Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-04-2022 01 Exécuté par Charline (administrateur) sur PC-CHARLINE-PRO (ASUSTeK COMPUTER INC. X542UAR) (19-04-2022 17:52:55) Exécuté depuis C:\Users\Charline\Desktop Profils chargés: Charline Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.613 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2> (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2> (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (C:\Program Files\santesocial\CPS\CCM.exe ->) (GIE SESAM VITALE -> GIE SESAM VITALE - ASIP SANTE) C:\Program Files\santesocial\galss\galsvw64.exe (C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\100.0.1185.44\msedgewebview2.exe <12> (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe (DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxEM.exe (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (explorer.exe ->) (AGENCE NATIONALE DES SYSTEMES D INFORMATION PARTAGES DE SANTE -> ASIP SANTE) C:\Program Files\santesocial\CPS\CCM.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\AgentAntidote.exe (explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\AgentAntidote.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (explorer.exe ->) (Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 6960\Bin\ScanToPCActivationApp.exe (explorer.exe ->) (HP Inc -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\ScanToPCActivationApp.exe (GIE SESAM VITALE -> CNAMTS - GIE SESAM-Vitale) C:\Program Files (x86)\santesocial\srvsvcnam\SRVSVCNAM.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe (Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (RM INGENIERIE -> ) C:\X4\Chat\ChatAgent.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHeciSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe (services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe (services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (RM INGENIERIE -> RM Ingénierie) C:\Program Files (x86)\RM Ingénierie\RMIService\RMIService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (svchost.exe ->) (Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\agent.exe (svchost.exe ->) (Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (svchost.exe ->) (HP Inc -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\HPNetworkCommunicatorCom.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\AgentAntidote.exe [1587152 2016-02-24] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\AgentAntidote.exe [1715664 2016-02-24] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [RMAideChat] => c:\X4\Chat\ChatAgent.exe [183704 2018-12-17] (RM INGENIERIE -> ) HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.) HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking15\Ereg\Ereg.exe [3146120 2016-05-06] (Nuance Communications, Inc. -> Nuance Communications, Inc.) HKLM-x32\...\Run: [SrvSVCNAM] => C:\Program Files (x86)\santesocial\srvsvcnam\SRVSVCNAM.exe [2080544 2019-03-13] (GIE SESAM VITALE -> CNAMTS - GIE SESAM-Vitale) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5819672 2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [850208 2022-04-15] (Adobe Inc. -> Adobe Inc.) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [HP OfficeJet Pro 6960 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 6960\Bin\ScanToPCActivationApp.exe [3769992 2017-07-04] (Hewlett Packard -> HP Inc.) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5412632 2022-04-07] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [Zoom] => C:\Users\Charline\AppData\Roaming\Zoom\bin\Zoom.exe [264424 2021-04-29] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [HP OfficeJet Pro 6970 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\ScanToPCActivationApp.exe [3769760 2020-12-11] (HP Inc -> HP Inc.) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [Lifesize App Service] => C:\Users\Charline\AppData\Local\lifesize_app\Lifesize.exe [579720 2021-05-04] (Lifesize, Inc -> Lifesize) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5412632 2022-04-07] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3109710871-3318016907-2333414130-1001\...\Run: [GoogleChromeAutoLaunch_63D9F90494F432B6979306079299DF2F] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2596240 2022-04-08] (Google LLC -> Google LLC) HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2021-12-24] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\WINDOWS\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.88\Installer\chrmstp.exe [2022-04-12] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\100.1.37.116\Installer\chrmstp.exe [2022-04-15] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Démarrage du CCM.lnk [2020-09-21] ShortcutTarget: Démarrage du CCM.lnk -> C:\Program Files\santesocial\CPS\CCM.exe (AGENCE NATIONALE DES SYSTEMES D INFORMATION PARTAGES DE SANTE -> ASIP