Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11.06.2024
Exécuté par Annick (administrateur) sur LAPTOP-U2KV5FC4 (HP HP Laptop 17-ak0xx) (12-06-2024 17:33:47)
Exécuté depuis C:\Users\Annick\Desktop\FRST64.exe
Profils chargés: Annick
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4474 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\ruxim\PLUGScheduler.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\ruxim\RUXIMICS.exe
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe <2>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.17531.20152.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21944.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\ruxim\PLUGScheduler.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4467_none_7e0f83e07c8c1985\TiWorker.exe
(svchost.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <2>
(svchost.exe ->) (Orange -> Orange) C:\Users\Annick\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCUpdate.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.413.234.0.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3666536 2018-03-15] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [704832 2017-04-27] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [1660760 2017-06-26] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Winlogon: [Shell] C:\Windows\explorer.exe [5683592 2024-06-11] (Microsoft Windows -> Microsoft Corporation) <=== ATTENTION
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [HP ENVY 5540 series (NET)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [MicrosoftEdgeAutoLaunch_0F9B0D1F3895CBD4B09041B68BD2A0F1] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4136912 2024-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [HP319B04 (HP ENVY 5540 series)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [Web Companion] => C:\Users\Annick\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe [11456720 2024-01-04] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\WINDOWS\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 5520 series): C:\WINDOWS\system32\HPDiscoPMB111.dll [741536 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\chrmstp.exe [2024-06-05] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{F146C9B1-VMVQ-A9RC-NUFL-D0BA00B4E999}] -> C:\Users\Annick\AppData\Roaming\mrsys.exe MR
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {13505208-7627-4FBA-B818-861AE5F3777C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {36CB1B96-8DBE-458D-933F-CF4E338EC51E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4B402684-9737-4967-96FF-728338B3A52C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d369d42f-cda5-4255-9c90-f163e326a676" --version "6.24.11060" --silent
Task: {960E1F32-0D72-4303-8827-022B23C42A5D} - System32\Tasks\CCleanerSkipUAC - Annick => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {82194025-DF57-4E28-B80C-94D1A431E6DE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{D811115A-0952-40F9-89EE-75125B39C244} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {6F966D7D-A946-457A-9BED-ED432DC41162} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\-task -source HPSA
Task: {2690DB8E-C904-408D-8564-638D84009307} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/taskrestart
Task: {E5AF98BC-B4FD-44B7-B65B-78661388444A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107368 2017-04-07] (HP Inc. -> HP Inc.)
Task: {F2BEE49C-9EC1-4A0E-8D5D-44B1478DDFC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [625512 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\\/u
Task: {7EE1C604-0EDC-4A3B-9740-4B7A1369F8CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [625512 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/r /m
Task: {A1BB0034-0B5F-4020-898A-D05D24247D26} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/L Analysis
Task: {6BD32052-1741-4AC8-938E-1ACF359CC55B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208744 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/noreport
Task: {8BA119A5-DAFA-45A1-B85A-EE9AD07271F3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1080168 2017-04-07] (HP Inc. -> HP Inc.)
Task: {05A1D44E-0C36-4C67-9418-006787448872} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH78V2X2GY => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1080168 2017-04-07] (HP Inc. -> HP Inc.)
Task: {380D470E-7FC1-4D53-AD7B-06CFD7D0966C} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {CAD8FF9C-FD08-407D-B05D-6935E52A193B} - System32\Tasks\HPCeeScheduleForAnnick => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [99208 2016-06-24] (Hewlett-Packard Company -> HP Inc.)
Task: {01131739-9571-4D52-851D-C28B47041376} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [6439584 2021-11-15] (HP Inc. -> HP Inc.)
Task: {60B66AFD-E227-49F9-A0FD-8EF22619B0F6} - System32\Tasks\HPCustParticipation HP Photosmart 5520 series => C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe [4119200 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
Task: {11DC118C-1CB1-4569-BC54-BEA6ACFD8B97} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {897244EA-310E-4D17-BDE8-CC480D1B7D86} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.)
