Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-12-2022 Exécuté par fred (administrateur) sur DESKTOP-7F1Q0JL (LENOVO 81EK) (24-12-2022 17:45:22) Exécuté depuis C:\Users\fred\Desktop Profils chargés: fred Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2364 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe (C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4232.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (explorer.exe ->) (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.3.28.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <22> (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2> (services.exe ->) (Genesys Logic, Inc. -> Genesys Logic) C:\Windows\System32\DriverStore\FileRepository\genestor.inf_amd64_312a8313e431fea0\GLCRIconSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a9a2dde7124f013f\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8f079a8a5c196b5d\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8f079a8a5c196b5d\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\ymc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_ef793e242527b727\WTabletServiceISD.exe <2> (svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4232.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (WhatsApp Inc.) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2248.9.0_x64__cv1g1gvanyjgm\WhatsApp.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [454248 2013-08-02] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [670080 2021-08-06] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [895360 2021-08-06] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1318024 2021-04-15] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-2075030999-2615340698-637334074-1001\...\Run: [MicrosoftEdgeAutoLaunch_E095971C611D818C0763D57E0A59E6AD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879848 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2075030999-2615340698-637334074-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-20] (Adobe Inc. -> Adobe) HKLM\...\Windows x64\Print Processors\Canon MX470 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDC2.DLL [30208 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX470 series: C:\WINDOWS\system32\CNCALC2.DLL [303104 2013-09-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MX470 series: C:\WINDOWS\system32\CNMLMC2.DLL [391168 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [360448 2013-09-11] (CANON INC.) [Fichier non signé] HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2021-08-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EPSON WF-2850 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBWAE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe [2022-12-16] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02DCEA2B-40A0-4071-8CC4-89E33582E5CF} - System32\Tasks\Lenovo\Lenovo YMC Uninstall Task => C:\Windows\System32\ymc.exe [56048 2018-03-22] (Lenovo -> Lenovo) Task: {03075642-75FB-4923-B3EC-BF37D54897C1} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {08695912-A4EA-4C52-94A9-C2F0F8A19D4F} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility:// Task: {0A1348D8-DE71-4FCC-8069-D7729AF5DEE3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0A39F191-2FF6-4D70-9611-6682080FBE1B} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {0D1F2289-8A2A-4A02-948B-861D665C44DA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) Task: {0D584798-DB1B-4E09-9B40-EA33CBB24237} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6a12d929-9b54-4c80-abfc-2843391640af => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {172B34D0-1939-4BD6-9052-7F0C707C238D} - System32\Tasks\EPSON WF-2850 Series Update {7E0464AE-2828-4DDC-967E-28735EB11AEB} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {27F67A5D-09F3-481F-A314-36CD2A17A28C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier) Task: {2C638D0F-A459-4A6E-BEC7-06113B2931F6} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.) Task: {4406531F-E67E-4B6A-98A9-128BE0D3F585} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-04] (Google LLC -> Google LLC) Task: {442D5D83-8042-4871-8253-211CC6DF4FE0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {55A0E454-3CEF-495F-96D8-E44569B33974} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {63F320EE-C1E2-408C-9F47-7EB15D571EC6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6594A1CC-7CFD-40EC-B10D-9EFCFEFEB962} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) Task: {6661C166-0826-47B4-86BB-F55CFD2EA965} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {69AD2743-0ED6-45F3-A34D-DD5E789C81B7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-04] (Google LLC -> Google LLC) Task: {6BDC3EEB-3F58-4D52-A85E-815B84F4C186} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {7E23B412-E016-4EDA-9A7B-6C757398BB65} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cdb2a071-766c-47aa-b375-195094b9f7f9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {7F52CE7B-EFA8-4CD8-9C78-0C30E65DF9F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {85A756D6-8DDE-4675-AC64-377033F1DDBF} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {8AB88DDB-632E-4D66-ADBA-AB76DC3FBAE5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {922F2BC7-77C9-494E-82A8-91EE74BD5C33} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [714208 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) Task: {9604772C-A3C5-414D-B3A1-C5E844EB251A} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {AB4B0B6B-C3DB-40C1-B5CE-DE62D95247D1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f04a6dd0-b59f-4157-b7e6-9634f43deaf0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {AFAC6ECD-4012-4792-A1C3-1D4BBB11C8CF} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {C128DCC5-CC60-4C92-A98D-2B566AC6E8AD} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-20] (Adobe Inc. -> Adobe) Task: {C31DD10A-1E26-4CFB-80EE-9D057D7D6A4A} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {E458D4F6-5FD0-4DB3-A8AA-8AF476105211} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {E5B20780-FA59-4E43-AD26-36EB8CAEA6CB} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {E7BC634F-0D3A-429A-A01E-37937D62A963} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\731e5193-fcd8-45df-b140-c31fd44b40ea => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {E7F4B773-9729-45C6-B97D-6D9C179E016C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {E992B4D8-D875-4172-B249-16272120B593} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {EAD298EE-F040-4299-BF38-0A613B6EB313} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) Task: {EB7BF184-C807-4018-8F99-7EFBF9D5E4C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EC7076CA-039D-41A3-9E15-562FD653C2D4} - System32\Tasks\EPSON WF-2850 Series Update {29834B59-F7AE-4C24-8CC6-38B04B5DA359} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {FCA8B1DF-CB39-452E-B110-6A7B6A3A2A7C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\84077102-5f34-40bb-b4ec-bc9897640149 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {FE3D1F93-8224-42E7-92BD-AFAAECEE0AEF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval Task: {FE6362C0-6D3D-47E8-ADB1-215264343DC8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON WF-2850 Series Update {29834B59-F7AE-4C24-8CC6-38B04B5DA359}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWAE.EXE:/EXE:{29834B59-F7AE-4C24-8CC6-38B04B5DA359} /F:UpdateWORKGROUP\DESKTOP-7F1Q0JL$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON