Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22.05.2024 01 Exécuté par anton (administrateur) sur LAURENCEAU (Acer Aspire A315-24P) (27-05-2024 14:21:42) Exécuté depuis C:\Users\anton\OneDrive\Bureau\FRST64.exe Profils chargés: anton Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3447 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\msedgewebview2.exe <6> (DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atieclxx.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe <6> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <33> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe (services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe (services.exe ->) (pdfforge GmbH -> Avanquest pdfforge GmbH) C:\Program Files\PDF Architect 9\activation-service.exe (services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3> (services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe (sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5> (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\anton\AppData\Local\Microsoft\OneDrive\24.091.0505.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\Installer\setup.exe [7182888 2024-05-26] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Spotify] => C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-27] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [MicrosoftEdgeAutoLaunch_27C358CB5E42F7E1A720AA41BA227239] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136912 2024-05-24] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\PDF Architect 9 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.23.0.2.dll [974120 2024-03-20] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com)) HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [196096 2023-08-26] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-24] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {D823FD2A-F610-457E-9F1E-B7BD4A13E2C5} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971792 2022-05-20] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto Task: {6B00A040-6A9F-4735-A73C-ED70D566C6D4} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41616 2022-05-20] (Acer Incorporated -> ) Task: {728EA85C-6C05-4BEF-BBA2-6788DBA0C96B} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836496 2022-05-20] (Acer Incorporated -> ) Task: {C4475ED5-DFB3-4190-A1A4-ECAA6C43F84E} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {6DABBFFA-DF18-41B5-A296-30FB81C22898} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {6E170B2D-5473-4F72-AD91-EFD84FBAC2B0} - System32\Tasks\App Explorer => C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION Task: {01481AD9-50A4-4363-9306-50611F23EFF5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) Task: {5092ED20-DD11-408E-94AE-14045CB98662} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) Task: {38A4EE32-7B85-4A4F-9153-49BDCE7C96C5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> ) Task: {AEEA5A60-1723-41AE-A3C0-D203E7A1633B} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) Task: {55D65461-5D68-4ED3-8ECB-E9FE08786D90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {7B6AE709-9C7A-4162-9CFE-2E5918E26A68} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "3e3b2913-f675-4f95-8f3d-5ffb845a26bc" --version "6.24.11060" --silent Task: {B806FF27-9A5D-4AF9-999A-77BD6D62F35B} - System32\Tasks\CCleanerSkipUAC - anton => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {313A8A70-B970-49B3-94D9-43C79C215F47} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{0931950A-6DFD-43DA-8FE8-973D9D882B32} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) Task: {6F59BFC7-790E-44FD-9652-7D70DB24D430} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation) Task: {5C04EE50-5FE6-4857-9A49-50C1692EE93D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation) Task: {D56CBC64-CAE0-43EB-87FF-94775DA9EB35} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation) Task: {2DFB42F5-7C70-4644-BDB6-865549CCCBA1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation) Task: {546F6663-BB16-4469-811B-9C22D628A1AD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168928 2024-05-10] (Microsoft Corporation -> Microsoft Corporation) Task: {819CA237-191B-4864-BAC1-813159AE9150} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {1070466D-697D-46C0-9DC3-76BF4A0F0B86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2FCA2F96-7DCF-44AF-A81A-AEEF1C2CA930} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7B3CB51D-5049-412E-8227-14250D0FA9BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4071AB47-530C-4C46-A7EC-BB6169843428} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8E7CFCED-AE04-406A-988C-18CE5F15FF1F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {73D868A8-0D21-467F-9012-E404994A14D4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-428499685-2534697496-1257434464-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {D18F665F-1128-4751-8C97-97395D57B208} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-17] (Mozilla