Task: {F066B2E8-3A2E-41A4-80F8-EF7661656B71} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => %ProgramFiles%\CUAssistant\culauncher.exe (Pas de fichier)
Task: {C1668953-63F8-489D-8988-8524A9B6DB00} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Annick\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {BF83528B-52D9-4D8D-A7FD-23EF4E35D90A} - System32\Tasks\Microsoft\Windows\PLA\RPTDB94.tmp => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {08914362-50E0-4EF8-AF3B-833666AF6A76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D0271948-A60C-4CC2-B78B-2B3537C52593} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1AF02050-7DDC-4C40-8D04-C6DE6641ADFA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A9E9AA22-D8E3-4B13-B8AE-FEA0B1FA6162} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6CEECA6D-C6A0-448F-A119-67BFE947F6D7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E652B53D-B09E-4665-99D7-E68EAE942544} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2034794175-4002452550-2235962446-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8561F1B5-A09B-4BA1-B4AF-828340E2DF7C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {1A2582B3-AA83-41A3-A118-971D1C300B45} - System32\Tasks\Mozilla\Firefox Default Browser Agent EA241FE2D54DAEE7 => C:\Users\Annick\AppData\Local\Mozilla Firefox\default-browser-agent.exe do-task "EA241FE2D54DAEE7" (Pas de fichier)
Task: {80640D74-6CE0-4F6F-9F4C-3D25BFEF4079} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2034794175-4002452550-2235962446-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {80BA2026-6538-4B6A-AD10-76F52F7B956B} - System32\Tasks\OneDrive Standalone Update Task v2 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {279D349B-8D5A-4AB5-8BBE-9F241C09691D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2034794175-4002452550-2235962446-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {D7F81A1E-6ACC-4FEC-83E3-2D7783072218} - System32\Tasks\Remove AdwCleaner Application => C:\WINDOWS\system32\CMD.EXE [289792 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> /C DEL /F /Q "C:\Users\Annick\Downloads\adwcleaner.exe"
Task: {DAA747E6-AEBB-48F1-9DAB-602CD2D9227E} - System32\Tasks\RtHDVBg_Session => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4B8D14FF-0BDB-417E-AA80-BE3FE2BBB838} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9234280 2017-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3CCC4AEB-8BAA-4732-8067-B0B88C5A43BA} - System32\Tasks\StartCN => c:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3AC43E28-3EDF-46A3-A305-80204E2BE59C} - System32\Tasks\Uninstall AdwCleaner Application => C:\Users\Annick\Downloads\adwcleaner.exe /uninstall (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForAnnick.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}: [DhcpDomain] home
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}\C496675626F687D234446314: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}\C496675626F687D234446314: [DhcpDomain] home
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\1444D494E49435452514459464: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\75966496021646D696E6963747271647966602F45756374702146756E65756: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\C496675626F687D234446314: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\C496675626F687D234446314: [DhcpDomain] home
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\F40707F60214E6E69636B602: [DhcpNameServer] 192.168.27.157
Tcpip\..\Interfaces\{e92f67e7-736f-4e8e-9a5a-8ee9ac1ae9f2}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-11]
Edge DownloadDir: Default -> C:\Users\Annick\Downloads
Edge HomePage: Default -> hxxps://
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs hors connexion) - C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-28]
Edge Extension: (Edge relevant text changes) - C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: k95w7d4w.default
FF ProfilePath: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\k95w7d4w.default [2023-11-09]
FF Homepage: Mozilla\Firefox\Profiles\k95w7d4w.default -> hxxps://
FF NewTab: Mozilla\Firefox\Profiles\k95w7d4w.default -> hxxps://
FF ProfilePath: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release [2024-06-12]
FF Homepage: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://google.fr
FF NewTab: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://
FF Notifications: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://www.instagram.com; hxxps://www.youtube.com; hxxps://www.pagesjaunes.fr; hxxps://www.echantillonsclub.com; hxxps://artistedudiamant.com; hxxps://www.retraite.com; hxxps://mail.google.com; hxxps://www.minuteconso.com; hxxps://www.bonial.fr; hxxps://recetteplat.net; hxxps://www.recette360.com; hxxps://www.francoisesaget.com; hxxps://www.boulanger.com; hxxps://www.pinterest.fr; hxxps://www.argentdubeurre.com; hxxps://www.runesmith.top; hxxps://www.temu.com; hxxps://www.lettres-gratuites.com; hxxps://www.tiktok.com
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {c5ffbd00-71e8-4603-a19b-860104b7ac62}
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {82c0173d-b61d-4cd3-8e01-ffc56211a71c}
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {3bf15552-e64b-4396-aa91-448b71aad69a}
FF Extension: (Foto – Soft) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\foto-soft-colorway@mozilla.org.xpi [2023-03-17]
FF Extension: (Mes recettes de cuisine) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\recettes-de-cuisine-2023@cuisine.com.xpi [2023-07-31]
FF Extension: (Print Recipes and Search) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{3bf15552-e64b-4396-aa91-448b71aad69a}.xpi [2023-02-15] [UpdateUrl:hxxps://cdn.printrecipes-cdn.net/xpi/printrecipes/print/0321/search/updates.json]
FF Extension: (PDF Editor and Search by PDFtab) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{82c0173d-b61d-4cd3-8e01-ffc56211a71c}.xpi [2024-05-30] [UpdateUrl:hxxps://cdn.pdftab-cdn.com/xpi/pdftab/yhs/0721/search/updates.json]
FF Extension: (Freshy Newtab and Search ) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{c5ffbd00-71e8-4603-a19b-860104b7ac62}.xpi [2023-04-08] [UpdateUrl:hxxps://cdn.freshysearch-cdn.com/xpi/freshy/yhs/01020/searchnnewtab/updates.json]
