Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-03-2023
Exécuté par catoire services (administrateur) sur ASUSVIVOBOOK (ASUSTeK COMPUTER INC. VivoBook_ASUS Laptop E406MAS_E406MA) (29-03-2023 07:20:33)
Exécuté depuis C:\Users\catoire services\Desktop
Profils chargés: catoire services
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1413 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\msedgewebview2.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8ff8e67ced23ab98\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHeciSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_23047.400.1873.7204_x64__8wekyb3d8bbwe\msteamsupdate.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\realteksemiconductorcorp.realtekaudiocontrol_1.16.228.0_x64__dt26b99r8h8gj\RtkUWP.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\Installer\setup.exe [3982752 2023-03-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [MicrosoftEdgeAutoLaunch_47796563DDF4C6AA31F2E70E0B28F200] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4055952 2023-03-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\111.0.5563.112\Installer\chrmstp.exe [2023-03-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-12-04]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {034697D0-0785-4638-9972-1C48F2A26DF5} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {1545ACB1-C8C5-428F-942F-9AA9240D3D01} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F61576E-DCF9-4114-A5D6-2BA453F36C09} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {4012908B-F636-4ABF-9666-3FD004DBF51B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {42AB5669-DC28-4277-B2E2-4D37A3C9809C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {443BEC4B-1955-4AF6-838C-C6C95782D67B} - System32\Tasks\GoogleUpdateTaskMachineCore{F2BEC3DF-8C79-4043-A695-A41415408FE1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {4612DA5A-23C0-46AD-A719-8FC5BB767CEE} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1141552 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {482796CB-D48A-4A24-90C9-FB2CC6BA8151} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4D233AA2-F8B5-47F6-A586-735C9ED7E191} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FB6AC5C-AF36-45EB-9586-2196FEF1C25C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {5ACE6C4F-969E-4BED-8F4A-E96544ACA4E4} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusUpdateChecker.exe [797784 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {650B4370-572F-4BDF-AB87-8BC727CDB74A} - System32\Tasks\GoogleUpdateTaskMachineUA{34FF0DEB-6486-47CA-A821-4EFBBEC84EEF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC)
Task: {664BD7BF-2E40-498D-B1BF-F4D9AEAA5336} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7AB67683-780F-432C-A7AC-4D23ECAE401C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87AF2907-0833-4F45-BB2A-6303E2B855E2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1a3c654f-c8ed-4389-879c-cce0ed2f8679" --version "6.10.10347" --silent
Task: {B2CE0B92-56E5-4FB5-AEE5-660647584259} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {B426B94C-1453-4682-B000-737C2871B9A2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {BBC5BC38-F247-4D52-8036-97700CC0BA66} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB6E11C5-8023-4571-B9C8-A183AF24FE1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {D7233CF6-01E6-472E-9CB4-BD17ED6E19E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {E245E081-FD84-4161-8203-35174EE7EF7F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F86B57DD-5541-4541-B70C-1D9C31350612} - System32\Tasks\CCleanerSkipUAC - catoire services => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f9d45fc-a745-43fe-a643-ffe1823d16e2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e930f74b-d3cf-470d-8b52-6fa380d3abd3}: [DhcpNameServer] 10.66.48.1
Edge:
=======
Edge Profile: C:\Users\catoire services\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-28]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default [2023-03-29]
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Extension: (AdGuard AdBlocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-01-04]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2023-03-26]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-03-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-29]
CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-24]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe [1159256 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe [1327192 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe [764504 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe [1091672 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe [197328 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe [635480 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [526264 2023-01-29] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512728 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\FileSyncHelper.exe [3412360 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9094440 2023-03-27] (Malwarebytes Inc. -> Malwarebytes)