Corporation -> Mozilla Foundation) Task: {5FA20006-6DD4-4F89-9BC5-463AAF4CB204} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> ) Task: {8ABF0210-BC5F-4798-A823-EAAFC256B17B} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-428499685-2534697496-1257434464-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation) Task: {9D9FE47E-0A84-4735-BA23-354A9B6AD8EF} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> ) Task: {065EDF48-41F8-4DD6-B597-677665CC24D7} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) Task: {7300A9A3-183D-4658-A386-B58DE5DF50C4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [450536 2022-05-24] (Acer Incorporated -> Acer Incorporated) Task: {A6FEE66A-29C2-4B36-A822-377B2F7A65B3} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-03-01] (Acer Incorporated -> Acer Incorporated) Task: {F65F2E58-AF23-4793-AB30-E13E252BACE6} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft) Task: {D2AD568C-BCF9-438D-A447-7D0819D424E8} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [342672 2022-06-01] (Acer Incorporated -> Acer Incorporated) Task: {F4F20379-70D0-4290-AEFE-6AE25DB5B483} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2022-05-17] (Acer Incorporated -> Acer Incorporated) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpDomain] lan Edge: ======= Edge Profile: C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-27] Edge Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26] Edge Extension: (Edge relevant text changes) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26] FireFox: ======== FF DefaultProfile: 46q9bsgz.default FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\46q9bsgz.default [2023-08-28] FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\mtr8tk46.default-release [2024-05-27] FF Homepage: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.20minutes.fr/ FF Notifications: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.sports.fr; hxxps://www.facebook.com; hxxps://www.pagesjaunes.fr; hxxps://www.instagram.com; hxxps://forums.futura-sciences.com; hxxps://www.lepoint.fr; hxxps://cursus.edu FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default [2024-05-13] CHR Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-21] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259216 2022-05-20] (Acer Incorporated -> Acer Incorporated) R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248016 2024-05-09] (Microsoft Corporation -> Microsoft Corporation) R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887344 2024-05-11] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-11] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) R3 PDF Architect 9; C:\Program Files\PDF Architect 9\activation-service.exe [3219392 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) S3 PDF Architect 9 Creator; C:\Program Files\PDF Architect 9\creator-ws.exe [509888 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) S3 PDF Architect 9 Update Service; C:\Program Files\PDF Architect 9\update-service.exe [415680 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH) S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [469992 2022-05-24] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [508392 2022-05-24] (Acer Incorporated -> Acer Incorporated) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [334992 2022-06-01] (Acer Incorporated -> Acer Incorporated) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated) R3 AMDAfdAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_f8b7b9ff8b9e6bf2\amdacpafd.sys [429984 2022-12-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35360 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\amdkmdag.sys [94458400 2024-01-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-01-15] (Microsoft Corporation) [Fichier non signé] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-01-15] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-11-17] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223184 2024-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MTKBTFilterX64; C:\WINDOWS\System32\drivers\mtkbtfilterx.sys [371144 2023-01-10] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1614792 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-17] (Microsoft Windows -> ) R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-05-27 14:21 - 2024-05-27 14:22 - 000027642 _____ C:\Users\anton\OneDrive\Bureau\FRST.txt 2024-05-27 14:20 - 2024-05-27 14:21 - 000000000 ____D C:\FRST 2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe 2024-05-27 14:06 - 2024-05-27 14:06 - 000203796 _____ C:\Users\anton\OneDrive\Bureau\ZHPDiag.txt 2024-05-27 13:59 - 2024-05-27 14:06 - 000000000 ____D C:\Users\anton\AppData\Roaming\ZHP 2024-05-27 13:59 - 2024-05-27 13:59 - 000000875 _____ C:\Users\anton\OneDrive\Bureau\ZHPSuite.lnk 2024-05-27 13:59 - 2024-05-27 13:59 - 000000000 ____D C:\Users\anton\AppData\Local\ZHP 2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe 2024-05-27 09:17 - 2024-05-27 09:17 - 000082066 