Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-03-2023 Exécuté par catoire services (administrateur) sur ASUSVIVOBOOK (ASUSTeK COMPUTER INC. VivoBook_ASUS Laptop E406MAS_E406MA) (29-03-2023 07:20:33) Exécuté depuis C:\Users\catoire services\Desktop Profils chargés: catoire services Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1413 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\msedgewebview2.exe <6> (DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe (DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe (DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15> (explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe (services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8ff8e67ced23ab98\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e9b40d45ab4dc6b8\IntelCpHeciSvc.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe (services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (sihost.exe ->) (ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe (sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe (svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_23047.400.1873.7204_x64__8wekyb3d8bbwe\msteamsupdate.exe <2> (svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\realteksemiconductorcorp.realtekaudiocontrol_1.16.228.0_x64__dt26b99r8h8gj\RtkUWP.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\111.0.1661.54\Installer\setup.exe [3982752 2023-03-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2648417494-3282834424-2125071782-1001\...\Run: [MicrosoftEdgeAutoLaunch_47796563DDF4C6AA31F2E70E0B28F200] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4055952 2023-03-24] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2648417494-3282834424-2125071782-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630568 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\111.0.5563.112\Installer\chrmstp.exe [2023-03-27] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-12-04] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {034697D0-0785-4638-9972-1C48F2A26DF5} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc Task: {1545ACB1-C8C5-428F-942F-9AA9240D3D01} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) Task: {2F61576E-DCF9-4114-A5D6-2BA453F36C09} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168840 2023-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {4012908B-F636-4ABF-9666-3FD004DBF51B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {42AB5669-DC28-4277-B2E2-4D37A3C9809C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {443BEC4B-1955-4AF6-838C-C6C95782D67B} - System32\Tasks\GoogleUpdateTaskMachineCore{F2BEC3DF-8C79-4043-A695-A41415408FE1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC) Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {4612DA5A-23C0-46AD-A719-8FC5BB767CEE} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1141552 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {482796CB-D48A-4A24-90C9-FB2CC6BA8151} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4D233AA2-F8B5-47F6-A586-735C9ED7E191} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {4FB6AC5C-AF36-45EB-9586-2196FEF1C25C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {5ACE6C4F-969E-4BED-8F4A-E96544ACA4E4} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusUpdateChecker.exe [797784 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {650B4370-572F-4BDF-AB87-8BC727CDB74A} - System32\Tasks\GoogleUpdateTaskMachineUA{34FF0DEB-6486-47CA-A821-4EFBBEC84EEF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-29] (Google LLC -> Google LLC) Task: {664BD7BF-2E40-498D-B1BF-F4D9AEAA5336} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7AB67683-780F-432C-A7AC-4D23ECAE401C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {87AF2907-0833-4F45-BB2A-6303E2B855E2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1a3c654f-c8ed-4389-879c-cce0ed2f8679" --version "6.10.10347" --silent Task: {B2CE0B92-56E5-4FB5-AEE5-660647584259} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {B426B94C-1453-4682-B000-737C2871B9A2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26296280 2023-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {BBC5BC38-F247-4D52-8036-97700CC0BA66} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205960 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) Task: {CB6E11C5-8023-4571-B9C8-A183AF24FE1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.) Task: {D7233CF6-01E6-472E-9CB4-BD17ED6E19E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier) Task: {E245E081-FD84-4161-8203-35174EE7EF7F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {F86B57DD-5541-4541-B70C-1D9C31350612} - System32\Tasks\CCleanerSkipUAC - catoire services => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0f9d45fc-a745-43fe-a643-ffe1823d16e2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e930f74b-d3cf-470d-8b52-6fa380d3abd3}: [DhcpNameServer] 10.66.48.1 Edge: ======= Edge Profile: C:\Users\catoire services\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-28] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-12-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default [2023-03-29] CHR StartupUrls: Default -> "hxxp://www.google.com" CHR Extension: (AdGuard AdBlocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-01-04] CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2023-03-26] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-03-09] CHR Extension: (Google Docs hors connexion) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-29] CHR Profile: C:\Users\catoire services\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-24] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.) R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusAppService\AsusAppService.exe [1159256 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkNear\AsusLinkNear.exe [1327192 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSLinkRemote\AsusLinkRemote.exe [764504 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSoftwareManager\AsusSoftwareManager.exe [1091672 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\AsusOptimization\AsusOptimization.exe [197328 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSwitch\AsusSwitch.exe [635480 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606120 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [526264 2023-01-29] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512728 2023-03-23] (Microsoft Corporation -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\FileSyncHelper.exe [3412360 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-12-13] (Microsoft Windows -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9094440 2023-03-27] (Malwarebytes Inc. -> Malwarebytes) S3 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_22df759ce010d03d\mcafeeintegrationservice.exe [2584344 2019-09-16] (McAfee, LLC. -> McAfee) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.048.0305.0002\OneDriveUpdaterService.exe [3797384 2023-03-21] (Microsoft Corporation -> Microsoft Corporation) R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188736 2021-07-20] (Qualcomm Atheros, Inc. -> ) R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2023-03-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe [3224328 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe [133544 2023-03-28] (Microsoft Windows Publisher -> Microsoft Corporation) S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [140376 2023-03-15] (Microsoft Windows -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_ec1954831bc29727\ASUSSystemAnalysis\AsusSAIO.sys [46704 2023-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-12-13] (Microsoft Windows -> Microsoft Corporation) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49928 2019-09-16] (McAfee, LLC. -> McAfee) S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.) S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> ) S2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-06-29] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49608 2023-03-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [495896 2023-03-28] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99624 2023-03-28] (Microsoft Windows -> Microsoft Corporation) R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2023-03-15] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-03-29 07:20 - 2023-03-29 07:21 - 000029033 _____ C:\Users\catoire services\Desktop\FRST.txt 2023-03-29 07:17 - 2023-03-29 07:17 - 000270789 _____ C:\Users\catoire services\Desktop\ZHPDiag.txt 2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe 2023-03-28 14:36 - 2023-03-28 14:36 - 000055928 _____ C:\Users\catoire services\Desktop\vosTimbres.pdf 2023-03-28 12:38 - 2023-03-28 16:59 - 000000000 ____D C:\Users\catoire services\Desktop\procuration les vans 2023-03-28 12:21 - 2023-03-28 16:34 - 000000000 ____D C:\Users\catoire services\Desktop\procurations génolhac 2023-03-28 07:16 - 2023-03-28 07:16 - 000000000 ____D C:\Users\catoire services\AppData\Local\mbam 2023-03-27 07:55 - 2023-03-27 07:55 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat 2023-03-27 07:55 - 2023-03-27 07:55 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat 2023-03-27 07:55 - 2023-03-27 07:55 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-03-27 07:55 - 2023-03-27 07:55 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-03-27 07:53 - 2023-03-27 07:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-03-27 07:50 - 2023-03-27 07:50 - 002649088 _____ (Malwarebytes) C:\Users\catoire services\Downloads\MBSetup.exe 2023-03-27 07:39 - 2023-03-27 07:45 - 000000000 ____D C:\AdwCleaner 2023-03-27 07:38 - 2023-03-27 07:38 - 008791352 _____ (Malwarebytes) C:\Users\catoire services\Downloads\adwcleaner_8.4.0.exe 2023-03-27 07:14 - 2023-03-27 07:14 - 000000888 _____ C:\Users\catoire services\Desktop\ZHPCleaner.lnk 2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe 2023-03-26 08:47 - 2023-03-29 07:21 - 000000000 ____D C:\FRST 2023-03-26 08:45 - 2023-03-26 08:45 - 000001431 _____ C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST64.lnk 2023-03-26 08:40 - 2023-03-29 07:17 - 000000135 _____ C:\Users\catoire 2023-03-26 08:39 - 2023-03-29 07:17 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\ZHP 2023-03-26 08:39 - 2023-03-27 07:14 - 000000000 ____D C:\Users\catoire services\AppData\Local\ZHP 2023-03-26 08:39 - 2023-03-26 08:39 - 000000878 _____ C:\Users\catoire services\Desktop\ZHPSuite.lnk 2023-03-25 10:59 - 2023-03-25 10:59 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2023-03-25 10:55 - 2023-03-25 10:55 - 000000000 ____D