FF SearchPlugin: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\searchplugins\Yahoo Search.xml [2023-10-09]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-12] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default [2024-06-12]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.iwisesales.com; hxxps://www.supertoinette.com
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "","hxxp://google.com/","hxxps://%20orange.fr/"
CHR NewTab: Default -> Not-active:"chrome-extension://onghofjobpgcdeeifjfbcfepkchnenoh/newtab.html"
CHR Extension: (Google Docs hors connexion) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04]
CHR Extension: (Orange page d'accueil) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-01-04]
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-06-11]
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\System Profile [2024-06-11]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [127488 2017-08-30] (Realtek Semiconductor Corp.) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1327400 2017-09-05] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-05-08] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [630776 2017-02-06] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 StillCam; C:\WINDOWS\System32\drivers\serscan.sys [13312 2022-07-14] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U3 aspnet_state; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-06-12 17:33 - 2024-06-12 17:44 - 000030228 _____ C:\Users\Annick\Desktop\FRST.txt
2024-06-12 17:30 - 2024-06-12 17:39 - 000000000 ____D C:\FRST
2024-06-12 14:45 - 2024-06-12 14:45 - 000195377 _____ C:\Users\Annick\Desktop\ZHPDiag.txt
2024-06-12 13:41 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Desktop\FRST64.exe
2024-06-12 13:38 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Downloads\FRST64.exe
2024-06-12 09:17 - 2024-06-12 14:45 - 000000000 ____D C:\Users\Annick\AppData\Roaming\ZHP
2024-06-12 09:17 - 2024-06-12 14:08 - 000000873 _____ C:\Users\Annick\Desktop\ZHPSuite.lnk
2024-06-12 09:17 - 2024-06-12 09:17 - 000000000 ____D C:\Users\Annick\AppData\Local\ZHP
2024-06-12 08:48 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Desktop\ZHPSuite.exe
2024-06-12 08:47 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Downloads\ZHPSuite.exe
2024-06-12 08:35 - 2024-06-12 08:35 - 000000000 ___HD C:\$WinREAgent
2024-06-11 22:38 - 2024-06-11 22:38 - 000042160 _____ C:\WINDOWS\system32\lc.dat
2024-06-11 16:14 - 2024-06-11 16:14 - 000001123 _____ C:\Users\Annick\Desktop\HDCleaner.lnk
2024-06-11 16:14 - 2024-06-11 16:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDCleaner
2024-06-11 16:14 - 2024-06-11 16:14 - 000000000 ____D C:\Program Files\HDCleaner
2024-06-10 18:40 - 2024-06-10 18:40 - 000000000 ____H C:\Users\Annick\BITE0E8.tmp
2024-06-10 17:52 - 2024-06-10 17:52 - 000000332 _____ C:\Users\Annick\Downloads\Restaurant-Traiteur-la-Ferme-de-Montimont-vCard-Contact-Adresse-Téléphone.vcf
2024-06-10 17:52 - 2024-06-10 17:52 - 000000332 _____ C:\Users\Annick\Downloads\Restaurant-Traiteur-la-Ferme-de-Montimont-vCard-Contact-Adresse-Téléphone(1).vcf
2024-06-05 20:15 - 2024-06-05 20:15 - 000141524 _____ C:\Users\Annick\Downloads\mkrid-web.pdf
2024-06-05 11:40 - 2024-06-05 11:40 - 000000419 _____ C:\Users\Annick\Downloads\Lecteur de CD - Raccourci.lnk
2024-06-04 16:57 - 2024-06-04 16:57 - 000160567 _____ C:\Users\Annick\Downloads\AttestationDroits.pdf
2024-06-04 16:41 - 2024-06-04 16:41 - 000244673 _____ C:\Users\Annick\Downloads\Declaration_ressources-20230801_20240430.pdf
2024-06-03 17:54 - 2024-06-03 17:54 - 008712256 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup(1).exe
2024-06-03 17:52 - 2024-06-03 17:52 - 008712256 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup(2).exe
2024-05-28 18:07 - 2024-06-12 13:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-23 18:20 - 2024-05-23 18:20 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\tresor publique 2023-2024
2024-05-18 12:59 - 2024-05-25 13:24 - 000000000 ____D C:\Users\Annick\AppData\Roaming\HpUpdate
2024-05-18 12:59 - 2024-05-18 12:59 - 000003796 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Photosmart 5520 series
2024-05-18 12:59 - 2024-05-18 12:59 - 000000000 ____D C:\Users\Annick\AppData\LocalLow\Hewlett-Packard
2024-05-18 12:59 - 2021-12-02 23:22 - 000741536 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMB111.dll
2024-05-18 11:38 - 2024-05-18 11:39 - 003362616 _____ (OneLaunch ) C:\Users\Annick\Downloads\OneLaunch - Recipes Online_hgy4w.exe
2024-05-03 09:18 - 2024-05-03 09:18 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\FeedbackHub
2024-05-02 20:20 - 2024-05-02 20:20 - 000000082 _____ C:\Users\Annick\OneDrive\Documents\cc_20240502_202020.reg
2024-05-01 14:55 - 2024-05-01 14:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-25 11:37 - 2024-04-25 11:37 - 000168948 _____ C:\Users\Annick\Downloads\[Chèque énergie] Bilan de la pré-affectation de votre chèque énergie.zip
2024-04-22 20:29 - 2024-04-22 20:29 - 000000773 _____ C:\Users\Annick\Downloads\Objets 3D - Raccourci.lnk
2024-04-20 08:05 - 2024-04-20 08:05 - 001376816 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup.exe
2024-04-10 11:27 - 2024-04-10 11:27 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-10 11:24 - 2024-04-10 11:24 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-19 09:46 - 2024-03-19 09:46 - 000000000 ____D C:\ProgramData\Norton
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-06-12 18:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-06-12 14:47 - 2022-03-09 18:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-06-12 14:08 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-12 09:17 - 2021-07-15 08:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-12 08:50 - 2021-07-15 08:54 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-06-12 08:27 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-06-12 08:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-06-12 08:20 - 2022-03-09 19:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-12 08:20 - 2021-07-20 18:49 - 000008192 ___SH C:\DumpStack.log.tmp
2024-06-11 22:49 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-06-11 22:48 - 2021-07-04 01:18 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2024-06-11 22:46 - 2022-03-09 18:37 - 000565072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-11 22:43 - 2022-03-09 18:47 - 000000000 ____D C:\Users\Annick
