Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.07.2024
Exécuté par rosem (administrateur) sur LAPTOP-LVU4IPG7 (ASUSTeK COMPUTER INC. X555QA) (05-07-2024 19:19:09)
Exécuté depuis D:\Documents\Desktop\FRST64.exe
Profils chargés: rosem
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4598 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\AMD\CNext\CNext\amddvr.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_BEKZ44WF4XKB4347GLRBGKL6Z2WIBGBRTYJ7RNEOD5IH4XBN4LVQ\DeepL.exe ->) (The CefSharp Authors) [Fichier non signé] C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_URIJA5AX26HNM7QVJKAF4VRTKDDVZDUL2XD4MMI4IJ3R32IZBLRA\CefSharp.BrowserSubprocess.exe <4>
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DeepL SE -> DeepL SE) C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_BEKZ44WF4XKB4347GLRBGKL6Z2WIBGBRTYJ7RNEOD5IH4XBN4LVQ\DeepL.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0329222.inf_amd64_34b975d2dd410229\B329211\atiesrxx.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.5\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\x64\MemfilesService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\rosem\AppData\Local\Microsoft\OneDrive\24.116.0609.0005\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11432352 2024-06-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC)
Startup: C:\Users\rosem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-15]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\rosem\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
BootExecute: autocheck autochk *
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F2E69188-BEB5-468B-B8EF-4B2393A14064} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {C71D8331-82B3-4DDC-9CD6-EA4AC6A5EF6E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {2C7E5EC9-8218-47AC-A3AD-082EBBAA5F84} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C4A1E506-0090-4DA0-BC06-8511332EA272} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5B2742C2-C61E-4CD9-BEA0-2054AF6581BD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{CFA385A9-909E-4AEB-8C18-4CD77F52313C} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {B255A6B5-0398-4FBB-9CDF-3840B1450B57} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {8527C1D7-EB67-4D3D-B73D-86A5BEF053C5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4D97894-6EDD-435B-B054-107B3AD82FA9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2BF4AF8B-2533-46C3-A740-75FDB668A2DD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D1331C0-A488-413A-A7D7-0E4306668211} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé] -> C:\Program Files\CONEXANT\cAudioFilterAgent\/uid:cAudioFilterAgent
Task: {5A57C544-2D5D-42EC-8F38-0C2C1E38A014} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.) -> C:\Program Files\CONEXANT\SAII\"/c /delay:5"
Task: {3CCA1893-0317-46A3-9CC3-6CB14149B895} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7E1C30B9-D4B9-4954-836E-EF1774564943} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86939312-BF7B-44D5-AE30-A3EBE9A9E801} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {419967A6-03A2-4592-A0EB-06E2451C7A70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {914725AD-8338-4A21-B2D9-D5F3D7FC19C0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {D6DAAB2C-BE17-4F31-891C-82C05ECB4CEE} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [606624 2024-05-09] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {7DD48072-AC70-45C8-9BC3-5D03C96E207B} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3640571195-1939780321-1429392818-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {C86960C6-2692-46B1-B7A3-F7ACC115BBE2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-07-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {7C3AFF69-3849-4C0C-8A68-980949019C63} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [31136 2024-05-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {40403B27-0257-4849-9D16-48F9EDA68455} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {D332C8CC-92ED-41C9-B623-67E329811040} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{241be9e0-5855-46d9-a4e1-127bd43a5e17}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4065b93a-363a-493f-a8a8-ac919fa3426e}: [DhcpNameServer] 10.66.16.1
Tcpip\..\Interfaces\{d4f384fa-fa2c-4d98-be99-3dd691f9a0b9}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{d4f384fa-fa2c-4d98-be99-3dd691f9a0b9}: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{fb269cac-3026-4b16-b584-3f34114ec58c}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-05]
Edge Extension: (Edge relevant text changes) - C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: efwx608m.default
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\6oodp7fy.default-release-1 [2024-05-22]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\6oodp7fy.default-release-1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-03-03]
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\efwx608m.default [2024-05-22]
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release [2024-07-01]