C:\ProgramData\SafeNet Sentinel 2023-03-25 09:12 - 2023-03-26 12:36 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information 2023-03-24 09:02 - 2023-03-27 07:53 - 000000000 ____D C:\Program Files\Malwarebytes 2023-03-24 08:45 - 2023-03-24 08:45 - 000000000 ____D C:\Users\catoire services\AppData\Local\OneDrive 2023-03-24 08:25 - 2023-03-24 08:25 - 000000000 _____ C:\WINDOWS\system32\license.reg 2023-03-23 08:37 - 2023-03-23 08:37 - 000000543 _____ C:\WINDOWS\NGO.cer 2023-03-21 15:47 - 2023-03-21 15:47 - 000025715 _____ C:\Users\catoire services\Desktop\Doc_ATTAHA_20230321144307936_7696959D_1.pdf 2023-03-21 09:04 - 2023-03-21 09:04 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-500 2023-03-15 10:15 - 2023-03-15 10:15 - 000000000 ___HD C:\$WinREAgent 2023-03-14 20:10 - 2023-03-22 19:06 - 000000000 ____D C:\Program Files\Oracle 2023-03-14 20:10 - 2023-03-14 20:10 - 000000000 ____D C:\ProgramData\Package Cache 2023-03-14 19:19 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\PlaceholderTileLogoFolder 2023-03-14 19:18 - 2023-03-14 19:20 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache 2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages 2023-03-14 19:18 - 2023-03-14 19:19 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Intel 2023-03-14 19:18 - 2023-03-14 19:18 - 000000020 ___SH C:\Users\Administrateur\ntuser.ini 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage réseau 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Voisinage d'impression 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Modèles 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Mes documents 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Menu Démarrer 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes vidéos 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Mes images 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\Documents\Ma musique 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 _SHDL C:\Users\Administrateur\AppData\Local\Historique 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 __SHD C:\Users\Administrateur\IntelGraphicsProfiles 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Adobe 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\Intel 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Google 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ConnectedDevicesPlatform 2023-03-14 19:18 - 2023-03-14 19:18 - 000000000 ____D C:\Users\Administrateur 2023-03-14 19:18 - 2022-12-02 07:45 - 000000000 ___RD C:\Users\Administrateur\OneDrive 2023-03-14 12:02 - 2023-03-14 12:02 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\WinRAR 2023-03-14 12:01 - 2023-03-14 12:02 - 000000000 ____D C:\Program Files\WinRAR 2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\Users\catoire services\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-03-14 12:01 - 2023-03-14 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-03-14 11:45 - 2009-09-17 08:05 - 000145448 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\sentinel64.sys 2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2023-03-14 11:13 - 2023-03-14 11:13 - 000000000 ____D C:\Program Files\7-Zip 2023-03-09 19:22 - 2023-03-09 20:09 - 000000000 ____D C:\Users\catoire services\Desktop\succesion robiac 2023-03-05 19:18 - 2023-03-05 19:18 - 000000000 ___HD C:\OneDriveTemp 2023-03-02 13:35 - 2023-03-26 10:21 - 000000000 ____D C:\Users\catoire services\Desktop\Gammal 2023-02-18 10:54 - 2023-02-18 10:54 - 000333021 _____ C:\Users\catoire services\Downloads\FACTURE-23-02-6-PETIAU-DAVIS (2)_edited.pdf 2023-02-18 10:50 - 2023-02-18 10:50 - 000013218 _____ C:\Users\catoire services\Downloads\Bordereau-Vinted-5288095795.pdf 2023-02-18 10:25 - 2023-02-18 10:25 - 000000000 ____D C:\Users\catoire services\AppData\LocalLow\Temp 2023-02-16 09:20 - 2023-03-17 13:03 - 000000000 ____D C:\Users\catoire services\Desktop\Documents Simon 2023-02-06 20:00 - 2023-02-06 20:00 - 000131377 _____ C:\Users\catoire services\Desktop\Liste Plomberie.pdf 2023-02-05 09:25 - 2023-02-05 09:25 - 012136948 _____ C:\Users\catoire services\Desktop\donnees_communales_zds_hexagone_pour_alimagri.xlsx 2023-02-04 15:23 - 2023-03-21 09:04 - 000000000 ____D C:\Users\catoire services\Desktop\Devis CATOIRE SERVICES 2023-01-26 12:10 - 2023-01-26 12:10 - 001590294 _____ C:\Users\catoire services\Desktop\image0.jpeg 2023-01-26 12:08 - 2023-01-26 12:08 - 000760325 _____ C:\Users\catoire services\Desktop\image2.jpeg 2023-01-26 12:07 - 2023-01-26 12:07 - 001572883 _____ C:\Users\catoire services\Desktop\image1.jpeg 2023-01-12 14:00 - 2023-01-12 14:00 - 000128752 _____ C:\Users\catoire services\Downloads\report.pdf 2023-01-11 10:46 - 2023-01-11 10:46 - 000265488 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys 2023-01-11 10:46 - 2023-01-11 10:46 - 000254616 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys 2023-01-10 12:02 - 2023-01-10 12:02 - 000073636 _____ C:\Users\catoire services\Downloads\vosTimbres.pdf 2023-01-09 13:02 - 2023-03-28 17:42 - 000000000 ____D C:\Users\catoire services\Documents\Numérisés ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-03-29 07:15 - 2022-12-13 11:11 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2023-03-29 07:14 - 2022-12-04 18:22 - 000000000 ____D C:\Program Files\CCleaner 2023-03-29 07:14 - 