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-11 22:37 - 2021-12-03 09:01 - 000000000 ____D C:\Users\Annick\AppData\Local\CrashDumps
2024-06-11 21:47 - 2022-02-09 10:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-11 20:55 - 2021-08-27 09:28 - 000000000 ____D C:\Program Files\CCleaner
2024-06-11 19:04 - 2022-03-09 19:40 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-06-11 18:52 - 2022-12-14 10:55 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-06-11 16:45 - 2021-07-19 17:44 - 000000000 ____D C:\ProgramData\Packages
2024-06-11 16:45 - 2021-07-04 12:07 - 000000000 ____D C:\Users\Annick\AppData\Local\Packages
2024-06-11 16:38 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-06-11 16:30 - 2022-12-14 10:55 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-06-11 15:26 - 2022-09-02 19:25 - 000000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForAnnick.job
2024-06-11 15:26 - 2021-07-04 12:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-06-10 18:40 - 2022-03-09 19:40 - 000003264 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForAnnick
2024-06-09 10:20 - 2023-01-17 09:54 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-06-09 10:20 - 2021-07-04 12:52 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-06-07 16:53 - 2022-03-09 19:40 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-07 16:53 - 2022-03-09 19:40 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-06-05 06:51 - 2021-07-19 18:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-06-05 06:48 - 2022-01-18 21:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-06-04 18:05 - 2022-03-21 10:23 - 000001717 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2024-06-04 16:59 - 2022-04-08 16:15 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\DAVID
2024-05-28 20:49 - 2022-03-09 19:01 - 001839244 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-28 20:49 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-28 20:49 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-28 20:12 - 2022-08-13 11:32 - 000001215 _____ C:\Users\Annick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-28 20:12 - 2021-07-04 12:55 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-26 21:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-05-25 09:35 - 2021-07-30 19:54 - 000000000 ____D C:\Users\Annick\AppData\Local\ElevatedDiagnostics
2024-05-23 10:56 - 2021-11-17 18:38 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-05-23 10:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-05-18 12:59 - 2021-07-22 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2024-05-18 12:59 - 2021-07-04 10:42 - 000000000 ____D C:\Program Files (x86)\HP
2024-05-18 12:59 - 2017-11-15 05:26 - 000000000 ____D C:\ProgramData\HP
2024-05-18 12:59 - 2017-11-15 05:26 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2024-05-18 12:59 - 2017-11-15 05:25 - 000000000 ____D C:\Program Files\HP
2024-05-16 10:13 - 2022-03-09 19:40 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-05-16 10:10 - 2022-10-13 12:31 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-05-15 20:26 - 2022-03-12 10:18 - 000000000 ____D C:\WINDOWS\HoloShell
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-05-15 20:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-05-15 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-05-15 20:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-05-15 12:26 - 2022-03-09 18:43 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-05-15 11:27 - 2021-07-16 09:55 - 000000000 ____D C:\Program Files\ruxim
==================== Fichiers à la racine de certains dossiers ========
2022-08-16 18:58 - 2022-08-16 18:58 - 000001076 _____ () C:\Users\Annick\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2021-06-30 17:06 - 2017-08-28 09:54 - 000050960 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:05 - 2013-04-01 23:19 - 000574464 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\rtl8723de.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000054192 _____ C:\WINDOWS\system32\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000039420 _____ C:\WINDOWS\system32\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000046708 _____ C:\WINDOWS\system32\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2017-01-28 00:01 - 2017-01-28 00:01 - 000322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2021-06-30 17:02 - 2017-01-28 00:01 - 000322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-01-28 00:02 - 2017-01-28 00:02 - 000118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
2021-06-30 17:02 - 2017-01-28 00:02 - 000118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-30 17:06 - 2016-09-20 19:00 - 000001156 _____ C:\WINDOWS\PidVid_List.dll
2021-06-30 17:05 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-01-28 00:04 - 2017-01-28 00:04 - 000326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2021-06-30 17:02 - 2017-01-28 00:04 - 000326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-01-28 00:05 - 2017-01-28 00:05 - 000103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2021-06-30 17:02 - 2017-01-28 00:05 - 000103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2024-06-12 13:41 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Desktop\FRST64.exe
2024-06-12 08:48 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Desktop\ZHPSuite.exe
2024-06-12 13:38 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Downloads\FRST64.exe
2024-06-12 08:47 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{55e3dcb3-dc0a-11eb-b186-806e6f6e6963}
{aea593f9-d9fc-11eb-a6ff-b54e64f8581e}
{aea593fa-d9fc-11eb-a6ff-b54e64f8581e}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {55e3dcb3-dc0a-11eb-b186-806e6f6e6963}
description Internal Hard Disk or Solid State Disk
Application logicielle (101fffff)
--------------------------------
identificateur {aea593f9-d9fc-11eb-a6ff-b54e64f8581e}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {aea593fa-d9fc-11eb-a6ff-b54e64f8581e}
description EFI DVD/CDROM
Chargeur de démarrage Windows
-----------------------------
identificateur {7c344401-9fc7-11ec-b1a2-fba7932f0199}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{7c344402-9fc7-11ec-b1a2-fba7932f0199}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{7c344402-9fc7-11ec-b1a2-fba7932f0199}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {7c344401-9fc7-11ec-b1a2-fba7932f0199}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