FF Extension: (Expressionist – Balanced) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\expressionist-balanced-colorway@mozilla.org.xpi [2023-05-30]
FF Extension: (I don't care about cookies) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2024-01-08]
FF Extension: (uBlock Origin) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-06-24]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default [2024-07-05]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.fr/","","hxxp://www.amazon.fr/gp/bit/amazonserp/ref=bit_bds-p24_serp_cr_fr_display?ie=UTF8&tagbase=bds-p24&tbrId=v1_abb-channel-24_25b780c5205d4b05a0a7b70128d18d5f_39_1007_20140220_FR_cr_sp_","hxxp://search.conduit.com/?ctid=CT3324790&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPEBEC1EDA-51B5-4809-B823-9CB6365C38DB&SSPV=","hxxp://start.mysearchdial.com/?f=1&a=tele0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByDyCyEzy0CyDtByDyE0Ezy0D0CtN0D0Tzu0SyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1765586606&ir=","hxxp://www.oursurfing.com/?type=hp&ts=1442755207&z=20bc80af17f6fcd397bf9c4ae6df97dfgzzomwwoem&from=amt&uid=wdcxwd5000aaks-00d2b0_wd-wcasyf50090100901"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-07-04]
CHR Extension: (I don't care about cookies) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2024-06-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-24]
CHR Extension: (Click&Clean) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2024-06-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-06-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-03]
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-30]
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-05]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-03-30] (Apple Inc. -> Apple Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.5\ABService.exe [1106416 2024-03-12] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
S3 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [888216 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
R2 GUMemfilesService; C:\Program Files (x86)\Glary Utilities\x64\MemfilesService.exe [433560 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities\GUPMService.exe [76696 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-18] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [172928 2024-05-22] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2024-05-22] (AOMEI International Network Limited -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [23568 2024-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-11] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-01 18:25 - 2024-07-01 18:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-06-26 21:45 - 2024-06-26 21:45 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-06-26 15:28 - 2024-06-26 15:28 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-06-26 15:27 - 2024-06-26 15:27 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-26 14:51 - 2024-06-26 14:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-05 19:19 - 2020-10-31 17:51 - 000000000 ____D C:\FRST
2024-07-05 19:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-05 18:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-05 18:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-05 18:18 - 2018-11-09 20:42 - 000000000 ___RD C:\Users\rosem\OneDrive
2024-07-05 12:58 - 2022-01-02 20:16 - 000000000 ____D C:\Users\rosem\AppData\Local\CrashDumps
2024-07-05 12:50 - 2024-05-22 11:41 - 000000432 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2024-07-05 12:50 - 2024-05-22 11:41 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2024-07-04 16:33 - 2020-11-28 12:27 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Word
2024-07-04 10:12 - 2020-11-28 12:23 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Office
2024-07-04 09:43 - 2020-09-27 09:54 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-03 14:08 - 2020-09-27 07:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-03 09:51 - 2020-11-11 21:53 - 000000000 ____D C:\Users\rosem\AppData\Local\D3DSCache
2024-07-01 18:46 - 2022-02-09 13:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-07-01 18:45 - 2021-03-28 10:16 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-07-01 18:45 - 2021-03-28 10:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-07-01 18:33 - 2020-11-28 12:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-07-01 18:24 - 2021-03-28 10:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-07-01 11:43 - 2022-10-11 21:29 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-06-30 16:00 - 2020-12-12 15:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-06-30 14:00 - 2020-11-11 21:53 - 000000000 ____D C:\Users\rosem\AppData\Local\Packages
2024-06-29 18:12 - 2020-11-29 14:13 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Excel
2024-06-29 17:56 - 2021-12-13 17:19 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3640571195-1939780321-1429392818-1001
2024-06-29 17:56 - 2020-12-12 15:51 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3640571195-1939780321-1429392818-1001