SANTE) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {01A65B0C-466C-4B1F-896F-8144FF27BE1C} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 6970 => C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\HPCustPartic.exe [6438304 2020-12-11] (HP Inc -> HP Inc.) Task: {0756D390-A5A9-4F51-82AD-07082DB59739} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {096B78E8-D71E-4618-AB43-B41B20249079} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {11A92009-789F-4A46-AD01-238A8CE67C44} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation) Task: {1D44A65D-F0E1-43FB-9AB4-59EFA5C6C11A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2E6F622E-05E0-49E4-A43F-7A707F01E08E} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {45420B4F-6F70-46E5-A84A-04944AA62BFF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138672 2022-04-19] (Microsoft Corporation -> Microsoft Corporation) Task: {651232AF-052E-49AB-AEEF-8B1E381B41E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {654E993F-9FB9-45BC-8E1C-F4FE241B6494} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {6E9B130E-89B7-4BE6-B304-93E824B39CE4} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {7BDD2697-6F6A-4FBE-AB2C-ED913F4610DB} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {7C99E582-DC92-4C6C-B50A-F91382FA197A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {86B7A6B1-15AC-4DF5-8F13-55BC7235D2F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8FB2DC32-0674-4D49-A5EF-4FD2C9C9A1D5} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [971744 2022-04-19] (Microsoft Corporation -> Microsoft Corporation) Task: {942DEF22-A982-4C1F-ABDD-61B563E49C82} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {9694594C-ED95-4FF6-AC1F-9BA5802F6967} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-03] (Google Inc -> Google Inc.) Task: {ABFD73A3-AE7D-4B2E-A559-8B36051AA807} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation) Task: {B71D2F76-630A-4C63-B66B-68621DC2129A} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2480504 2017-04-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {BE4CEA8C-843D-4AE5-8B42-6B448D1D282C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-03] (Google Inc -> Google Inc.) Task: {C0D287B0-037D-47FC-A2C0-D5671639A41B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {CF668329-13B0-47E1-AB97-78B008E877C5} - System32\Tasks\CCleanerSkipUAC - Charline => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) Task: {D6DB1BAD-EC2B-4AA6-B835-613D7D956F5B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {D8D78F67-9993-4930-9E21-3503F38D797F} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe src:taskScheduler (Pas de fichier) Task: {DF6E6812-952F-4265-BC59-F82DE09B4342} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-16] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {E94BB3A9-C240-427A-A6BB-C51EDC7D0491} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Charline\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-22] (Malwarebytes Inc -> Malwarebytes) Task: {EA04EAF9-50A9-42EE-8628-0A60882F1505} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {F5D48B7D-C9D3-45DE-ABB0-322704F233A2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {F6899736-F58D-4C86-ACE0-84F02D5C6CC1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138672 2022-04-19] (Microsoft Corporation -> Microsoft Corporation) Task: {F8D1200A-4825-4AFC-9EB1-5CE9BD85D63B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform) Task: {FF366428-A1BD-4C93-A6D0-27C9DF501343} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-16] (Brave Software, Inc. -> BraveSoftware Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0a9526f0-320e-43e7-bfc6-476b0013cef4}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8942aa3f-9847-4f89-8d68-6b67831e63c2}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Charline\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-19] FireFox: ======== FF DefaultProfile: k8sxyc5l.default FF ProfilePath: C:\Users\Charline\AppData\Roaming\Mozilla\Firefox\Profiles\k8sxyc5l.default [2020-05-12] FF ProfilePath: C:\Users\Charline\AppData\Roaming\Mozilla\Firefox\Profiles\i8sf58ma.default-release [2022-04-19] FF Extension: (WebExtension CPS) - C:\Users\Charline\AppData\Roaming\Mozilla\Firefox\Profiles\i8sf58ma.default-release\Extensions\CPS2ter-2020_Firefox@asipsante.fr.xpi [2017-11-27] [UpdateUrl:hxxps://www.outil-diagnostic.asipsante.fr/ODI_PS/ressources_asip/cps_extension_update.json] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-06-26] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-04-15] (Adobe Inc. -> Adobe Systems) FF Plugin: nuance.com/DgnRia2_x86_64 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2017-02-13] (Nuance Communications, Inc. -> Nuance Communications, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2020-10-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2020-10-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-04-15] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: nuance.com/DgnRia2 -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2017-02-13] (Nuance Communications, Inc. -> Nuance Communications, Inc.) Chrome: ======= CHR Profile: C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default [2022-04-19] CHR StartupUrls: Default -> "hxxp://google/" CHR NewTab: Default -> Not-active:"chrome-extension://gfoabcdjalmeenbjjngidappmppchblc/homePageRedirect.html" CHR Extension: (Slides) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-03] CHR Extension: (Docs) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-03] CHR Extension: (Google Drive) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-03] CHR Extension: (Redirection de l'omnibox vers Ecosia (Legacy)) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2018-02-15] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-03-22] CHR Extension: (Sheets) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-03] CHR Extension: (Norton Safe Web) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2022-03-21] CHR Extension: (Norton Home Page for Chrome) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2020-08-26] CHR Extension: (Google Docs hors connexion) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-15] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-04-19] CHR Extension: (Norton Identity Safe) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-12-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Charline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] Brave: ======= BRA Profile: C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-04-19] BRA Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-03-03] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-03-07] BRA Extension: (Brave NTP background images) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-03-03] BRA Extension: (Wallet Data Files Updater) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-03-03] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-03-07] BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-03-07] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-08] BRA Extension: (Brave NTP sponsored images) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2022-03-07] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Charline\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-03-03] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [919328 2022-04-15] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-16] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-16] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-05] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166288 2017-02-13] (Nuance Communications, Inc. -> Nuance Communications, Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [218272 2022-03-22] (HP Inc. -> HP Inc.) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-06-03] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> ) R2 RMI Service; C:\Program Files (x86)\RM Ingénierie\RMIService\RMIService.exe [542616 2019-03-06] (RM INGENIERIE -> RM Ingénierie) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ZenAnywhere; C:\Program Files\Orbweb Inc\ZenAnywhere\ZenAnywhere.exe [154456 2017-05-10] (Orbweb Taiwan Inc. -> Orbweb Inc.) S3 ZenAnywhere Updater; C:\Program Files\Orbweb Inc\ZenAnywhere\updater.exe [154456 2017-05-10] (Orbweb Taiwan Inc. -> Orbweb Inc.) S3 ZenAnywhereNetworkService; C:\Program Files\Orbweb Inc\ZenAnywhere\bin\ZenAnywhereNetworkService.exe [67416 2017-04-07] (Orbweb Taiwan Inc. -> Orbweb Inc.) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-03-14] (Microsoft Windows -> Microsoft Corporation) R3 MpKsl2e3e67e2; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{20865F4C-497C-47C0-AFE7-41D5CD83F94C}\MpKslDrv.sys [139536 2022-04-19] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation) S3 MpKsl4078b097; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{60A2116C-BB64-4C9D-B222-317C03812D3F}\MpKslDrv.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-04-19 17:52 - 2022-04-19 17:53 - 000039747 _____ C:\Users\Charline\Desktop\FRST.txt 2022-04-19 17:52 - 2022-04-19 17:53 - 000000000 ____D C:\FRST 2022-04-19 17:50 - 2022-04-19 17:50 - 002366464 _____ (Farbar) C:\Users\Charline\Desktop\FRST64.exe 2022-04-19 15:50 - 2022-04-19 15:50 - 000384671 _____ C:\Users\Charline\Desktop\ZHPDiag.txt 2022-04-19 15:43 - 2022-04-19 15:50 - 000000000 ____D C:\Users\Charline\AppData\Roaming\ZHP 2022-04-19 15:43 - 2022-04-19 15:43 - 000000870 _____ C:\Users\Charline\Desktop\ZHPDiag.lnk 2022-04-19 15:43 - 2022-04-19 15:43 - 000000000 ____D C:\Users\Charline\AppData\Local\ZHP 2022-04-19 15:41 - 2022-04-19 15:41 - 003287240 _____ (Nicolas Coolman) C:\Users\Charline\Downloads\ZHPDiag3.exe 2022-04-19 09:35 - 2022-04-19 09:35 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2022-04-15 10:05 - 2022-04-15 10:05 - 000001388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2022-04-13 19:41 - 2022-04-13 19:41 - 002550832 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2022-04-13 19:41 - 2022-04-13 19:41 - 002080992 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2022-04-13 19:41 - 2022-04-13 19:41 - 000372736 _____ C:\WINDOWS\system32\hwreqchk.dll 2022-04-13 19:41 - 2022-04-13 19:41 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-04-13 19:41 - 2022-04-13 19:41 - 000032768 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2022-04-13 19:41 - 2022-04-13 19:41 - 000015192 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-04-13 19:37 - 2022-04-13 19:37 - 000000000 ___HD C:\$WinREAgent 2022-04-13 11:57 - 2022-04-19 14:52 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-04-12 09:29 - 2022-04-12 09:30 - 000000000 ___HD C:\adobeTemp 2022-04-08 15:17 - 2022-04-08 15:17 - 002300366 _____ C:\Users\Charline\Documents\factures LEG. L.pdf 2022-04-08 14:26 - 2022-04-08 14:31 - 001390936 _____ C:\Users\Charline\Documents\Factures HUB.R.pdf 2022-04-06 13:50 - 2022-04-06 13:50 - 000203880 _____ C:\Users\Charline\Documents\Bilan EXAmath - Céleste Mollière.pdf 2022-04-06 08:57 - 2022-04-06 08:57 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d837cb20ad9d48 2022-03-31 15:16 - 2022-03-31 15:16 - 000025145 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000211705.. C_C FORFAIT LIBERAL CIC ROY CHARLINE au 2022-02-28.pdf 2022-03-31 15:15 - 2022-03-31 15:15 - 000021858 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000211705.. C_C FORFAIT LIBERAL CIC ROY CHARLINE au 2022-01-31 (1).pdf 2022-03-31 15:14 - 2022-03-31 15:14 - 000021277 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000207066.. START Jeunes Actifs Mle ROY CHARLINE au 2022-02-10 (1).pdf 2022-03-31 15:14 - 2022-03-31 15:14 - 000020909 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000207066.. START Jeunes Actifs Mle ROY CHARLINE au 2022-03-10.pdf 2022-03-31 15:12 - 2022-03-31 15:12 - 000021277 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000207066.. START Jeunes Actifs Mle ROY CHARLINE au 2022-02-10.pdf 2022-03-31 15:10 - 2022-03-31 15:10 - 000022501 _____ C:\Users\Charline\Downloads\Extrait de comptes Compte 33700 000207066.. START Jeunes Actifs Mle ROY CHARLINE au 2022-01-10.pdf 2022-03-31 15:08 - 2022-03-31 15:08 - 000145947 _____ C:\Users\Charline\Downloads\Demande de crédit Compte 300873370000020706611 au 2022-03-31.PDF 2022-03-31 15:03 - 2022-03-31 15:03 - 000802258 _____ C:\Users\Charline\Downloads\messagerie_banque_a_distance (2).pdf 2022-03-31 15:03 - 2022-03-31 15:03 - 000042774 _____ C:\Users\Charline\Downloads\Fiche_Personnalisée_(Vierges) (1).PDF 2022-03-31 14:56 - 2022-03-31 14:56 - 000048014 _____ C:\Users\Charline\Downloads\Fiche Standardisée d_information Compte EN00000000090052106 au 2022-03-31.PDF 2022-03-31 14:55 - 2022-03-31 14:55 - 000194108 _____ C:\Users\Charline\Downloads\Guide_AERAS.pdf 2022-03-31 14:54 - 2022-03-31 14:54 - 000102672 _____ C:\Users\Charline\Downloads\Guide_Pratique_E-Acceptation.pdf 2022-03-31 14:53 - 2022-03-31 14:53 - 000671854 _____ C:\Users\Charline\Downloads\messagerie_banque_a_distance (1).pdf 2022-03-31 14:50 - 2022-03-31 14:50 - 000048014 _____ C:\Users\Charline\Downloads\messagerie_banque_a_distance.pdf 2022-03-31 14:49 - 2022-03-31 14:49 - 000042774 _____ C:\Users\Charline\Downloads\Fiche_Personnalisée_(Vierges).PDF 2022-03-31 11:14 - 2022-03-31 14:48 - 000000000 ____D C:\Users\Charline\Documents\Maison Dompierre 2022-03-25 13:20 - 2022-03-25 13:20 - 000006906 _____ C:\Users\Charline\Downloads\iban_SCM_DE_MORMAL_00021636102.pdf 2022-03-23 10:18 - 2022-03-23 10:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-04-19 17:52 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF 2022-04-19 17:51 - 2021-06-10 13:26 - 000000000 ____D C:\Users\Charline\AppData\Roaming\Signal 2022-04-19 17:19 - 2017-11-03 16:58 - 000000000 ____D C:\Program Files (x86)\Google 2022-04-19 16:38 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-04-19 16:15 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-04-19 15:53 - 2019-01-04 16:19 - 000000000 ____D C:\Users\Charline\AppData\Local\D3DSCache 2022-04-19 15:39 - 2020-05-09 21:05 - 000000000 ____D C:\Users\Charline\AppData\LocalLow\Mozilla 2022-04-19 15:35 - 2020-05-09 20:49 - 000000000 ____D C:\Program Files\CCleaner 2022-04-19 15:31 - 2017-11-16 16:00 - 000000000 ____D C:\RMISAUVE 2022-04-19 15:30 - 2017-11-08 12:27 - 000000000 ____D C:\X4 2022-04-19 15:04 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-04-19 15:01 - 2022-03-15 10:33 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-04-19 15:01 - 2021-06-05 20:14 - 000809232 _____ C:\WINDOWS\system32\perfh00C.dat 2022-04-19 15:01 - 2021-06-05 20:14 - 000156838 _____ C:\WINDOWS\system32\perfc00C.dat 2022-04-19 14:56 - 2021-07-26 11:04 - 000000000 ___RD C:\Users\Charline\Creative Cloud Files 2022-04-19 14:55 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-04-19 14:54 - 