2020-11-11 17:28 - 000002680 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2023-05-24 19:43 - 2020-11-11 17:28 - 000002678 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2023-05-24 19:43 - 2020-11-11 17:28 - 000002678 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2023-05-24 19:43 - 2020-11-11 17:28 - 000002618 _____ C:\WINDOWS\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-24 19:43 - 2020-11-11 17:28 - 000002330 _____ C:\WINDOWS\system32\Tasks\1215avtUpdateInfo
2023-05-24 19:43 - 2020-11-11 17:28 - 000002268 _____ C:\WINDOWS\system32\Tasks\{DAF2CF7F-B377-4EC1-AFC1-AF4D76573782}
2023-05-24 19:43 - 2020-11-11 17:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-05-24 18:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-24 16:03 - 2021-09-06 14:04 - 000000000 ____D C:\Users\cathy
2023-05-24 16:02 - 2023-03-08 15:37 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-05-24 16:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-05-24 15:40 - 2018-06-08 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2023-05-24 15:40 - 2018-06-08 19:14 - 000000000 ____D C:\ProgramData\Wondershare
2023-05-24 15:37 - 2018-10-19 18:15 - 000000000 ____D C:\Users\Ramzi\AppData\Local\CrashDumps
2023-05-24 14:04 - 2022-11-25 12:06 - 000000000 ____D C:\Users\Ramzi\Documents\DVDFab
2023-05-24 14:04 - 2020-11-15 22:25 - 000000000 ____D C:\WINDOWS\Minidump
2023-05-24 14:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-05-24 14:04 - 2017-10-11 06:21 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\DAEMON Tools Lite
2023-05-24 12:13 - 2023-01-02 12:15 - 000000000 ____D C:\Users\cathy\AppData\Roaming\Microsoft\Excel
2023-05-24 12:13 - 2021-09-06 14:06 - 000000000 ____D C:\Users\cathy\AppData\Local\Packages
2023-05-24 12:10 - 2021-12-17 15:15 - 000000000 ____D C:\Users\cathy\AppData\Roaming\Microsoft\Word
2023-05-23 16:58 - 2022-03-13 19:33 - 000000000 ____D C:\Users\cathy\AppData\Local\CrashDumps
2023-05-22 22:52 - 2018-06-08 19:14 - 000000000 ____D C:\Program Files (x86)\Wondershare
2023-05-22 22:49 - 2022-12-14 16:51 - 000000000 ____D C:\Users\Ramzi\Documents\Wondershare
2023-05-22 22:45 - 2019-05-18 11:53 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2023-05-22 22:31 - 2016-01-13 16:41 - 000000000 ____D C:\Users\Ramzi\AppData\Local\Wondershare
2023-05-22 22:31 - 2016-01-13 16:40 - 000000000 ____D C:\Users\Ramzi\.android
2023-05-20 18:49 - 2018-03-04 18:33 - 000000000 ____D C:\Users\Ramzi\AppData\Local\Packages
2023-05-20 12:08 - 2020-10-05 15:16 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-20 12:08 - 2020-10-05 15:16 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-05-15 21:38 - 2015-10-21 16:21 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\vlc
2023-05-11 16:57 - 2020-11-11 17:16 - 000483080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-11 16:56 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-11 16:56 - 2019-12-07 16:50 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-11 16:56 - 2019-12-07 16:50 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-11 16:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-11 13:37 - 2020-10-14 17:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-11 13:23 - 2020-11-11 17:16 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-11 13:00 - 2015-10-21 15:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-10 21:53 - 2015-10-21 15:26 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-10 18:07 - 2023-01-31 12:09 - 000272873 _____ C:\Users\cathy\Desktop\modele-facture-V7.xlsx
2023-05-07 13:51 - 2021-05-18 18:29 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-05-07 13:50 - 2021-02-01 20:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-05-02 22:18 - 2022-02-27 19:22 - 000000000 ____D C:\Program Files\iPod
2023-04-26 20:51 - 2022-12-06 19:08 - 000000000 ____D C:\Users\Ramzi\AppData\Roaming\Inviska
==================== Fichiers à la racine de certains dossiers ========
2022-11-25 12:07 - 2022-11-25 12:07 - 000000171 _____ () C:\Users\Ramzi\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2022-12-19 14:44 - 2022-12-19 14:44 - 000001026 _____ () C:\Users\Ramzi\AppData\Roaming\DVDSubEdit.ini
2022-11-25 12:23 - 2022-11-25 12:27 - 000099384 _____ () C:\Users\Ramzi\AppData\Roaming\inst.exe
2022-11-25 12:23 - 2022-11-25 12:27 - 000007859 _____ () C:\Users\Ramzi\AppData\Roaming\pcouffin.cat
2022-11-25 12:23 - 2022-11-25 12:27 - 000001167 _____ () C:\Users\Ramzi\AppData\Roaming\pcouffin.inf
2022-11-25 12:23 - 2022-11-25 12:27 - 000000055 _____ () C:\Users\Ramzi\AppData\Roaming\pcouffin.log
2022-11-25 12:23 - 2022-11-25 12:27 - 000082816 _____ (VSO Software) C:\Users\Ramzi\AppData\Roaming\pcouffin.sys
2018-01-25 18:49 - 2018-01-25 18:49 - 000000001 _____ () C:\Users\Ramzi\AppData\Local\llftool.4.40.agreement
2023-05-23 19:38 - 2023-05-23 19:39 - 000000128 _____ () C:\Users\Ramzi\AppData\Local\PUTTY.RND
2019-03-15 16:00 - 2019-03-15 16:00 - 000000431 _____ () C:\Users\Ramzi\AppData\Local\read.bat
2018-02-21 18:53 - 2018-02-21 18:53 - 000000017 _____ () C:\Users\Ramzi\AppData\Local\resmon.resmoncfg
2023-05-24 15:03 - 2023-05-24 15:22 - 000017408 _____ () C:\Users\Ramzi\AppData\Local\WebpageIcons.db
2016-04-24 13:30 - 2016-04-24 13:30 - 000000000 _____ () C:\Users\Ramzi\AppData\Local\{6C142288-9D7B-499E-9203-4C5DCF532DE8}
2015-10-26 17:49 - 2015-10-26 17:49 - 000000000 _____ () C:\Users\Ramzi\AppData\Local\{A76993E4-53BB-46B7-88B0-8CF67F93C26D}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================