2024-06-29 17:56 - 2020-12-12 15:43 - 000002428 _____ C:\Users\rosem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-28 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-06-28 09:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-06-27 09:35 - 2021-12-17 21:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-06-27 09:35 - 2020-12-12 15:49 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-27 09:35 - 2019-12-07 16:49 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2024-06-27 09:35 - 2019-12-07 16:49 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2024-06-26 21:46 - 2020-11-28 11:15 - 000008192 ___SH C:\DumpStack.log.tmp
2024-06-26 21:46 - 2020-11-11 20:51 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2024-06-26 21:46 - 2020-09-27 09:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-26 21:46 - 2020-09-27 07:51 - 000636408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-26 21:46 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-06-26 21:45 - 2023-12-14 14:13 - 000000000 ____D C:\WINDOWS\InboxApps
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-26 15:37 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-26 15:27 - 2020-09-27 09:53 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-21 16:01 - 2021-05-05 19:21 - 000000000 ____D C:\Users\rosem\AppData\Roaming\molotov
2024-06-21 16:00 - 2021-05-05 19:22 - 000000000 ____D C:\Users\rosem\AppData\Local\molotov
2024-06-19 11:03 - 2018-11-09 20:33 - 000000000 ___SD C:\Users\rosem\AppData\Roaming\Microsoft\Credentials
2024-06-18 16:48 - 2021-07-04 16:09 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-06-18 16:47 - 2022-05-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-06-16 17:15 - 2020-09-27 09:53 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-11 20:11 - 2020-11-15 13:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-11 20:06 - 2020-11-15 13:59 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-06-11 20:01 - 2020-09-27 09:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-06-11 09:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-11 09:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-11 06:58 - 2020-09-27 09:53 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2020-12-04 23:23 - 2024-05-22 13:56 - 000007605 _____ () C:\Users\rosem\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par rosem (administrateur) sur LAPTOP-LVU4IPG7 (ASUSTeK COMPUTER INC. X555QA) (05-07-2024 19:19:09)
Exécuté depuis D:\Documents\Desktop\FRST64.exe
Profils chargés: rosem
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4598 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\AMD\CNext\CNext\amddvr.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_BEKZ44WF4XKB4347GLRBGKL6Z2WIBGBRTYJ7RNEOD5IH4XBN4LVQ\DeepL.exe ->) (The CefSharp Authors) [Fichier non signé] C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_URIJA5AX26HNM7QVJKAF4VRTKDDVZDUL2XD4MMI4IJ3R32IZBLRA\CefSharp.BrowserSubprocess.exe <4>
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DeepL SE -> DeepL SE) C:\Users\rosem\AppData\Local\0install.net\implementations\sha256new_BEKZ44WF4XKB4347GLRBGKL6Z2WIBGBRTYJ7RNEOD5IH4XBN4LVQ\DeepL.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0329222.inf_amd64_34b975d2dd410229\B329211\atiesrxx.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.5\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\x64\MemfilesService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\rosem\AppData\Local\Microsoft\OneDrive\24.116.0609.0005\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11432352 2024-06-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-27] (Google LLC -> Google LLC)
Startup: C:\Users\rosem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-15]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\rosem\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
BootExecute: autocheck autochk *
HKU\S-1-5-21-3640571195-1939780321-1429392818-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F2E69188-BEB5-468B-B8EF-4B2393A14064} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {C71D8331-82B3-4DDC-9CD6-EA4AC6A5EF6E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {2C7E5EC9-8218-47AC-A3AD-082EBBAA5F84} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C4A1E506-0090-4DA0-BC06-8511332EA272} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5B2742C2-C61E-4CD9-BEA0-2054AF6581BD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{CFA385A9-909E-4AEB-8C18-4CD77F52313C} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {B255A6B5-0398-4FBB-9CDF-3840B1450B57} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {8527C1D7-EB67-4D3D-B73D-86A5BEF053C5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4D97894-6EDD-435B-B054-107B3AD82FA9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2BF4AF8B-2533-46C3-A740-75FDB668A2DD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D1331C0-A488-413A-A7D7-0E4306668211} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé] -> C:\Program Files\CONEXANT\cAudioFilterAgent\/uid:cAudioFilterAgent
Task: {5A57C544-2D5D-42EC-8F38-0C2C1E38A014} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.) -> C:\Program Files\CONEXANT\SAII\"/c /delay:5"