nx OptIn
bootmenupolicy Standard
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {7c344401-9fc7-11ec-b1a2-fba7932f0199}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {7c344402-9fc7-11ec-b1a2-fba7932f0199}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Annick (administrateur) sur LAPTOP-U2KV5FC4 (HP HP Laptop 17-ak0xx) (12-06-2024 17:33:47)
Exécuté depuis C:\Users\Annick\Desktop\FRST64.exe
Profils chargés: Annick
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4474 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\ruxim\PLUGScheduler.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\ruxim\RUXIMICS.exe
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe <2>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.17531.20152.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21944.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\ruxim\PLUGScheduler.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4467_none_7e0f83e07c8c1985\TiWorker.exe
(svchost.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <2>
(svchost.exe ->) (Orange -> Orange) C:\Users\Annick\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCUpdate.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.413.234.0.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3666536 2018-03-15] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [704832 2017-04-27] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [1660760 2017-06-26] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Winlogon: [Shell] C:\Windows\explorer.exe [5683592 2024-06-11] (Microsoft Windows -> Microsoft Corporation) <=== ATTENTION
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [HP ENVY 5540 series (NET)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [MicrosoftEdgeAutoLaunch_0F9B0D1F3895CBD4B09041B68BD2A0F1] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4136912 2024-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [HP319B04 (HP ENVY 5540 series)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2034794175-4002452550-2235962446-1001\...\Run: [Web Companion] => C:\Users\Annick\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe [11456720 2024-01-04] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\WINDOWS\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 5520 series): C:\WINDOWS\system32\HPDiscoPMB111.dll [741536 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\chrmstp.exe [2024-06-05] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{F146C9B1-VMVQ-A9RC-NUFL-D0BA00B4E999}] -> C:\Users\Annick\AppData\Roaming\mrsys.exe MR
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {13505208-7627-4FBA-B818-861AE5F3777C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {36CB1B96-8DBE-458D-933F-CF4E338EC51E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4B402684-9737-4967-96FF-728338B3A52C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d369d42f-cda5-4255-9c90-f163e326a676" --version "6.24.11060" --silent
Task: {960E1F32-0D72-4303-8827-022B23C42A5D} - System32\Tasks\CCleanerSkipUAC - Annick => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {82194025-DF57-4E28-B80C-94D1A431E6DE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{D811115A-0952-40F9-89EE-75125B39C244} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {6F966D7D-A946-457A-9BED-ED432DC41162} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\-task -source HPSA
Task: {2690DB8E-C904-408D-8564-638D84009307} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/taskrestart
Task: {E5AF98BC-B4FD-44B7-B65B-78661388444A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107368 2017-04-07] (HP Inc. -> HP Inc.)
Task: {F2BEE49C-9EC1-4A0E-8D5D-44B1478DDFC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [625512 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\\/u
Task: {7EE1C604-0EDC-4A3B-9740-4B7A1369F8CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [625512 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/r /m
Task: {A1BB0034-0B5F-4020-898A-D05D24247D26} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/L Analysis
Task: {6BD32052-1741-4AC8-938E-1ACF359CC55B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208744 2017-04-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/noreport
Task: {8BA119A5-DAFA-45A1-B85A-EE9AD07271F3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1080168 2017-04-07] (HP Inc. -> HP Inc.)
Task: {05A1D44E-0C36-4C67-9418-006787448872} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH78V2X2GY => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1080168 2017-04-07] (HP Inc. -> HP Inc.)
Task: {380D470E-7FC1-4D53-AD7B-06CFD7D0966C} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {CAD8FF9C-FD08-407D-B05D-6935E52A193B} - System32\Tasks\HPCeeScheduleForAnnick => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [99208 2016-06-24] (Hewlett-Packard Company -> HP Inc.)
Task: {01131739-9571-4D52-851D-C28B47041376} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [6439584 2021-11-15] (HP Inc. -> HP Inc.)
Task: {60B66AFD-E227-49F9-A0FD-8EF22619B0F6} - System32\Tasks\HPCustParticipation HP Photosmart 5520 series => C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe [4119200 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
Task: {11DC118C-1CB1-4569-BC54-BEA6ACFD8B97} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {897244EA-310E-4D17-BDE8-CC480D1B7D86} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.)
Task: {F066B2E8-3A2E-41A4-80F8-EF7661656B71} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => %ProgramFiles%\CUAssistant\culauncher.exe (Pas de fichier)
Task: {C1668953-63F8-489D-8988-8524A9B6DB00} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Annick\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {BF83528B-52D9-4D8D-A7FD-23EF4E35D90A} - System32\Tasks\Microsoft\Windows\PLA\RPTDB94.tmp => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {08914362-50E0-4EF8-AF3B-833666AF6A76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D0271948-A60C-4CC2-B78B-2B3537C52593} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1AF02050-7DDC-4C40-8D04-C6DE6641ADFA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A9E9AA22-D8E3-4B13-B8AE-FEA0B1FA6162} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6CEECA6D-C6A0-448F-A119-67BFE947F6D7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E652B53D-B09E-4665-99D7-E68EAE942544} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2034794175-4002452550-2235962446-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-05-28] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8561F1B5-A09B-4BA1-B4AF-828340E2DF7C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {1A2582B3-AA83-41A3-A118-971D1C300B45} - System32\Tasks\Mozilla\Firefox Default Browser Agent EA241FE2D54DAEE7 => C:\Users\Annick\AppData\Local\Mozilla Firefox\default-browser-agent.exe do-task "EA241FE2D54DAEE7" (Pas de fichier)