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-3.pdf 2024-05-26 15:03 - 2024-05-26 15:05 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\UCheck 2024-05-24 14:25 - 2024-05-24 14:25 - 000082005 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-2.pdf 2024-05-24 14:19 - 2024-05-24 14:19 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-1.pdf 2024-05-24 14:06 - 2024-05-24 14:06 - 000024160 _____ C:\WINDOWS\system32\lc.dat 2024-05-24 14:05 - 2024-05-24 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2024-05-17 13:29 - 2024-05-17 13:29 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-05-16 17:06 - 2024-05-16 17:06 - 000082864 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment1.pdf 2024-05-16 17:06 - 2024-05-16 17:06 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment.pdf 2024-05-10 14:23 - 2024-05-10 14:23 - 000058228 _____ C:\Users\anton\OneDrive\Bureau\AFPA Dossier De Demande Formation 2023.pdf 2024-05-10 13:21 - 2024-05-10 13:21 - 000809500 _____ C:\WINDOWS\system32\perfh00C.dat 2024-05-10 13:21 - 2024-05-10 13:21 - 000156952 _____ C:\WINDOWS\system32\perfc00C.dat 2024-05-08 15:04 - 2024-05-01 14:41 - 000082815 _____ C:\Users\anton\OneDrive\Bureau\Technicien métreur du bâtiment.pdf 2024-05-08 14:11 - 2024-05-08 14:11 - 000000000 ___HD C:\OneDriveTemp 2024-05-06 14:33 - 2024-05-06 14:33 - 000056864 _____ C:\Users\anton\Downloads\FICHE_PRODUIT_ALTERNANCE_13990_Technicien_metreur_du_batiment__Contrat_en_alternance.pdf 2024-05-06 14:04 - 2024-05-06 14:04 - 000269700 _____ C:\Users\anton\Downloads\2024-2025_Diplômes_LAURENCEAU.pdf 2024-05-06 14:03 - 2024-05-06 14:03 - 000124699 _____ C:\Users\anton\Downloads\2024-2025_Bulletins_LAURENCEAU.pdf 2024-05-06 14:03 - 2024-05-06 14:03 - 000083128 _____ C:\Users\anton\Downloads\2024-2025_CV_LAURENCEAU.pdf 2024-05-01 11:53 - 2024-05-01 11:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem 2024-04-27 13:59 - 2024-04-27 13:59 - 000083128 _____ C:\Users\anton\Downloads\Métreur du bâtiment.pdf 2024-04-25 14:50 - 2024-04-25 14:50 - 000010035 _____ C:\Users\anton\OneDrive\Bureau\lettre de motiv.odt 2024-04-20 14:21 - 2024-04-20 14:21 - 000368710 _____ C:\Users\anton\Downloads\F.L.D.M - Comptes sociaux 2019.pdf 2024-04-19 14:14 - 2024-04-19 14:14 - 000006468 _____ C:\Users\anton\Downloads\details_sessions-1.pdf 2024-04-14 14:36 - 2024-04-14 14:36 - 000082738 _____ C:\Users\anton\Downloads\Opérateur de production mécanique.pdf 2024-04-12 14:56 - 2024-04-12 14:57 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs 2024-04-12 14:23 - 2024-04-12 14:23 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-04-12 14:22 - 2024-04-12 14:22 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-04-09 14:55 - 2024-04-09 14:55 - 000082083 _____ C:\Users\anton\Downloads\Contrôleur qualité mécanique-1.pdf 2024-04-09 14:54 - 2024-04-09 14:54 - 000082999 _____ C:\Users\anton\Downloads\Contrôleur conformité qualité en production.pdf 2024-04-09 14:54 - 2024-04-09 14:54 - 000082205 _____ C:\Users\anton\Downloads\Technicien contrôle qualité.pdf 2024-04-08 14:31 - 2024-04-08 14:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-04-01 14:37 - 2024-04-01 14:37 - 005989784 _____ C:\Users\anton\OneDrive\Bureau\bts-management-economique-de-la-construction (1).pdf 2024-03-22 15:35 - 2024-03-22 15:35 - 000006392 _____ C:\Users\anton\Downloads\details_sessions.pdf 2024-03-22 15:30 - 2024-03-22 15:30 - 000015298 _____ C:\Users\anton\OneDrive\Bureau\lettre mail avant candidature.odt 2024-03-20 15:45 - 2024-03-20 15:46 - 000000000 ____D C:\Program Files\PDF Architect 9 2024-03-20 15:45 - 2024-03-20 15:45 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 9.lnk 2024-03-20 15:33 - 2024-03-20 15:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avanquest pdfforge GmbH 2024-03-17 17:35 - 2024-05-11 14:27 - 028965296 _____ C:\Users\anton\OneDrive\Bureau\UCheck_portable64(2).exe 2024-03-17 15:48 - 2024-03-17 15:48 - 044262456 _____ (Avanquest pdfforge GmbH) C:\Users\anton\Downloads\PDFCreator-5_2_1-Setup.exe 2024-03-16 13:22 - 2024-03-16 13:36 - 000000000 ____D C:\Users\anton\AppData\Roaming\Any Video Converter 2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ C:\Users\anton\AppData\Local\_LOCAL_GUID 2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____H C:\Users\anton\MJKJRegInfo_JSOIGNLOFVI6W4DODRL5DLLUHYENUXTM 2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____D C:\Users\anton\OneDrive\Documents\Any Video Converter 2024-03-16 13:21 - 2024-03-16 13:38 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anvsoft 2024-03-16 13:19 - 2024-03-16 13:38 - 000000000 ____D C:\Program Files\Anvsoft 2024-03-15 15:06 - 2024-03-15 15:06 - 000000000 ____D C:\ProgramData\Piriform 2024-03-15 15:05 - 2024-03-15 15:05 - 000000000 ____D C:\ProgramData\Norton 2024-03-12 18:33 - 2024-03-12 18:33 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-2.pdf 2024-03-12 18:26 - 2024-03-12 18:26 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-1.pdf 2024-03-12 18:23 - 2024-03-12 