Task: {3CCA1893-0317-46A3-9CC3-6CB14149B895} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7E1C30B9-D4B9-4954-836E-EF1774564943} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86939312-BF7B-44D5-AE30-A3EBE9A9E801} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {419967A6-03A2-4592-A0EB-06E2451C7A70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpCmdRun.exe [1678960 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {914725AD-8338-4A21-B2D9-D5F3D7FC19C0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {D6DAAB2C-BE17-4F31-891C-82C05ECB4CEE} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [606624 2024-05-09] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {7DD48072-AC70-45C8-9BC3-5D03C96E207B} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3640571195-1939780321-1429392818-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {C86960C6-2692-46B1-B7A3-F7ACC115BBE2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-07-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {7C3AFF69-3849-4C0C-8A68-980949019C63} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [31136 2024-05-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {40403B27-0257-4849-9D16-48F9EDA68455} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {D332C8CC-92ED-41C9-B623-67E329811040} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{241be9e0-5855-46d9-a4e1-127bd43a5e17}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4065b93a-363a-493f-a8a8-ac919fa3426e}: [DhcpNameServer] 10.66.16.1
Tcpip\..\Interfaces\{d4f384fa-fa2c-4d98-be99-3dd691f9a0b9}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{d4f384fa-fa2c-4d98-be99-3dd691f9a0b9}: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{fb269cac-3026-4b16-b584-3f34114ec58c}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-05]
Edge Extension: (Edge relevant text changes) - C:\Users\rosem\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: efwx608m.default
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\6oodp7fy.default-release-1 [2024-05-22]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\6oodp7fy.default-release-1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-03-03]
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\efwx608m.default [2024-05-22]
FF ProfilePath: C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release [2024-07-01]
FF Extension: (Expressionist – Balanced) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\expressionist-balanced-colorway@mozilla.org.xpi [2023-05-30]
FF Extension: (I don't care about cookies) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2024-01-08]
FF Extension: (uBlock Origin) - C:\Users\rosem\AppData\Roaming\Mozilla\Firefox\Profiles\q53mr86w.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-06-24]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default [2024-07-05]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.fr/","","hxxp://www.amazon.fr/gp/bit/amazonserp/ref=bit_bds-p24_serp_cr_fr_display?ie=UTF8&tagbase=bds-p24&tbrId=v1_abb-channel-24_25b780c5205d4b05a0a7b70128d18d5f_39_1007_20140220_FR_cr_sp_","hxxp://search.conduit.com/?ctid=CT3324790&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPEBEC1EDA-51B5-4809-B823-9CB6365C38DB&SSPV=","hxxp://start.mysearchdial.com/?f=1&a=tele0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByDyCyEzy0CyDtByDyE0Ezy0D0CtN0D0Tzu0SyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1765586606&ir=","hxxp://www.oursurfing.com/?type=hp&ts=1442755207&z=20bc80af17f6fcd397bf9c4ae6df97dfgzzomwwoem&from=amt&uid=wdcxwd5000aaks-00d2b0_wd-wcasyf50090100901"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-07-04]
CHR Extension: (I don't care about cookies) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2024-06-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-24]
CHR Extension: (Click&Clean) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2024-06-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-06-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-03]
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-30]
CHR Profile: C:\Users\rosem\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-05]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-03-30] (Apple Inc. -> Apple Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.5\ABService.exe [1106416 2024-03-12] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-21] (Microsoft Corporation -> Microsoft Corporation)
S3 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [888216 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