S3 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_22df759ce010d03d\mcafeeintegrationservice.exe [2584344 2019-09-16] (McAfee, LLC. -> McAfee)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\OneDriveUpdaterService.exe [3797384 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188736 2021-07-20] (Qualcomm Atheros, Inc. -> )
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe [3224328 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe [133544 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [140376 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSAIO.sys [46704 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49928 2019-09-16] (McAfee, LLC. -> McAfee)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-06-29] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49608 2023-03-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [495896 2023-03-28] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99624 2023-03-28] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-29 07:20 - 2023-03-29 07:21 - 000029033 _____ C:\Users\catoire services\Desktop\FRST.txt
2023-03-29 07:17 - 2023-03-29 07:17 - 000270789 _____ C:\Users\catoire services\Desktop\ZHPDiag.txt
2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe
2023-03-28 14:36 - 2023-03-28 14:36 - 000055928 _____ C:\Users\catoire services\Desktop\vosTimbres.pdf
2023-03-28 12:38 - 2023-03-28 16:59 - 000000000 ____D C:\Users\catoire services\Desktop\procuration les vans
2023-03-28 12:21 - 2023-03-28 16:34 - 000000000 ____D C:\Users\catoire services\Desktop\procurations génolhac
2023-03-28 07:16 - 2023-03-28 07:16 - 000000000 ____D C:\Users\catoire services\AppData\Local\mbam
2023-03-27 07:55 - 2023-03-27 07:55 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-27 07:55 - 2023-03-27 07:55 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-27 07:55 - 2023-03-27 07:55 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-03-27 07:55 - 2023-03-27 07:55 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-03-27 07:53 - 2023-03-27 07:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-03-27 07:50 - 2023-03-27 07:50 - 002649088 _____ (Malwarebytes) C:\Users\catoire services\Downloads\MBSetup.exe
2023-03-27 07:39 - 2023-03-27 07:45 - 000000000 ____D C:\AdwCleaner
2023-03-27 07:38 - 2023-03-27 07:38 - 008791352 _____ (Malwarebytes) C:\Users\catoire services\Downloads\adwcleaner_8.4.0.exe
2023-03-27 07:14 - 2023-03-27 07:14 - 000000888 _____ C:\Users\catoire services\Desktop\ZHPCleaner.lnk
2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe
2023-03-26 08:47 - 2023-03-29 07:21 - 000000000 ____D C:\FRST
2023-03-26 08:45 - 2023-03-26 08:45 - 000001431 _____ C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST64.lnk
2023-03-26 08:40 - 2023-03-29 07:17 - 000000135 _____ C:\Users\catoire
2023-03-26 08:39 - 2023-03-29 07:17 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\ZHP
2023-03-26 08:39 - 2023-03-27 07:14 - 000000000 ____D C:\Users\catoire services\AppData\Local\ZHP
2023-03-26 08:39 - 2023-03-26 08:39 - 000000878 _____ C:\Users\catoire services\Desktop\ZHPSuite.lnk
2023-03-25 10:59 - 2023-03-25 10:59 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2023-03-25 10:55 - 2023-03-25 10:55 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2023-03-25 09:12 - 2023-03-26 12:36 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2023-03-24 09:02 - 2023-03-27 07:53 - 000000000 ____D C:\Program Files\Malwarebytes
2023-03-24 08:45 - 2023-03-24 08:45 - 000000000 ____D C:\Users\catoire services\AppData\Local\OneDrive
2023-03-24 08:25 - 2023-03-24 08:25 - 000000000 _____ C:\WINDOWS\system32\license.reg
2023-03-23 08:37 - 2023-03-23 08:37 - 000000543 _____ C:\WINDOWS\NGO.cer
2023-03-21 15:47 - 2023-03-21 15:47 - 000025715 _____ C:\Users\catoire services\Desktop\Doc_ATTAHA_20230321144307936_7696959D_1.pdf
2023-03-21 09:04 - 2023-03-21 09:04 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500
2023-03-15 10:15 - 2023-03-15 10:15 - 000000000 ___HD C:\$WinREAgent
2023-03-14 20:10 - 2023-03-22 19:06 - 000000000 ____D C:\Program Files\Oracle
2023-03-14 20:10 - 2023-03-14 20:10 - 000000000 ____D C:\ProgramData\Package Cache
2023-03-14 19:19 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\PlaceholderTileLogoFolder
2023-03-14 19:18 - 2023-03-14 19:20 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Intel
2023-03-14 19:18 - 2023-03-14 19:18 - 000000020 ___SH C:\Users\Administrateur\ntuser.ini
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage réseau
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage d'impression
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Modèles
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Mes documents
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Menu Démarrer
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes vidéos
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes images
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Ma musique
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Local\Historique
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 __SHD C:\Users\Administrateur\IntelGraphicsProfiles
