start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
Startup: C:\Users\msn.fr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BaliBACKUP.lnk
ShortcutTarget: BaliBACKUP.lnk -> C:\Program Files\BaliBackup\BaliBACKUP.exe
BootExecute: autocheck autochk * auto_reactivate \\?\Volume{cb444d01-0000-0000-0000-100000000000}\bootwiz\asrm.bin
Policies: C:\ProgramData\NTUSER.pol: Restriction
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)
Edge Extension: (Kaspersky Protection) - C:\Users\msn.fr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm
FF Extension: (ExpressVPN : proxy VPN pour une connexion Internet sécurisée) - C:\Users\msn.fr\AppData\Roaming\Mozilla\Firefox\Profiles\08lpqq9n.default-1607792331202\Extensions\firefox-addon@expressvpn.com.xpi
BRA Extension: (Kaspersky Protection) - C:\Users\msn.fr\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\msn.fr\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb
S3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf_x86.sys
U4 nicm; pas de ImagePath
U4 nwfilter; pas de ImagePath
U4 smbios; pas de ImagePath
U4 VMTools; pas de ImagePath
U4 VMUpgradeHelper; pas de ImagePath
2021-05-03 18:59 - 2021-05-03 18:59 - 002757520 _____ (Kaspersky) C:\Users\msn.fr\Downloads\kav21.3.10.391fr_25768.exe
2021-04-30 00:41 - 2021-04-30 00:41 - 026770600 _____ (Piriform Software Ltd) C:\Users\msn.fr\Downloads\ccsetup579_slim.exe
2021-04-28 01:07 - 2021-04-28 01:07 - 002767192 _____ (Kaspersky) C:\Users\msn.fr\Downloads\ks4.021.3.10.391fr_24936.exe
2021-05-03 19:17 - 2016-07-08 21:07 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-05-03 19:17 - 2016-07-08 21:07 - 000000000 ____D C:\Program Files\Kaspersky Lab
2021-05-03 19:16 - 2016-09-08 19:37 - 000000000 ____D C:\Program Files\Common Files\AV
2021-05-03 19:15 - 2020-07-07 14:57 - 000000000 ____D C:\Program Files\Common Files\Kaspersky Lab
2021-05-03 16:34 - 2020-08-20 14:13 - 000000000 ____D C:\Users\msn.fr\AppData\Local\windows95
2021-04-14 02:02 - 2016-07-08 20:03 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-05-26 17:39 - 2017-05-26 17:39 - 000000000 _____ () C:\Users\msn.fr\AppData\Local\{95987666-6797-4A0D-8E77-A86C50EC61DF}
2016-12-06 23:14 - 2016-12-06 23:14 - 000000001 _____ () C:\Users\msn.fr\AppData\Local\llftool.4.40.agreement
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> [CC]{C5269811-4A29-4818-A4BB-111F9FC63A5F} => -> Pas de fichier
ContextMenuHandlers6: [Foxit_ConvertToPDF] -> [CC]{C5269811-4A29-4818-A4BB-111F9FC63A5F} => -> Pas de fichier
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
SearchScopes: HKU\S-1-5-21-2749444337-3752395649-1170461383-1001 -> DefaultScope {F558E1B9-FC6E-4713-BA07-264700BE3F26} URL =
SearchScopes: HKU\S-1-5-21-2749444337-3752395649-1170461383-1001 -> {F558E1B9-FC6E-4713-BA07-264700BE3F26} URL =
Toolbar: HKU\S-1-5-21-2749444337-3752395649-1170461383-1001 -> Pas de nom - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - Pas de fichier
EmptyTemp:
cmd: netsh advfirewall reset
cmd: ipconfig /flushdns
cmd: netsh winsock reset
cmd: DISM /Online /Cleanup-image /Restorehealth
cmd: sfc /scannow
end::