Task: {80640D74-6CE0-4F6F-9F4C-3D25BFEF4079} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2034794175-4002452550-2235962446-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {80BA2026-6538-4B6A-AD10-76F52F7B956B} - System32\Tasks\OneDrive Standalone Update Task v2 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {279D349B-8D5A-4AB5-8BBE-9F241C09691D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2034794175-4002452550-2235962446-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {D7F81A1E-6ACC-4FEC-83E3-2D7783072218} - System32\Tasks\Remove AdwCleaner Application => C:\WINDOWS\system32\CMD.EXE [289792 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> /C DEL /F /Q "C:\Users\Annick\Downloads\adwcleaner.exe"
Task: {DAA747E6-AEBB-48F1-9DAB-602CD2D9227E} - System32\Tasks\RtHDVBg_Session => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4B8D14FF-0BDB-417E-AA80-BE3FE2BBB838} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9234280 2017-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3CCC4AEB-8BAA-4732-8067-B0B88C5A43BA} - System32\Tasks\StartCN => c:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3AC43E28-3EDF-46A3-A305-80204E2BE59C} - System32\Tasks\Uninstall AdwCleaner Application => C:\Users\Annick\Downloads\adwcleaner.exe /uninstall (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForAnnick.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}: [DhcpDomain] home
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}\C496675626F687D234446314: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b85732e-17ef-45fe-be8a-86d91e37cb73}\C496675626F687D234446314: [DhcpDomain] home
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\1444D494E49435452514459464: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\75966496021646D696E6963747271647966602F45756374702146756E65756: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\C496675626F687D234446314: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\C496675626F687D234446314: [DhcpDomain] home
Tcpip\..\Interfaces\{ab752699-20eb-4bc4-a41b-da0db74f496c}\F40707F60214E6E69636B602: [DhcpNameServer] 192.168.27.157
Tcpip\..\Interfaces\{e92f67e7-736f-4e8e-9a5a-8ee9ac1ae9f2}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-11]
Edge DownloadDir: Default -> C:\Users\Annick\Downloads
Edge HomePage: Default -> hxxps://
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs hors connexion) - C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-28]
Edge Extension: (Edge relevant text changes) - C:\Users\Annick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: k95w7d4w.default
FF ProfilePath: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\k95w7d4w.default [2023-11-09]
FF Homepage: Mozilla\Firefox\Profiles\k95w7d4w.default -> hxxps://
FF NewTab: Mozilla\Firefox\Profiles\k95w7d4w.default -> hxxps://
FF ProfilePath: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release [2024-06-12]
FF Homepage: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://google.fr
FF NewTab: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://
FF Notifications: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> hxxps://www.instagram.com; hxxps://www.youtube.com; hxxps://www.pagesjaunes.fr; hxxps://www.echantillonsclub.com; hxxps://artistedudiamant.com; hxxps://www.retraite.com; hxxps://mail.google.com; hxxps://www.minuteconso.com; hxxps://www.bonial.fr; hxxps://recetteplat.net; hxxps://www.recette360.com; hxxps://www.francoisesaget.com; hxxps://www.boulanger.com; hxxps://www.pinterest.fr; hxxps://www.argentdubeurre.com; hxxps://www.runesmith.top; hxxps://www.temu.com; hxxps://www.lettres-gratuites.com; hxxps://www.tiktok.com
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {c5ffbd00-71e8-4603-a19b-860104b7ac62}
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {82c0173d-b61d-4cd3-8e01-ffc56211a71c}
FF NewTabOverride: Mozilla\Firefox\Profiles\q5uidnjv.default-release -> Enabled: {3bf15552-e64b-4396-aa91-448b71aad69a}
FF Extension: (Foto – Soft) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\foto-soft-colorway@mozilla.org.xpi [2023-03-17]
FF Extension: (Mes recettes de cuisine) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\recettes-de-cuisine-2023@cuisine.com.xpi [2023-07-31]
FF Extension: (Print Recipes and Search) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{3bf15552-e64b-4396-aa91-448b71aad69a}.xpi [2023-02-15] [UpdateUrl:hxxps://cdn.printrecipes-cdn.net/xpi/printrecipes/print/0321/search/updates.json]
FF Extension: (PDF Editor and Search by PDFtab) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{82c0173d-b61d-4cd3-8e01-ffc56211a71c}.xpi [2024-05-30] [UpdateUrl:hxxps://cdn.pdftab-cdn.com/xpi/pdftab/yhs/0721/search/updates.json]
FF Extension: (Freshy Newtab and Search ) - C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\Extensions\{c5ffbd00-71e8-4603-a19b-860104b7ac62}.xpi [2023-04-08] [UpdateUrl:hxxps://cdn.freshysearch-cdn.com/xpi/freshy/yhs/01020/searchnnewtab/updates.json]
FF SearchPlugin: C:\Users\Annick\AppData\Roaming\Mozilla\Firefox\Profiles\q5uidnjv.default-release\searchplugins\Yahoo Search.xml [2023-10-09]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-12] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default [2024-06-12]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.iwisesales.com; hxxps://www.supertoinette.com
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "","hxxp://google.com/","hxxps://%20orange.fr/"
CHR NewTab: Default -> Not-active:"chrome-extension://onghofjobpgcdeeifjfbcfepkchnenoh/newtab.html"
CHR Extension: (Google Docs hors connexion) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04]
CHR Extension: (Orange page d'accueil) - C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-01-04]
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-06-11]