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Adobe
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\Intel
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Google
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ConnectedDevicesPlatform
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur
2023-03-14 19:18 - 2022-12-02 07:45 - 000000000 ___RD C:\Users\Administrateur\OneDrive
2023-03-14 12:02 - 2023-03-14 12:02 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\WinRAR
2023-03-14 12:01 - 2023-03-14 12:02 - 000000000 ____D C:\Program Files\WinRAR
2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-03-14 11:45 - 2009-09-17 08:05 - 000145448 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\sentinel64.sys
2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\Program Files\7-Zip
2023-03-09 19:22 - 2023-03-09 20:09 - 000000000 ____D C:\Users\catoire services\Desktop\succesion robiac
2023-03-05 19:18 - 2023-03-05 19:18 - 000000000 ___HD C:\OneDriveTemp
2023-03-02 13:35 - 2023-03-26 10:21 - 000000000 ____D C:\Users\catoire services\Desktop\Gammal
2023-02-18 10:54 - 2023-02-18 10:54 - 000333021 _____ C:\Users\catoire services\Downloads\FACTURE-23-02-6-PETIAU-DAVIS (2)_edited.pdf
2023-02-18 10:50 - 2023-02-18 10:50 - 000013218 _____ C:\Users\catoire services\Downloads\Bordereau-Vinted-5288095795.pdf
2023-02-18 10:25 - 2023-02-18 10:25 - 000000000 ____D C:\Users\catoire services\AppData\LocalLow\Temp
2023-02-16 09:20 - 2023-03-17 13:03 - 000000000 ____D C:\Users\catoire services\Desktop\Documents Simon
2023-02-06 20:00 - 2023-02-06 20:00 - 000131377 _____ C:\Users\catoire services\Desktop\Liste Plomberie.pdf
2023-02-05 09:25 - 2023-02-05 09:25 - 012136948 _____ C:\Users\catoire services\Desktop\donnees_communales_zds_hexagone_pour_alimagri.xlsx
2023-02-04 15:23 - 2023-03-21 09:04 - 000000000 ____D C:\Users\catoire services\Desktop\Devis CATOIRE SERVICES
2023-01-26 12:10 - 2023-01-26 12:10 - 001590294 _____ C:\Users\catoire services\Desktop\image0.jpeg
2023-01-26 12:08 - 2023-01-26 12:08 - 000760325 _____ C:\Users\catoire services\Desktop\image2.jpeg
2023-01-26 12:07 - 2023-01-26 12:07 - 001572883 _____ C:\Users\catoire services\Desktop\image1.jpeg
2023-01-12 14:00 - 2023-01-12 14:00 - 000128752 _____ C:\Users\catoire services\Downloads\report.pdf
2023-01-11 10:46 - 2023-01-11 10:46 - 000265488 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys
2023-01-11 10:46 - 2023-01-11 10:46 - 000254616 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys
2023-01-10 12:02 - 2023-01-10 12:02 - 000073636 _____ C:\Users\catoire services\Downloads\vosTimbres.pdf
2023-01-09 13:02 - 2023-03-28 17:42 - 000000000 ____D C:\Users\catoire services\Documents\Numérisés
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-29 07:15 - 2022-12-13 11:11 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-03-29 07:14 - 2022-12-04 18:22 - 000000000 ____D C:\Program Files\CCleaner
2023-03-29 07:14 - 2022-11-29 21:35 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-28 17:52 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-28 16:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-28 14:54 - 2022-12-13 11:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-28 08:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-03-28 07:29 - 2022-06-19 23:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-03-27 20:21 - 2022-11-29 21:36 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-27 20:21 - 2022-11-29 21:36 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-03-27 07:55 - 2022-12-13 11:08 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-27 07:55 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-03-27 07:55 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-03-27 07:51 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-27 07:49 - 2022-12-13 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-27 07:49 - 2022-06-19 23:34 - 000000000 ____D C:\Intel
2023-03-27 07:49 - 2022-06-19 23:33 - 000012288 ___SH C:\DumpStack.log.tmp
2023-03-27 07:49 - 2022-06-19 18:53 - 000000000 __SHD C:\Users\catoire services\IntelGraphicsProfiles
2023-03-27 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-27 07:49 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-27 07:14 - 2022-06-19 23:34 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-27 07:14 - 2022-06-19 23:34 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-03-25 12:26 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\D3DSCache
2023-03-25 11:22 - 2022-11-29 20:40 - 000000000 ___RD C:\Users\catoire services\OneDrive
2023-03-25 08:59 - 2022-12-13 10:42 - 000000000 ____D C:\Users\catoire services
2023-03-23 17:37 - 2019-10-23 21:38 - 000000000 ____D C:\Program Files\Microsoft Office
2023-03-23 08:25 - 2022-12-04 18:22 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-23 08:25 - 2022-12-04 09:40 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-03-22 19:01 - 2022-12-13 11:11 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-22 19:01 - 2022-12-13 11:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-21 09:04 - 2022-12-13 11:11 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001