WF-2850 Series Update {7E0464AE-2828-4DDC-967E-28735EB11AEB}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWAE.EXE:/EXE:{7E0464AE-2828-4DDC-967E-28735EB11AEB} /F:UpdateWORKGROUP\DESKTOP-7F1Q0JL$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ef376438-7423-49f0-8f29-7f98bb9a653c}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ef3832ec-785b-4a4f-ae42-b415dcdd2661}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\fred\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-24] FireFox: ======== FF DefaultProfile: j80975v0.default FF ProfilePath: C:\Users\fred\AppData\Roaming\Mozilla\Firefox\Profiles\j80975v0.default [2022-12-24] FF Session Restore: Mozilla\Firefox\Profiles\j80975v0.default -> est activé. FF Notifications: Mozilla\Firefox\Profiles\j80975v0.default -> hxxps://www.wyylde.com; hxxps://wyylde.com; hxxps://www.instagram.com; hxxps://www.foodandwine.com; hxxps://www.conforama.fr; hxxps://handnews.fr; hxxps://www.lequipe.fr; hxxps://www.voissa.com; hxxps://www2.wyylde.com; hxxps://www.interflora.fr; hxxps://www.gemo.fr; hxxps://www.indemnite-rupture-conventionnelle.fr; hxxps://le-pontet.aushopping.com; hxxps://www.lightinthebox.com; hxxps://www.samsung.com; hxxps://www.eurosport.fr; hxxps://www.topsante.com; hxxps://private-lives.wyylde.com; hxxps://www.rugbycleek.com; hxxps://www.salaire-brut-en-net.fr; hxxps://web.whatsapp.com FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-20] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-20] (Adobe Inc. -> ) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2075030999-2615340698-637334074-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\fred\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-2075030999-2615340698-637334074-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\fred\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default [2022-12-23] CHR Notifications: Default -> hxxps://www.beinsports.com; hxxps://www.eurosport.fr; hxxps://www.facebook.com; hxxps://www.francebleu.fr; hxxps://www.instagram.com; hxxps://wyylde.com CHR Extension: (Bloqueur de publicités pour réseaux sociaux) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjnobgikoabhbhajcmlmnbakfjlbkpnc [2021-11-23] CHR Extension: (Google Docs hors connexion) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-02] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-13] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12540928 2022-12-17] (Microsoft Corporation -> Microsoft Corporation) R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [598384 2019-01-17] (Dolby Laboratories, Inc. -> ) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [288200 2018-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 GeneStorSvc; C:\WINDOWS\System32\DriverStore\FileRepository\genestor.inf_amd64_312a8313e431fea0\GLCRIconSvc.exe [149592 2017-12-24] (Genesys Logic, Inc. -> Genesys Logic) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] (Canon Inc. -> ) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.) S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 YMC; C:\WINDOWS\System32\ymc.exe [56048 2018-03-22] (Lenovo -> Lenovo) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [200064 2017-12-24] (Genesys Logic, Inc. -> Genesys Logic) R3 MpKsl84a0fbae; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{44C327D6-15DE-40B9-A9D0-9B52A160CB0E}\MpKslDrv.sys [214280 2022-12-24] (Microsoft Windows -> Microsoft Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 WacHIDRouterISD; C:\WINDOWS\System32\drivers\WacHIDRouterISD.sys [85440 2018-05-23] (Wacom Technology Corporation -> Wacom Technology, Corp.