CHR Profile: C:\Users\Annick\AppData\Local\Google\Chrome\User Data\System Profile [2024-06-11]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [127488 2017-08-30] (Realtek Semiconductor Corp.) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1327400 2017-09-05] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-05-08] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [630776 2017-02-06] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 StillCam; C:\WINDOWS\System32\drivers\serscan.sys [13312 2022-07-14] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U3 aspnet_state; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-06-12 17:33 - 2024-06-12 17:44 - 000030228 _____ C:\Users\Annick\Desktop\FRST.txt
2024-06-12 17:30 - 2024-06-12 17:39 - 000000000 ____D C:\FRST
2024-06-12 14:45 - 2024-06-12 14:45 - 000195377 _____ C:\Users\Annick\Desktop\ZHPDiag.txt
2024-06-12 13:41 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Desktop\FRST64.exe
2024-06-12 13:38 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Downloads\FRST64.exe
2024-06-12 09:17 - 2024-06-12 14:45 - 000000000 ____D C:\Users\Annick\AppData\Roaming\ZHP
2024-06-12 09:17 - 2024-06-12 14:08 - 000000873 _____ C:\Users\Annick\Desktop\ZHPSuite.lnk
2024-06-12 09:17 - 2024-06-12 09:17 - 000000000 ____D C:\Users\Annick\AppData\Local\ZHP
2024-06-12 08:48 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Desktop\ZHPSuite.exe
2024-06-12 08:47 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Downloads\ZHPSuite.exe
2024-06-12 08:35 - 2024-06-12 08:35 - 000000000 ___HD C:\$WinREAgent
2024-06-11 22:38 - 2024-06-11 22:38 - 000042160 _____ C:\WINDOWS\system32\lc.dat
2024-06-11 16:14 - 2024-06-11 16:14 - 000001123 _____ C:\Users\Annick\Desktop\HDCleaner.lnk
2024-06-11 16:14 - 2024-06-11 16:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDCleaner
2024-06-11 16:14 - 2024-06-11 16:14 - 000000000 ____D C:\Program Files\HDCleaner
2024-06-10 18:40 - 2024-06-10 18:40 - 000000000 ____H C:\Users\Annick\BITE0E8.tmp
2024-06-10 17:52 - 2024-06-10 17:52 - 000000332 _____ C:\Users\Annick\Downloads\Restaurant-Traiteur-la-Ferme-de-Montimont-vCard-Contact-Adresse-Téléphone.vcf
2024-06-10 17:52 - 2024-06-10 17:52 - 000000332 _____ C:\Users\Annick\Downloads\Restaurant-Traiteur-la-Ferme-de-Montimont-vCard-Contact-Adresse-Téléphone(1).vcf
2024-06-05 20:15 - 2024-06-05 20:15 - 000141524 _____ C:\Users\Annick\Downloads\mkrid-web.pdf
2024-06-05 11:40 - 2024-06-05 11:40 - 000000419 _____ C:\Users\Annick\Downloads\Lecteur de CD - Raccourci.lnk
2024-06-04 16:57 - 2024-06-04 16:57 - 000160567 _____ C:\Users\Annick\Downloads\AttestationDroits.pdf
2024-06-04 16:41 - 2024-06-04 16:41 - 000244673 _____ C:\Users\Annick\Downloads\Declaration_ressources-20230801_20240430.pdf
2024-06-03 17:54 - 2024-06-03 17:54 - 008712256 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup(1).exe
2024-06-03 17:52 - 2024-06-03 17:52 - 008712256 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup(2).exe
2024-05-28 18:07 - 2024-06-12 13:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-23 18:20 - 2024-05-23 18:20 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\tresor publique 2023-2024
2024-05-18 12:59 - 2024-05-25 13:24 - 000000000 ____D C:\Users\Annick\AppData\Roaming\HpUpdate
2024-05-18 12:59 - 2024-05-18 12:59 - 000003796 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Photosmart 5520 series
2024-05-18 12:59 - 2024-05-18 12:59 - 000000000 ____D C:\Users\Annick\AppData\LocalLow\Hewlett-Packard
2024-05-18 12:59 - 2021-12-02 23:22 - 000741536 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMB111.dll
2024-05-18 11:38 - 2024-05-18 11:39 - 003362616 _____ (OneLaunch ) C:\Users\Annick\Downloads\OneLaunch - Recipes Online_hgy4w.exe
2024-05-03 09:18 - 2024-05-03 09:18 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\FeedbackHub
2024-05-02 20:20 - 2024-05-02 20:20 - 000000082 _____ C:\Users\Annick\OneDrive\Documents\cc_20240502_202020.reg
2024-05-01 14:55 - 2024-05-01 14:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-25 11:37 - 2024-04-25 11:37 - 000168948 _____ C:\Users\Annick\Downloads\[Chèque énergie] Bilan de la pré-affectation de votre chèque énergie.zip
2024-04-22 20:29 - 2024-04-22 20:29 - 000000773 _____ C:\Users\Annick\Downloads\Objets 3D - Raccourci.lnk
2024-04-20 08:05 - 2024-04-20 08:05 - 001376816 _____ (Google LLC) C:\Users\Annick\Downloads\ChromeSetup.exe
2024-04-10 11:27 - 2024-04-10 11:27 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-10 11:24 - 2024-04-10 11:24 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-19 09:46 - 2024-03-19 09:46 - 000000000 ____D C:\ProgramData\Norton
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-06-12 18:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-06-12 14:47 - 2022-03-09 18:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-06-12 14:08 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-12 09:17 - 2021-07-15 08:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-12 08:50 - 2021-07-15 08:54 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-06-12 08:27 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-06-12 08:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-06-12 08:20 - 2022-03-09 19:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-12 08:20 - 2021-07-20 18:49 - 000008192 ___SH C:\DumpStack.log.tmp
2024-06-11 22:49 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-06-11 22:48 - 2021-07-04 01:18 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2024-06-11 22:46 - 2022-03-09 18:37 - 000565072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-11 22:43 - 2022-03-09 18:47 - 000000000 ____D C:\Users\Annick
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-11 22:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-11 22:37 - 2021-12-03 09:01 - 000000000 ____D C:\Users\Annick\AppData\Local\CrashDumps
2024-06-11 21:47 - 2022-02-09 10:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-11 20:55 - 2021-08-27 09:28 - 000000000 ____D C:\Program Files\CCleaner
2024-06-11 19:04 - 2022-03-09 19:40 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-06-11 18:52 - 2022-12-14 10:55 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-06-11 16:45 - 2021-07-19 17:44 - 000000000 ____D C:\ProgramData\Packages
2024-06-11 16:45 - 2021-07-04 12:07 - 000000000 ____D C:\Users\Annick\AppData\Local\Packages