2022-11-29 21:35 - 000000000 ____D C:\Program Files (x86)\Google 2023-03-28 17:52 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-03-28 16:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-03-28 14:54 - 2022-12-13 11:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-03-28 08:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-03-28 07:29 - 2022-06-19 23:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-03-27 20:21 - 2022-11-29 21:36 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-03-27 20:21 - 2022-11-29 21:36 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-03-27 07:55 - 2022-12-13 11:08 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-03-27 07:55 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-03-27 07:55 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-03-27 07:51 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-03-27 07:49 - 2022-12-13 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-03-27 07:49 - 2022-06-19 23:34 - 000000000 ____D C:\Intel 2023-03-27 07:49 - 2022-06-19 23:33 - 000012288 ___SH C:\DumpStack.log.tmp 2023-03-27 07:49 - 2022-06-19 18:53 - 000000000 __SHD C:\Users\catoire services\IntelGraphicsProfiles 2023-03-27 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-03-27 07:49 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-03-27 07:14 - 2022-06-19 23:34 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-03-27 07:14 - 2022-06-19 23:34 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-03-25 12:26 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\D3DSCache 2023-03-25 11:22 - 2022-11-29 20:40 - 000000000 ___RD C:\Users\catoire services\OneDrive 2023-03-25 08:59 - 2022-12-13 10:42 - 000000000 ____D C:\Users\catoire services 2023-03-23 17:37 - 2019-10-23 21:38 - 000000000 ____D C:\Program Files\Microsoft Office 2023-03-23 08:25 - 2022-12-04 18:22 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-03-23 08:25 - 2022-12-04 09:40 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-03-22 19:01 - 2022-12-13 11:11 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-03-22 19:01 - 2022-12-13 11:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-03-21 09:04 - 2022-12-13 11:11 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2648417494-3282834424-2125071782-1001 2023-03-21 09:04 - 2022-12-13 11:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-03-21 09:04 - 2022-12-09 19:13 - 000000000 ____D C:\Users\catoire services\Desktop\facture CS 2023-03-21 09:04 - 2022-12-02 07:45 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-03-17 08:35 - 2022-12-13 11:11 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-03-17 08:35 - 2022-12-13 11:11 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-03-16 08:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-03-15 15:28 - 2022-12-13 11:06 - 000472264 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-03-15 15:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-03-15 10:27 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-03-15 10:22 - 2022-12-13 11:08 - 003211264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-03-15 10:06 - 2022-12-02 18:03 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-03-15 09:56 - 2022-12-02 18:03 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-03-14 19:18 - 2020-05-15 23:42 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-03-14 13:20 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\Users\catoire services\AppData\Local\Packages 2023-03-14 12:02 - 2022-06-19 18:53 - 000000000 ____D C:\ProgramData\Packages 2023-03-09 08:24 - 2022-06-19 23:34 - 000000000 ____D C:\ProgramData\ASUS 2023-03-09 08:23 - 2022-12-13 11:11 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0 ==================== SigCheckExt ========================= 2022-12-09 08:31 - 2022-06-24 08:35 - 002149184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll 2023-03-29 07:12 - 2023-03-29 07:12 - 002379264 _____ (Farbar) C:\Users\catoire services\Desktop\FRST64.exe 2023-03-27 07:13 - 2023-03-27 07:13 - 003306696 _____ (Nicolas Coolman) C:\Users\catoire services\Downloads\ZHPCleaner.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {48760f2e-c292-11ed-9be3-70665596099e} {48760f2f-c292-11ed-9be3-70665596099e} {48760f30-c292-11ed-9be3-70665596099e} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {48760f2e-c292-11ed-9be3-70665596099e} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {48760f2f-c292-11ed-9be3-70665596099e} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {48760f30-c292-11ed-9be3-70665596099e} description UEFI:Network Device Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023} displaymessageoverride Recovery recoveryenabled Yes testsigning Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {db8c804c-efd2-11ec-bd82-b7fd65b48023} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {db8c804f-efd2-11ec-bd82-b7fd65b48023} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{db8c8050-efd2-11ec-bd82-b7fd65b48023} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {db8c804c-efd2-11ec-bd82-b7fd65b48023} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {db8c804f-efd2-11ec-bd82-b7fd65b48023} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {db8c8050-efd2-11ec-bd82-b7fd65b48023} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================