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-10] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-10] (Microsoft Windows -> Microsoft Corporation) S3 MpKslbb93e770; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E13D0479-868F-4F11-836E-3E900B5F9B64}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-12-24 17:45 - 2022-12-24 17:46 - 000029849 _____ C:\Users\fred\Desktop\FRST.txt 2022-12-24 17:42 - 2022-12-24 17:42 - 002375680 _____ (Farbar) C:\Users\fred\Desktop\FRST64(2).exe 2022-12-24 17:30 - 2022-12-24 17:21 - 000314717 _____ C:\Users\fred\Desktop\ZHPDiag - Copie.txt 2022-12-24 17:21 - 2022-12-24 17:21 - 000314717 _____ C:\Users\fred\Desktop\ZHPDiag.txt 2022-12-24 17:02 - 2022-12-24 17:02 - 003510472 _____ (Nicolas Coolman) C:\Users\fred\Desktop\ZHPSuite(1).exe 2022-12-24 08:18 - 2022-12-24 08:18 - 001919236 _____ C:\WINDOWS\Minidump\122422-14031-01.dmp 2022-12-24 08:18 - 2022-12-24 08:18 - 000000000 ____D C:\WINDOWS\Panther 2022-12-20 20:25 - 2022-12-20 20:25 - 000022289 _____ C:\Users\fred\Downloads\FRST.txt 2022-12-20 20:23 - 2022-12-20 20:23 - 002375680 _____ (Farbar) C:\Users\fred\Downloads\FRST64(1).exe 2022-12-19 21:49 - 2022-12-24 17:45 - 000000000 ____D C:\FRST 2022-12-19 21:43 - 2022-12-19 21:43 - 002375680 _____ (Farbar) C:\Users\fred\Downloads\FRST64.exe 2022-12-19 19:52 - 2022-12-24 17:21 - 000000000 ____D C:\Users\fred\AppData\Roaming\ZHP 2022-12-19 19:52 - 2022-12-24 17:06 - 000000875 _____ C:\Users\fred\Desktop\ZHPSuite.lnk 2022-12-19 19:52 - 2022-12-19 19:52 - 000000000 ____D C:\Users\fred\AppData\Local\ZHP 2022-12-19 19:47 - 2022-12-19 19:47 - 003510472 _____ (Nicolas Coolman) C:\Users\fred\Downloads\ZHPSuite.exe 2022-12-19 13:45 - 2022-12-19 13:45 - 001197710 _____ C:\Users\fred\Downloads\Cv F MEY- Givaudan dec 2022-2.pdf 2022-12-19 13:44 - 2022-12-19 13:44 - 001197710 _____ C:\Users\fred\Downloads\Cv F MEY- Givaudan dec 2022-1.pdf 2022-12-19 13:43 - 2022-12-19 13:43 - 001197710 _____ C:\Users\fred\Downloads\Cv F MEY- Givaudan dec 2022.pdf 2022-12-19 13:40 - 2022-12-19 13:40 - 001197710 _____ C:\Users\fred\Desktop\Cv F MEY- Givaudan dec 2022.pdf 2022-12-17 04:38 - 2022-12-17 04:38 - 000000000 ___HD C:\$WinREAgent 2022-12-12 00:48 - 2022-12-12 00:48 - 000046592 _____ C:\Users\fred\Desktop\Liste licencies 221209(2).xls 2022-12-12 00:28 - 2022-12-12 00:26 - 000013235 _____ C:\Users\fred\Desktop\Apero de noel Bad Pernes - Copie.xlsx 2022-12-12 00:00 - 2022-12-12 00:26 - 000013235 _____ C:\Users\fred\Desktop\Apero de noel Bad Pernes.xlsx 2022-12-11 23:28 - 2022-12-11 23:28 - 000045056 _____ C:\Users\fred\Downloads\Liste licencies 221209(2).xls 2022-12-11 23:28 - 2022-12-11 23:28 - 000045056 _____ C:\Users\fred\Downloads\Liste licencies 221209(1).xls 2022-12-11 23:27 - 2022-12-11 23:27 - 000045056 _____ C:\Users\fred\Downloads\Liste licencies 221209.xls 2022-12-10 07:26 - 2022-12-10 07:26 - 000070096 _____ C:\Users\fred\Downloads\AK2211180056-2.pdf 2022-12-02 04:48 - 2022-12-02 04:48 - 000072153 _____ C:\Users\fred\Desktop\CAF SITUATION DEC22.pdf 2022-11-30 23:33 - 2022-12-19 23:58 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-11-21 00:45 - 2022-11-21 00:45 - 000070100 _____ C:\Users\fred\Downloads\AK2211180056-1.pdf 2022-11-21 00:38 - 2022-11-21 00:38 - 000070112 _____ C:\Users\fred\Downloads\AK2211180056.pdf 2022-11-15 00:04 - 2022-09-30 05:24 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys 2022-11-14 08:45 - 2022-11-14 08:47 - 000067637 _____ C:\Users\fred\Desktop\2022-09 Bulletin de paie GROUPE SOLANO 001-841-100523.pdf 2022-11-14 08:45 - 2022-11-14 08:47 - 000067527 _____ C:\Users\fred\Desktop\2022-10 Bulletin de paie GROUPE SOLANO 001-841-100587.pdf 2022-11-14 08:45 - 2022-11-14 08:47 - 000062961 _____ C:\Users\fred\Desktop\2022-08 Bulletin de paie GROUPE SOLANO 001-841-100460.pdf 2022-11-14 08:45 - 2022-11-14 