2024-06-11 16:38 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-06-11 16:30 - 2022-12-14 10:55 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-06-11 15:26 - 2022-09-02 19:25 - 000000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForAnnick.job
2024-06-11 15:26 - 2021-07-04 12:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-06-10 18:40 - 2022-03-09 19:40 - 000003264 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForAnnick
2024-06-09 10:20 - 2023-01-17 09:54 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-06-09 10:20 - 2021-07-04 12:52 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-06-07 16:53 - 2022-03-09 19:40 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-07 16:53 - 2022-03-09 19:40 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-06-05 06:51 - 2021-07-19 18:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-06-05 06:48 - 2022-01-18 21:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-06-04 18:05 - 2022-03-21 10:23 - 000001717 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2024-06-04 16:59 - 2022-04-08 16:15 - 000000000 ____D C:\Users\Annick\OneDrive\Documents\DAVID
2024-05-28 20:49 - 2022-03-09 19:01 - 001839244 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-28 20:49 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-28 20:49 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-28 20:12 - 2022-08-13 11:32 - 000001215 _____ C:\Users\Annick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-28 20:12 - 2021-07-04 12:55 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-26 21:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-05-25 09:35 - 2021-07-30 19:54 - 000000000 ____D C:\Users\Annick\AppData\Local\ElevatedDiagnostics
2024-05-23 10:56 - 2021-11-17 18:38 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-05-23 10:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-05-18 12:59 - 2021-07-22 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2024-05-18 12:59 - 2021-07-04 10:42 - 000000000 ____D C:\Program Files (x86)\HP
2024-05-18 12:59 - 2017-11-15 05:26 - 000000000 ____D C:\ProgramData\HP
2024-05-18 12:59 - 2017-11-15 05:26 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2024-05-18 12:59 - 2017-11-15 05:25 - 000000000 ____D C:\Program Files\HP
2024-05-16 10:13 - 2022-03-09 19:40 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-05-16 10:10 - 2022-10-13 12:31 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-05-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-05-15 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-05-15 20:26 - 2022-03-12 10:18 - 000000000 ____D C:\WINDOWS\HoloShell
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-05-15 20:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-05-15 20:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-05-15 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-05-15 20:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-05-15 12:26 - 2022-03-09 18:43 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-05-15 11:27 - 2021-07-16 09:55 - 000000000 ____D C:\Program Files\ruxim
==================== Fichiers à la racine de certains dossiers ========
2022-08-16 18:58 - 2022-08-16 18:58 - 000001076 _____ () C:\Users\Annick\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2021-06-30 17:06 - 2017-08-28 09:54 - 000050960 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:05 - 2013-04-01 23:19 - 000574464 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\rtl8723de.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000054192 _____ C:\WINDOWS\system32\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000039420 _____ C:\WINDOWS\system32\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2021-06-30 17:06 - 2017-08-28 09:54 - 000046708 _____ C:\WINDOWS\system32\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2017-01-28 00:01 - 2017-01-28 00:01 - 000322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2021-06-30 17:02 - 2017-01-28 00:01 - 000322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-01-28 00:02 - 2017-01-28 00:02 - 000118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
2021-06-30 17:02 - 2017-01-28 00:02 - 000118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-30 17:06 - 2016-09-20 19:00 - 000001156 _____ C:\WINDOWS\PidVid_List.dll
2021-06-30 17:05 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-01-28 00:04 - 2017-01-28 00:04 - 000326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2021-06-30 17:02 - 2017-01-28 00:04 - 000326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-01-28 00:05 - 2017-01-28 00:05 - 000103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2021-06-30 17:02 - 2017-01-28 00:05 - 000103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2024-06-12 13:41 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Desktop\FRST64.exe
2024-06-12 08:48 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Desktop\ZHPSuite.exe
2024-06-12 13:38 - 2024-06-12 13:39 - 002395136 _____ (Farbar) C:\Users\Annick\Downloads\FRST64.exe
2024-06-12 08:47 - 2024-06-12 08:47 - 003539104 _____ (Nicolas Coolman) C:\Users\Annick\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{55e3dcb3-dc0a-11eb-b186-806e6f6e6963}
{aea593f9-d9fc-11eb-a6ff-b54e64f8581e}
{aea593fa-d9fc-11eb-a6ff-b54e64f8581e}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {55e3dcb3-dc0a-11eb-b186-806e6f6e6963}
description Internal Hard Disk or Solid State Disk
Application logicielle (101fffff)
--------------------------------
identificateur {aea593f9-d9fc-11eb-a6ff-b54e64f8581e}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {aea593fa-d9fc-11eb-a6ff-b54e64f8581e}
description EFI DVD/CDROM
Chargeur de démarrage Windows
-----------------------------
identificateur {7c344401-9fc7-11ec-b1a2-fba7932f0199}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{7c344402-9fc7-11ec-b1a2-fba7932f0199}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{7c344402-9fc7-11ec-b1a2-fba7932f0199}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {7c344401-9fc7-11ec-b1a2-fba7932f0199}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
nx OptIn
bootmenupolicy Standard
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ed83c23c-9fc6-11ec-bad7-af09749ebf32}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {7c344401-9fc7-11ec-b1a2-fba7932f0199}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {7c344402-9fc7-11ec-b1a2-fba7932f0199}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================