18:23 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-05-27 14:22 - 2023-08-20 12:43 - 000000000 ____D C:\Users\anton\AppData\Local\Spotify 2024-05-27 14:21 - 2023-08-20 12:39 - 000000000 ____D C:\Users\anton\AppData\Roaming\Spotify 2024-05-27 14:20 - 2023-08-02 02:55 - 000000000 ____D C:\WINDOWS\INF 2024-05-27 14:18 - 2023-08-27 14:13 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-05-27 14:07 - 2023-08-20 21:51 - 000000000 ____D C:\Users\anton\AppData\Local\CrashDumps 2024-05-27 14:01 - 2023-08-02 02:56 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-05-27 13:56 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\D3DSCache 2024-05-27 13:53 - 2023-08-19 14:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-05-27 13:52 - 2023-08-20 18:07 - 000000000 ____D C:\Program Files\CCleaner 2024-05-27 13:52 - 2023-08-19 14:30 - 000000000 ___RD C:\Users\anton\OneDrive 2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ___HD C:\Program Files\WindowsApps 2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-05-27 09:16 - 2023-08-19 14:15 - 000000000 ____D C:\Users\anton\AppData\Local\Host App Service 2024-05-27 09:14 - 2023-08-21 14:28 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\CV 2024-05-27 09:13 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\Packages 2024-05-27 09:13 - 2023-08-01 17:09 - 000000000 ____D C:\ProgramData\Packages 2024-05-26 16:52 - 2023-08-01 17:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-05-26 15:15 - 2023-08-20 18:01 - 000000000 ____D C:\Users\anton\AppData\Local\Malwarebytes 2024-05-26 14:40 - 2023-08-01 17:02 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-05-26 14:37 - 2023-08-19 14:30 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-428499685-2534697496-1257434464-1001 2024-05-26 14:37 - 2023-08-19 14:30 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-428499685-2534697496-1257434464-1001 2024-05-26 14:37 - 2023-08-19 14:30 - 000002421 _____ C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-05-26 14:36 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-05-26 14:33 - 2023-08-01 17:08 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-05-26 14:33 - 2023-08-01 17:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-05-24 14:05 - 2023-08-26 15:02 - 000000000 ____D C:\Program Files\PDFCreator 2024-05-24 13:59 - 2023-08-21 16:43 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-05-24 13:58 - 2023-08-26 15:09 - 000000000 ____D C:\Users\anton\AppData\Roaming\PDF Architect 9 2024-05-23 15:02 - 2023-08-20 18:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-05-23 15:02 - 2023-08-20 18:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-05-23 15:02 - 2023-08-20 18:07 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-05-23 14:56 - 2023-01-15 14:20 - 000000000 ____D C:\Program Files\Microsoft Office 2024-05-17 13:57 - 2023-08-19 14:55 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-05-17 13:41 - 2023-01-15 13:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Telegram Desktop 2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2024-05-11 14:34 - 2023-08-20 18:01 - 000002097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-05-11 14:30 - 2023-08-20 17:49 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-05-11 14:30 - 2023-08-20 17:48 - 000000000 ____D C:\Program Files\Malwarebytes 2024-05-10 13:21 - 2023-08-01 17:12 - 001804074 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-05-01 11:53 - 2023-08-21 15:12 - 000000000 ____D C:\Program Files (x86)\Google 2024-05-01 11:53 - 2023-08-19 14:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service ==================== Fichiers à la racine de certains dossiers ======== 2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ () C:\Users\anton\AppData\Local\_LOCAL_GUID ==================== SigCheckExt ========================= 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2023-08-26 15:02 - 2023-08-26 15:02 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll 2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe 2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {dc6395b8-94cb-11ed-8936-806e6f6e6963} {dc6395b9-94cb-11ed-8936-806e6f6e6963} {dc6395ba-94cb-11ed-8936-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {dc6395b8-94cb-11ed-8936-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {dc6395b9-94cb-11ed-8936-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {dc6395ba-94cb-11ed-8936-806e6f6e6963} description EFI Network Chargeur de démarrage Windows ----------------------------- identificateur {44f8fe28-9517-11ed-811a-00e04c68c0b6} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6} path \windows\system32\winload.efi description Windows Recovery Environment locale en-us inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2} nx OptIn bootmenupolicy Standard hypervisorlaunchtype Auto Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {44f8fe29-9517-11ed-811a-00e04c68c0b6} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================