08:45 - 000096699 _____ C:\Users\fred\Downloads\coffreo-archive-20221114_0845.zip 2022-11-14 08:40 - 2022-11-14 08:40 - 000161619 _____ C:\Users\fred\Desktop\Avis_d_impot_2022_sur_les_revenus_2021.pdf 2022-11-14 08:30 - 2022-11-14 08:30 - 000188594 _____ C:\Users\fred\Desktop\EDF ATTESTATION DOM NOV2022.pdf 2022-11-13 10:09 - 2022-11-13 10:16 - 000000000 ____D C:\Users\fred\Desktop\fred 2022-11-11 19:16 - 2022-11-11 19:16 - 000000000 ____H C:\Users\fred\Documents\Default.rdp 2022-11-11 08:13 - 2022-11-11 08:13 - 000067527 _____ C:\Users\fred\Downloads\2022-10 Bulletin de paie GROUPE SOLANO 001-841-100587.pdf 2022-11-10 21:41 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2022-11-10 21:40 - 2022-09-30 05:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys 2022-11-02 00:21 - 2022-11-02 00:21 - 000023066 _____ C:\Users\fred\Downloads\19-06-21 FALQUE-LAMOURET.pdf 2022-11-01 22:41 - 2022-11-01 22:41 - 000000000 _____ C:\Users\fred\Downloads\JdXEfxw8.htm 2022-11-01 22:41 - 2022-11-01 22:41 - 000000000 _____ C:\Users\fred\Downloads\IFop4ZgV.htm 2022-10-31 21:24 - 2022-10-31 21:24 - 000366425 _____ C:\Users\fred\Downloads\CME20221031-14294431-solano-chronointerim-001-841-100968_0.pdf 2022-10-30 23:21 - 2022-10-30 23:21 - 000271085 _____ C:\Users\fred\Downloads\CME20211102-15294723-actual-actual-001-449-119936_01.pdf 2022-10-30 23:20 - 2022-10-30 23:20 - 000271065 _____ C:\Users\fred\Downloads\CME20211224-13285102-actual-actual-001-449-120357_0.pdf 2022-10-30 23:19 - 2022-10-30 23:19 - 000271071 _____ C:\Users\fred\Downloads\CME20211231-14391511-actual-actual-001-449-120357_01.pdf 2022-10-30 23:18 - 2022-10-30 23:18 - 000084217 _____ C:\Users\fred\Downloads\CTR00114811443200MIS.pdf 2022-10-30 23:10 - 2022-10-30 23:10 - 000366349 _____ C:\Users\fred\Downloads\CME20221017-15175358-solano-chronointerim-001-841-100930_0.pdf 2022-10-24 23:24 - 2022-10-24 23:24 - 000000000 ____D C:\WINDOWS\system32\Samsung 2022-10-24 23:24 - 2022-10-24 23:24 - 000000000 ____D C:\ProgramData\Samsung 2022-10-23 19:06 - 2022-10-23 19:06 - 000976791 _____ C:\Users\fred\Downloads\attestation-1.pdf 2022-10-23 18:21 - 2022-10-23 18:21 - 000068044 _____ C:\Users\fred\Downloads\Bulletin_2022_03_738.pdf 2022-10-23 18:17 - 2022-10-23 18:17 - 000130387 _____ C:\Users\fred\Downloads\2022-07 Bulletin de paie Start People.pdf 2022-10-23 18:11 - 2022-10-23 18:11 - 000054384 _____ C:\Users\fred\Downloads\2022-01 Bulletin de paie ACTUAL L'AGENCE EMPLOI 001-449-124230.pdf 2022-10-23 18:10 - 2022-10-23 18:10 - 000051156 _____ C:\Users\fred\Downloads\2021-12 Bulletin de paie ACTUAL L'AGENCE EMPLOI 001-449-122799-1.pdf 2022-10-23 18:09 - 2022-10-23 18:09 - 000046699 _____ C:\Users\fred\Downloads\2021-10 Bulletin de paie ACTUAL L'AGENCE EMPLOI 001-449-122534.pdf 2022-10-23 18:08 - 2022-10-23 18:08 - 000096143 _____ C:\Users\fred\Downloads\coffreo-archive-20221023_1908.zip 2022-10-23 18:07 - 2022-10-23 18:07 - 000110472 _____ C:\Users\fred\Downloads\2022-07-11 Compte épargne-temps ACTUAL L'AGENCE EMPLOI 20220711-001-449-449103231.pdf 2022-10-23 17:47 - 2022-10-23 17:47 - 000067637 _____ C:\Users\fred\Downloads\2022-09 Bulletin de paie GROUPE SOLANO 001-841-100523.pdf 2022-10-22 15:24 - 2022-10-22 15:24 - 000094967 _____ C:\Users\fred\Desktop\AMANDES 370962802.pdf 2022-10-21 19:32 - 2022-10-21 19:32 - 000002239 _____ C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk 2022-10-12 22:24 - 2022-11-20 03:31 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2022-10-12 22:24 - 2022-10-23 11:47 - 000002135 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk 2022-10-11 20:59 - 2022-10-11 20:59 - 000351680 _____ (Mozilla) C:\Users\fred\Downloads\Firefox Installer.exe 2022-10-10 22:04 - 2022-10-10 22:05 - 022762488 _____ (Amazon.com Services LLC) C:\Users\fred\Downloads\AmazonMusicInstaller(1).a9FAtEf9.exe.part 2022-10-10 22:04 - 2022-10-10 22:04 - 000000000 _____ C:\Users\fred\Downloads\AmazonMusicInstaller(1).exe 2022-10-10 18:15 - 2022-10-10 18:16 - 087380000 _____ (Amazon.com Services LLC) C:\Users\fred\Downloads\AmazonMusicInstaller.exe 2022-10-10 05:53 - 2022-10-10 05:53 - 000015382 _____ C:\Users\fred\Downloads\justificatif_reglement_avis_33337392233101.pdf 2022-09-28 17:50 - 2022-09-28 17:50 - 000338387 _____ C:\Users\fred\Downloads\La_charte_du_BoPiste__aout_2022_62e818939f2a3.pdf 2022-09-28 17:43 - 2022-09-28 17:43 - 000047313 _____ C:\Users\fred\Desktop\certif med bad.pdf 2022-09-28 17:42 - 2022-09-28 17:42 - 000047392 _____ C:\Users\fred\Documents\img20220928_18420073.pdf 2022-09-28 17:41 - 2022-09-28 17:41 - 000047299 _____ C:\Users\fred\Documents\img20220928_18410975.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-12-24 17:45 - 2020-08-23 18:38 - 000000000 ____D C:\Users\fmey 2022-12-24 17:41 - 2020-01-04 02:15 - 000000000 ____D C:\Program Files (x86)\Google 2022-12-24 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-12-24 16:57 - 2020-08-23 18:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-12-24 16:05 - 2022-02-18 02:09 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-12-24 16:04 - 2019-04-28 19:29 - 000000000 ____D C:\Users\fred\AppData\LocalLow\Mozilla 2022-12-24 16:03 - 2020-08-23 18:45 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-12-24 16:03 - 2019-12-07 15:49 - 000757872 _____ C:\WINDOWS\system32\perfh00C.dat 2022-12-24 16:03 - 2019-12-07 15:49 - 000142626 _____ C:\WINDOWS\system32\perfc00C.dat 2022-12-24 16:03 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-12-24 16:02 - 2019-04-28 20:06 - 000000000 ____D C:\Users\fred\AppData\Local\D3DSCache 2022-12-24 16:00 - 2019-04-28 19:28 - 000000000 ___RD C:\Users\fred\OneDrive 2022-12-24 08:18 - 2020-08-23 18:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-12-24 08:18 - 2020-08-23 18:40 - 000000000 ____D C:\WINDOWS\Minidump 2022-12-24 08:18 - 2020-08-23 18:37 - 000008192 ___SH C:\DumpStack.log.tmp 2022-12-24 08:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-12-24 08:18 - 2019-04-28 19:07 - 000000000 ____D C:\Intel 2022-12-23 23:16 - 2020-08-23 18:38 - 000000000 ____D C:\Users\fred 2022-12-23 00:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-12-23 00:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-12-19 19:46 - 2019-07-08 14:16 - 000000000 ____D C:\ProgramData\CanonIJPLM 2022-12-19 13:39 - 2019-09-23 07:08 - 000000000 ____D C:\Users\fred\Documents\Cv 2022-12-18 11:41 - 2021-09-09 06:47 - 000000000 ____D C:\Users\fred\AppData\Local\PlaceholderTileLogoFolder 2022-12-18 11:41 - 2019-04-28 19:25 - 000000000 ____D C:\Users\fred\AppData\Local\Packages 2022-12-18 06:24 - 2021-12-13 08:39 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2075030999-2615340698-637334074-1001 2022-12-18 06:24 - 2020-08-23 18:46 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2075030999-2615340698-637334074-1001 2022-12-18 06:24 - 2020-08-23 18:38 - 000002425 _____ C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-12-17 21:59 - 2020-06-16 20:06 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-17 21:55 - 2019-09-23 07:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-12-17 06:14 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2022-12-17 06:12 - 2020-08-23 18:37 - 000465816 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-12-17 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-17 04:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-12-17 04:48 - 2020-08-23 18:40 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-12-14 06:41 - 2019-04-29 10:12 