R2 GUMemfilesService; C:\Program Files (x86)\Glary Utilities\x64\MemfilesService.exe [433560 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities\GUPMService.exe [76696 2024-04-19] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-06-18] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [172928 2024-05-22] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2024-05-22] (AOMEI International Network Limited -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [23568 2024-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-06-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-06-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-11] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-01 18:25 - 2024-07-01 18:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-06-26 21:45 - 2024-06-26 21:45 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-06-26 15:28 - 2024-06-26 15:28 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-06-26 15:27 - 2024-06-26 15:27 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-26 14:51 - 2024-06-26 14:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-07-05 19:19 - 2020-10-31 17:51 - 000000000 ____D C:\FRST
2024-07-05 19:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-05 18:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-05 18:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-05 18:18 - 2018-11-09 20:42 - 000000000 ___RD C:\Users\rosem\OneDrive
2024-07-05 12:58 - 2022-01-02 20:16 - 000000000 ____D C:\Users\rosem\AppData\Local\CrashDumps
2024-07-05 12:50 - 2024-05-22 11:41 - 000000432 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2024-07-05 12:50 - 2024-05-22 11:41 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2024-07-04 16:33 - 2020-11-28 12:27 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Word
2024-07-04 10:12 - 2020-11-28 12:23 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Office
2024-07-04 09:43 - 2020-09-27 09:54 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-03 14:08 - 2020-09-27 07:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-03 09:51 - 2020-11-11 21:53 - 000000000 ____D C:\Users\rosem\AppData\Local\D3DSCache
2024-07-01 18:46 - 2022-02-09 13:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-07-01 18:45 - 2021-03-28 10:16 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-07-01 18:45 - 2021-03-28 10:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-07-01 18:33 - 2020-11-28 12:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-07-01 18:24 - 2021-03-28 10:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-07-01 11:43 - 2022-10-11 21:29 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-06-30 16:00 - 2020-12-12 15:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-06-30 14:00 - 2020-11-11 21:53 - 000000000 ____D C:\Users\rosem\AppData\Local\Packages
2024-06-29 18:12 - 2020-11-29 14:13 - 000000000 ____D C:\Users\rosem\AppData\Roaming\Microsoft\Excel
2024-06-29 17:56 - 2021-12-13 17:19 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3640571195-1939780321-1429392818-1001
2024-06-29 17:56 - 2020-12-12 15:51 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3640571195-1939780321-1429392818-1001
2024-06-29 17:56 - 2020-12-12 15:43 - 000002428 _____ C:\Users\rosem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-28 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-06-28 09:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-06-27 09:35 - 2021-12-17 21:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-06-27 09:35 - 2020-12-12 15:49 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-27 09:35 - 2019-12-07 16:49 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2024-06-27 09:35 - 2019-12-07 16:49 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2024-06-26 21:46 - 2020-11-28 11:15 - 000008192 ___SH C:\DumpStack.log.tmp
2024-06-26 21:46 - 2020-11-11 20:51 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2024-06-26 21:46 - 2020-09-27 09:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-26 21:46 - 2020-09-27 07:51 - 000636408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-26 21:46 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-06-26 21:45 - 2023-12-14 14:13 - 000000000 ____D C:\WINDOWS\InboxApps
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-06-26 21:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-26 15:37 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-26 15:27 - 2020-09-27 09:53 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-21 16:01 - 2021-05-05 19:21 - 000000000 ____D C:\Users\rosem\AppData\Roaming\molotov
2024-06-21 16:00 - 2021-05-05 19:22 - 000000000 ____D C:\Users\rosem\AppData\Local\molotov
2024-06-19 11:03 - 2018-11-09 20:33 - 000000000 ___SD C:\Users\rosem\AppData\Roaming\Microsoft\Credentials
2024-06-18 16:48 - 2021-07-04 16:09 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-06-18 16:47 - 2022-05-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-06-16 17:15 - 2020-09-27 09:53 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-11 20:11 - 2020-11-15 13:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-11 20:06 - 2020-11-15 13:59 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-06-11 20:01 - 2020-09-27 09:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-06-11 09:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-11 09:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-11 06:58 - 2020-09-27 09:53 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2020-12-04 23:23 - 2024-05-22 13:56 - 000007605 _____ () C:\Users\rosem\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================