2023-03-21 09:04 - 2022-12-13 11:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-03-21 09:04 - 2022-12-09 19:13 - 000000000 ____D C:\Users\catoire services\Desktop\facture CS
2023-03-21 09:04 - 2022-12-02 07:45 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-17 08:35 - 2022-12-13 11:11 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-17 08:35 - 2022-12-13 11:11 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-16 08:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-03-15 15:28 - 2022-12-13 11:06 - 000472264 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-15 10:27 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-15 10:22 - 2022-12-13 11:08 - 003211264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-15 10:06 - 2022-12-02 18:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-15 09:56 - 2022-12-02 18:03 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-14 19:18 - 2020-05-15 23:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-03-14 13:20 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\Packages
2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\ProgramData\Packages
2023-03-09 08:24 - 2022-06-19 23:34 - 000000000 ____D C:\ProgramData\ASUS
2023-03-09 08:23 - 2022-12-13 11:11 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
==================== SigCheckExt =========================
2022-12-09 08:31 - 2022-06-24 08:35 - 002149184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll
2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe
2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{48760f2e-c292-11ed-9be3-70665596099e}
{48760f2f-c292-11ed-9be3-70665596099e}
{48760f30-c292-11ed-9be3-70665596099e}
timeout 2
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {48760f2e-c292-11ed-9be3-70665596099e}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {48760f2f-c292-11ed-9be3-70665596099e}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {48760f30-c292-11ed-9be3-70665596099e}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023}
displaymessageoverride Recovery
recoveryenabled Yes
testsigning Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {db8c804f-efd2-11ec-bd82-b7fd65b48023}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {db8c804c-efd2-11ec-bd82-b7fd65b48023}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {db8c8050-efd2-11ec-bd82-b7fd65b48023}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par catoire services (administrateur) sur ASUSVIVOBOOK (ASUSTeK COMPUTER INC. VivoBook_ASUS Laptop E406MAS_E406MA) (29-03-2023 07:20:33)
Exécuté depuis C:\Users\catoire services\Desktop
Profils chargés: catoire services
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1413 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\msedgewebview2.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8ff8e67ced23ab98\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHeciSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_23047.400.1873.7204_x64__8wekyb3d8bbwe\msteamsupdate.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\realteksemiconductorcorp.realtekaudiocontrol_1.16.228.0_x64__dt26b99r8h8gj\RtkUWP.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\Installer\setup.exe [3982752 2023-03-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [MicrosoftEdgeAutoLaunch_47796563DDF4C6AA31F2E70E0B28F200] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4055952 2023-03-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2648417494-3282834424-2125071782-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\111.0.5563.112\Installer\chrmstp.exe [2023-03-27] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-12-04]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {034697D0-0785-4638-9972-1C48F2A26DF5} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {1545ACB1-C8C5-428F-942F-9AA9240D3D01} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F61576E-DCF9-4114-A5D6-2BA453F36C09} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {4012908B-F636-4ABF-9666-3FD004DBF51B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {42AB5669-DC28-4277-B2E2-4D37A3C9809C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {443BEC4B-1955-4AF6-838C-C6C95782D67B} - System32\Tasks\GoogleUpdateTaskMachineCore{F2BEC3DF-8C79-4043-A695-A41415408FE1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {4612DA5A-23C0-46AD-A719-8FC5BB767CEE} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1141552 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {482796CB-D48A-4A24-90C9-FB2CC6BA8151} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4D233AA2-F8B5-47F6-A586-735C9ED7E191} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FB6AC5C-AF36-45EB-9586-2196FEF1C25C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {5ACE6C4F-969E-4BED-8F4A-E96544ACA4E4} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusUpdateChecker.exe [797784 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {650B4370-572F-4BDF-AB87-8BC727CDB74A} - System32\Tasks\GoogleUpdateTaskMachineUA{34FF0DEB-6486-47CA-A821-4EFBBEC84EEF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC)