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-12-14 06:37 - 2019-04-29 10:12 - 148633544 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-12-13 00:44 - 2020-03-30 17:00 - 000000000 ____D C:\WINDOWS\TempInst 2022-12-10 05:43 - 2018-04-17 20:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-12-03 05:42 - 2019-04-28 19:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-12-01 20:30 - 2021-10-07 15:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-12-01 20:30 - 2019-04-28 19:29 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk ==================== SigCheckExt ========================= 2019-07-08 14:14 - 2013-09-11 14:50 - 000360448 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6PPM.DLL 2019-07-08 14:14 - 2013-09-11 14:50 - 000039424 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6UI.DLL 2016-09-14 13:31 - 2016-09-14 13:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2016-09-14 13:31 - 2016-09-14 13:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2016-09-14 13:31 - 2016-09-14 13:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2016-09-14 13:31 - 2016-09-14 13:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2019-07-08 14:14 - 2013-09-11 14:49 - 000366592 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNMNPPM.DLL 2022-12-24 17:42 - 2022-12-24 17:42 - 002375680 _____ (Farbar) C:\Users\fred\Desktop\FRST64(2).exe 2022-12-24 17:02 - 2022-12-24 17:02 - 003510472 _____ (Nicolas Coolman) C:\Users\fred\Desktop\ZHPSuite(1).exe 2022-10-10 22:04 - 2022-10-10 22:04 - 000000000 _____ C:\Users\fred\Downloads\AmazonMusicInstaller(1).exe 2021-10-08 12:40 - 2021-10-08 12:41 - 018649088 _____ C:\Users\fred\Downloads\epson325688eu.exe 2022-12-20 20:23 - 2022-12-20 20:23 - 002375680 _____ (Farbar) C:\Users\fred\Downloads\FRST64(1).exe 2022-12-19 21:43 - 2022-12-19 21:43 - 002375680 _____ (Farbar) C:\Users\fred\Downloads\FRST64.exe 2022-12-19 19:47 - 2022-12-19 19:47 - 003510472 _____ (Nicolas Coolman) C:\Users\fred\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {f8b948f4-b37e-11e8-9d16-806e6f6e6963} {f8b948f5-b37e-11e8-9d16-806e6f6e6963} {f8b948f6-b37e-11e8-9d16-806e6f6e6963} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {b21789d0-e56f-11ea-95d7-995e9273ffd3} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Application logicielle (101fffff) -------------------------------- identificateur {f8b948f4-b37e-11e8-9d16-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {f8b948f5-b37e-11e8-9d16-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {f8b948f6-b37e-11e8-9d16-806e6f6e6963} description EFI Network Application logicielle (101fffff) -------------------------------- identificateur {f8b948f7-b37e-11e8-9d16-806e6f6e6963} description EFI Network 0 for IPv4 (00-80-9B-00-4D-2B) Application logicielle (101fffff) -------------------------------- identificateur {f8b948f8-b37e-11e8-9d16-806e6f6e6963} description EFI Network 0 for IPv6 (00-80-9B-00-4D-2B) Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {b21789d2-e56f-11ea-95d7-995e9273ffd3} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {b21789d0-e56f-11ea-95d7-995e9273ffd3} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {b21789d2-e56f-11ea-95d7-995e9273ffd3} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{b21789d3-e56f-11ea-95d7-995e9273ffd3} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{b21789d3-e56f-11ea-95d7-995e9273ffd3} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {b21789d0-e56f-11ea-95d7-995e9273ffd3} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {b21789d2-e56f-11ea-95d7-995e9273ffd3} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {b21789d3-e56f-11ea-95d7-995e9273ffd3} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================