2022-03-14 19:42 - 000000000 ____D C:\Users\Charline 2022-04-19 14:54 - 2022-03-14 19:41 - 000541528 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-04-19 14:54 - 2017-11-08 12:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-04-19 14:54 - 2017-11-03 16:41 - 000000000 __SHD C:\Users\Charline\IntelGraphicsProfiles 2022-04-19 14:54 - 2017-08-27 09:57 - 000000000 ____D C:\Program Files\Microsoft Office 2022-04-19 14:53 - 2022-03-14 19:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-04-19 14:53 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState 2022-04-19 14:53 - 2021-06-05 14:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-04-19 14:53 - 2020-08-12 17:17 - 000012288 ___SH C:\DumpStack.log.tmp 2022-04-19 14:53 - 2017-08-27 09:21 - 000000000 ___HD C:\Intel 2022-04-19 14:52 - 2022-03-14 19:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-04-19 14:52 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-04-19 14:52 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-04-19 14:52 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\DiagTrack 2022-04-19 14:52 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-04-19 14:52 - 2020-05-09 21:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-04-19 12:22 - 2021-07-26 10:39 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-04-19 09:38 - 2020-07-02 08:47 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-04-17 21:16 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-04-15 10:12 - 2018-12-03 14:06 - 000000000 ____D C:\Users\Charline\Desktop\Exalangs cahiers - Copie 2022-04-15 10:05 - 2021-07-26 10:38 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-04-15 10:05 - 2021-07-26 10:38 - 000000000 ____D C:\Program Files\Adobe 2022-04-15 10:05 - 2017-11-08 12:29 - 000000000 ____D C:\Program Files (x86)\Adobe 2022-04-15 09:53 - 2018-06-21 14:28 - 000000000 ____D C:\ProgramData\Packages 2022-04-15 09:53 - 2017-11-11 17:38 - 000000000 ____D C:\Users\Charline\AppData\Local\Packages 2022-04-15 09:52 - 2021-07-26 11:12 - 000002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2022-04-15 09:52 - 2021-07-26 11:12 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-04-15 09:41 - 2021-08-18 20:34 - 000000000 ____D C:\Users\Charline\AppData\Roaming\vlc 2022-04-15 09:38 - 2017-11-13 11:23 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2022-04-15 09:28 - 2021-08-16 22:20 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-04-13 19:48 - 2017-11-03 17:30 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-04-13 19:44 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-04-13 19:44 - 2017-11-03 17:30 - 143823848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-04-13 19:41 - 2022-03-14 19:41 - 003102208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-04-13 18:57 - 2022-03-14 19:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-04-13 18:57 - 2020-05-09 21:05 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-04-08 12:39 - 2018-02-19 20:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-04-07 11:13 - 2022-03-14 19:49 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3109710871-3318016907-2333414130-1001 2022-04-07 11:13 - 2022-03-14 19:49 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3109710871-3318016907-2333414130-1001 2022-04-07 11:13 - 2020-08-12 11:00 - 000002432 _____ C:\Users\Charline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-04-07 09:45 - 2020-11-23 15:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-04-07 09:23 - 2022-03-14 10:29 - 000000000 ___DC C:\WINDOWS\Panther 2022-04-07 09:23 - 2017-12-18 14:45 - 000000000 ____D C:\Users\Charline\AppData\Local\CrashDumps 2022-04-06 08:57 - 2022-03-14 19:49 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-04-04 19:30 - 2021-08-08 21:08 - 000000000 ____D C:\Users\Charline\Desktop\outils cabinet 2022-04-04 16:09 - 2018-03-26 09:17 - 000000000 ____D C:\Users\Charline\Documents\Enregistrements audio 2022-03-30 18:41 - 2017-11-08 22:35 - 000000000 ____D C:\Users\Charline\Documents\Administratif pro 2022-03-29 09:44 - 2017-11-03 16:43 - 000000000 ___RD C:\Users\Charline\OneDrive 2022-03-23 20:56 - 2020-11-23 15:16 - 000509296 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2022-03-23 20:56 - 2020-11-23 15:16 - 000492912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2022-03-23 16:08 - 2018-01-11 11:18 - 000000000 ____D C:\Users\Charline\Documents\Comptabilité 2022-03-23 10:19 - 2022-02-16 12:32 - 000000000 ____D C:\Program Files\HPPrintScanDoctor ==================== Fichiers à la racine de certains dossiers ======== 2019-03-11 17:52 - 2019-09-26 09:17 - 000001275 _____ () C:\Users\Charline\AppData\Roaming\SAS7_000.DAT 2017-11-03 16:44 - 2020-07-22 09:15 - 000000200 _____ () C:\Users\Charline\AppData\Roaming\sp_data.sys 2021-07-26 11:13 - 2021-07-26 11:13 - 000000000 _____ () C:\Users\Charline\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================