Task: {664BD7BF-2E40-498D-B1BF-F4D9AEAA5336} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7AB67683-780F-432C-A7AC-4D23ECAE401C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87AF2907-0833-4F45-BB2A-6303E2B855E2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1a3c654f-c8ed-4389-879c-cce0ed2f8679" --version "6.10.10347" --silent
Task: {B2CE0B92-56E5-4FB5-AEE5-660647584259} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {B426B94C-1453-4682-B000-737C2871B9A2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {BBC5BC38-F247-4D52-8036-97700CC0BA66} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB6E11C5-8023-4571-B9C8-A183AF24FE1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {D7233CF6-01E6-472E-9CB4-BD17ED6E19E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {E245E081-FD84-4161-8203-35174EE7EF7F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F86B57DD-5541-4541-B70C-1D9C31350612} - System32\Tasks\CCleanerSkipUAC - catoire services => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f9d45fc-a745-43fe-a643-ffe1823d16e2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e930f74b-d3cf-470d-8b52-6fa380d3abd3}: [DhcpNameServer] 10.66.48.1
Edge:
=======
Edge Profile: C:\Users\catoire services\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-28]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default [2023-03-29]
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Extension: (AdGuard AdBlocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-01-04]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2023-03-26]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-03-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-29]
CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-24]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe [1159256 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe [1327192 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe [764504 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe [1091672 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe [197328 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe [635480 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [526264 2023-01-29] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512728 2023-03-23] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\FileSyncHelper.exe [3412360 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9094440 2023-03-27] (Malwarebytes Inc. -> Malwarebytes)
S3 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_22df759ce010d03d\mcafeeintegrationservice.exe [2584344 2019-09-16] (McAfee, LLC. -> McAfee)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\OneDriveUpdaterService.exe [3797384 2023-03-21] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188736 2021-07-20] (Qualcomm Atheros, Inc. -> )
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe [3224328 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe [133544 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [140376 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSAIO.sys [46704 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49928 2019-09-16] (McAfee, LLC. -> McAfee)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-06-29] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49608 2023-03-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [495896 2023-03-28] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99624 2023-03-28] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2023-03-15] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-29 07:20 - 2023-03-29 07:21 - 000029033 _____ C:\Users\catoire services\Desktop\FRST.txt
2023-03-29 07:17 - 2023-03-29 07:17 - 000270789 _____ C:\Users\catoire services\Desktop\ZHPDiag.txt
2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe
2023-03-28 14:36 - 2023-03-28 14:36 - 000055928 _____ C:\Users\catoire services\Desktop\vosTimbres.pdf
2023-03-28 12:38 - 2023-03-28 16:59 - 000000000 ____D C:\Users\catoire services\Desktop\procuration les vans
2023-03-28 12:21 - 2023-03-28 16:34 - 000000000 ____D C:\Users\catoire services\Desktop\procurations génolhac
2023-03-28 07:16 - 2023-03-28 07:16 - 000000000 ____D C:\Users\catoire services\AppData\Local\mbam
2023-03-27 07:55 - 2023-03-27 07:55 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-27 07:55 - 2023-03-27 07:55 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-27 07:55 - 2023-03-27 07:55 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-03-27 07:55 - 2023-03-27 07:55 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-03-27 07:53 - 2023-03-27 07:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-03-27 07:50 - 2023-03-27 07:50 - 002649088 _____ (Malwarebytes) C:\Users\catoire services\Downloads\MBSetup.exe
2023-03-27 07:39 - 2023-03-27 07:45 - 000000000 ____D C:\AdwCleaner
2023-03-27 07:38 - 2023-03-27 07:38 - 008791352 _____ (Malwarebytes) C:\Users\catoire services\Downloads\adwcleaner_8.4.0.exe
2023-03-27 07:14 - 2023-03-27 07:14 - 000000888 _____ C:\Users\catoire services\Desktop\ZHPCleaner.lnk
2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe
2023-03-26 08:47 - 2023-03-29 07:21 - 000000000 ____D C:\FRST
2023-03-26 08:45 - 2023-03-26 08:45 - 000001431 _____ C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST64.lnk
2023-03-26 08:40 - 2023-03-29 07:17 - 000000135 _____ C:\Users\catoire
2023-03-26 08:39 - 2023-03-29 07:17 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\ZHP
2023-03-26 08:39 - 2023-03-27 07:14 - 000000000 ____D C:\Users\catoire services\AppData\Local\ZHP
2023-03-26 08:39 - 2023-03-26 08:39 - 000000878 _____ C:\Users\catoire services\Desktop\ZHPSuite.lnk
2023-03-25 10:59 - 2023-03-25 10:59 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2023-03-25 10:55 - 2023-03-25 10:55 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2023-03-25 09:12 - 2023-03-26 12:36 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2023-03-24 09:02 - 2023-03-27 07:53 - 000000000 ____D C:\Program Files\Malwarebytes
2023-03-24 08:45 - 2023-03-24 08:45 - 000000000 ____D C:\Users\catoire services\AppData\Local\OneDrive
2023-03-24 08:25 - 2023-03-24 08:25 - 000000000 _____ C:\WINDOWS\system32\license.reg
2023-03-23 08:37 - 2023-03-23 08:37 - 000000543 _____ C:\WINDOWS\NGO.cer
2023-03-21 15:47 - 2023-03-21 15:47 - 000025715 _____ C:\Users\catoire services\Desktop\Doc_ATTAHA_20230321144307936_7696959D_1.pdf
2023-03-21 09:04 - 2023-03-21 09:04 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500
2023-03-15 10:15 - 2023-03-15 10:15 - 000000000 ___HD C:\$WinREAgent
2023-03-14 20:10 - 2023-03-22 19:06 - 000000000 ____D C:\Program Files\Oracle
2023-03-14 20:10 - 2023-03-14 20:10 - 000000000 ____D C:\ProgramData\Package Cache
2023-03-14 19:19 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\PlaceholderTileLogoFolder
2023-03-14 19:18 - 2023-03-14 19:20 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Intel
2023-03-14 19:18 - 2023-03-14 19:18 - 000000020 ___SH C:\Users\Administrateur\ntuser.ini
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage réseau
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage d'impression
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Modèles
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Mes documents
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Menu Démarrer
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes vidéos
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes images
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Ma musique
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Local\Historique
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 __SHD C:\Users\Administrateur\IntelGraphicsProfiles
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Adobe
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\Intel
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Google
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ConnectedDevicesPlatform
2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur
2023-03-14 19:18 - 2022-12-02 07:45 - 000000000 ___RD C:\Users\Administrateur\OneDrive
2023-03-14 12:02 - 2023-03-14 12:02 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\WinRAR
2023-03-14 12:01 - 2023-03-14 12:02 - 000000000 ____D C:\Program Files\WinRAR
2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-03-14 11:45 - 2009-09-17 08:05 - 000145448 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\sentinel64.sys
2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\Program Files\7-Zip
2023-03-09 19:22 - 2023-03-09 20:09 - 000000000 ____D C:\Users\catoire services\Desktop\succesion robiac
2023-03-05 19:18 - 2023-03-05 19:18 - 000000000 ___HD C:\OneDriveTemp
2023-03-02 13:35 - 2023-03-26 10:21 - 000000000 ____D C:\Users\catoire services\Desktop\Gammal
2023-02-18 10:54 - 2023-02-18 10:54 - 000333021 _____ C:\Users\catoire services\Downloads\FACTURE-23-02-6-PETIAU-DAVIS (2)_edited.pdf
2023-02-18 10:50 - 2023-02-18 10:50 - 000013218 _____ C:\Users\catoire services\Downloads\Bordereau-Vinted-5288095795.pdf
2023-02-18 10:25 - 2023-02-18 10:25 - 000000000 ____D C:\Users\catoire services\AppData\LocalLow\Temp
2023-02-16 09:20 - 2023-03-17 13:03 - 000000000 ____D C:\Users\catoire services\Desktop\Documents Simon
2023-02-06 20:00 - 2023-02-06 20:00 - 000131377 _____ C:\Users\catoire services\Desktop\Liste Plomberie.pdf
2023-02-05 09:25 - 2023-02-05 09:25 - 012136948 _____ C:\Users\catoire services\Desktop\donnees_communales_zds_hexagone_pour_alimagri.xlsx
2023-02-04 15:23 - 2023-03-21 09:04 - 000000000 ____D C:\Users\catoire services\Desktop\Devis CATOIRE SERVICES
2023-01-26 12:10 - 2023-01-26 12:10 - 001590294 _____ C:\Users\catoire services\Desktop\image0.jpeg
2023-01-26 12:08 - 2023-01-26 12:08 - 000760325 _____ C:\Users\catoire services\Desktop\image2.jpeg
2023-01-26 12:07 - 2023-01-26 12:07 - 001572883 _____ C:\Users\catoire services\Desktop\image1.jpeg
2023-01-12 14:00 - 2023-01-12 14:00 - 000128752 _____ C:\Users\catoire services\Downloads\report.pdf
2023-01-11 10:46 - 2023-01-11 10:46 - 000265488 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys
2023-01-11 10:46 - 2023-01-11 10:46 - 000254616 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys
2023-01-10 12:02 - 2023-01-10 12:02 - 000073636 _____ C:\Users\catoire services\Downloads\vosTimbres.pdf
2023-01-09 13:02 - 2023-03-28 17:42 - 000000000 ____D C:\Users\catoire services\Documents\Numérisés
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-29 07:15 - 2022-12-13 11:11 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-03-29 07:14 - 2022-12-04 18:22 - 000000000 ____D C:\Program Files\CCleaner
2023-03-29 07:14 - 2022-11-29 21:35 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-28 17:52 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-28 16:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-28 14:54 - 2022-12-13 11:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-28 08:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-03-28 07:29 - 2022-06-19 23:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-03-27 20:21 - 2022-11-29 21:36 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-27 20:21 - 2022-11-29 21:36 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-03-27 07:55 - 2022-12-13 11:08 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-27 07:55 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-03-27 07:55 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-03-27 07:51 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-27 07:49 - 2022-12-13 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-27 07:49 - 2022-06-19 23:34 - 000000000 ____D C:\Intel
2023-03-27 07:49 - 2022-06-19 23:33 - 000012288 ___SH C:\DumpStack.log.tmp
2023-03-27 07:49 - 2022-06-19 18:53 - 000000000 __SHD C:\Users\catoire services\IntelGraphicsProfiles
2023-03-27 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-27 07:49 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-27 07:14 - 2022-06-19 23:34 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-27 07:14 - 2022-06-19 23:34 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-03-25 12:26 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\D3DSCache
2023-03-25 11:22 - 2022-11-29 20:40 - 000000000 ___RD C:\Users\catoire services\OneDrive
2023-03-25 08:59 - 2022-12-13 10:42 - 000000000 ____D C:\Users\catoire services
2023-03-23 17:37 - 2019-10-23 21:38 - 000000000 ____D C:\Program Files\Microsoft Office
2023-03-23 08:25 - 2022-12-04 18:22 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-23 08:25 - 2022-12-04 09:40 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-03-22 19:01 - 2022-12-13 11:11 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-22 19:01 - 2022-12-13 11:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-21 09:04 - 2022-12-13 11:11 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001
2023-03-21 09:04 - 2022-12-13 11:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-03-21 09:04 - 2022-12-09 19:13 - 000000000 ____D C:\Users\catoire services\Desktop\facture CS
2023-03-21 09:04 - 2022-12-02 07:45 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-17 08:35 - 2022-12-13 11:11 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-17 08:35 - 2022-12-13 11:11 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-16 08:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-03-15 15:28 - 2022-12-13 11:06 - 000472264 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-15 10:27 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-15 10:22 - 2022-12-13 11:08 - 003211264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-15 10:06 - 2022-12-02 18:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-15 09:56 - 2022-12-02 18:03 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-14 19:18 - 2020-05-15 23:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-03-14 13:20 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\Packages
2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\ProgramData\Packages
2023-03-09 08:24 - 2022-06-19 23:34 - 000000000 ____D C:\ProgramData\ASUS
2023-03-09 08:23 - 2022-12-13 11:11 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
==================== SigCheckExt =========================
2022-12-09 08:31 - 2022-06-24 08:35 - 002149184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll
2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe
2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{48760f2e-c292-11ed-9be3-70665596099e}
{48760f2f-c292-11ed-9be3-70665596099e}
{48760f30-c292-11ed-9be3-70665596099e}
timeout 2
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {48760f2e-c292-11ed-9be3-70665596099e}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {48760f2f-c292-11ed-9be3-70665596099e}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {48760f30-c292-11ed-9be3-70665596099e}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023}
displaymessageoverride Recovery
recoveryenabled Yes
testsigning Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {db8c804f-efd2-11ec-bd82-b7fd65b48023}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {db8c804c-efd2-11ec-bd82-b7fd65b48023}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {db8c8050-efd2-11ec-bd82-b7fd65b48023}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================