Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13.07.2024 Exécuté par XEFI (administrateur) sur DESKTOP-FEUEDBM (HP HP Z2 Tower G9 Workstation Desktop PC) (16-07-2024 12:10:40) Exécuté depuis C:\Users\XEFI\Downloads\FRST64.exe Profils chargés: XEFI Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.3810 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4> (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\92.0.1.0\crashpad_handler.exe (C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe <6> (C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\93.0.1.0\crashpad_handler.exe (C:\Program Files\HP\Sure Click\servers\BrService.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\bin\Br-uxendm.exe <3> (C:\Program Files\HP\Sure Click\servers\BrService.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BrHostSvr.exe (C:\Program Files\WindowsApps\MicrosoftTeams_24165.1305.2974.9330_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.87\msedgewebview2.exe <6> (cmd.exe ->) (Bromium UK Limited -> ) C:\Program Files\HP\Sure Click\servers\BrHostHelper\BrHostHelper.exe <2> (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc) C:\Program Files\WindowsApps\AD2F1837.myHP_34.52424.589.0_x64__v10z8vjag6ke6\win32\HP.ContextAware.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <37> (explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\92.0.1.0\GoogleDriveFS.exe (explorer.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHLE.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Security Update Service\4.4.16.19\SecurityUpdateService.exe (services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BemSvc.exe (services.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BrService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Assess and Respond\HPAssessAndRespond.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\Firmware\HpSfuService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5fbd25da4ddef19f\HotkeyServiceDSU.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5fbd25da4ddef19f\LanWlanWwanSwitchingServiceDSU.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_2d93188f2a23173f\x64\hpsvcsscan.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_e691b669c6a33b4e\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a687edda40db3316\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4c1ca28bc13951a7\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_aab086749a1a9302\RtkAudUService64.exe <2> (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE (services.exe ->) (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_34.52424.589.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2424.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Bromium UK Limited -> HP) C:\Program Files\HP\Sure Click\servers\BrConsole.exe (svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_34.52424.589.0_x64__v10z8vjag6ke6\HP.myHP.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Client Security Manager\HP.ClientSecurityManager.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21970.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_aab086749a1a9302\RtkAudUService64.exe [1921848 2024-01-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-03] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1136560 2024-06-26] (Adobe Inc. -> Adobe Inc.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.102\Installer\setup.exe [6806464 2024-07-16] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-16] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-16] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-16] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\Run: [MicrosoftEdgeAutoLaunch_55E58234249F6601DA266A8F82CF4C19] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883560 2024-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\XEFI\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [70024624 2024-07-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\XEFI\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\RunOnce: [Uninstall 24.116.0609.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\XEFI\AppData\Local\Microsoft\OneDrive\24.116.0609.0005" [0 2024-07-16] () <==== ATTENTION [zéro octet Fichier/Dossier] HKU\S-1-5-21-2695980517-2246088209-142646661-1001\...\MountPoints2: {cc483175-dba9-11ee-ae85-7c57583eef82} - "D:\SanDisk Drive Unlock.exe" autoplay=true HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\93.0.1.0\GoogleDriveFS.exe [61643040 2024-07-16] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\EPSON SX235 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMHLE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-26] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> GroupPolicy: Restriction - Chrome <==== ATTENTION GroupPolicy\User: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {4569C33C-597B-4710-8FFC-7F1994F04C03} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.) Task: {E97B5141-6B3B-4CCD-A0EC-16187BACBEF2} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {54C668E3-1108-4033-AB8F-912D7E060F98} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {57CED433-CDAA-4568-AA86-8DFF5B40DE0C} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{07DD63B5-A764-43F6-B47E-D9CAF6580EED} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC) Task: {213C3366-810C-4747-8366-AC431410BC5D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [703536 2024-05-13] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show Task: {CAA0DA8E-B387-4973-801A-2BD7B72D2B72} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-05-13] (HP Inc. -> HP Inc.) Task: {7F7C15B2-A3B4-4DE4-95D0-0B1AB859EDDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-05-13] (HP Inc. -> HP Inc.) Task: {00F7C2DE-715C-4A24-A584-20E16A2F1550} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-05-13] (HP Inc. -> HP Inc.) Task: {D611CC4C-6E00-49AC-8A18-02E4669A1BF0} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice Task: {FAD7A96C-7598-4925-B360-AB3D572917DD} - System32\Tasks\HP\HP Support Assistant\sp151468.exe => C:\ProgramData\HP\HP Support Framework\Softpaq\86806\sp151468.exe [130163648 2024-03-01] (HP Inc. -> HP Inc.) -> C:\ProgramData\HP\HP Support Framework\Softpaq\86806\/s /e cmd.exe /a /c ""HPUP.exe"" Task: {9E46616F-E25A-4FDE-9808-ED5483FACCC4} - System32\Tasks\HP\HP Wolf Security\Launch Console => C:\Program Files\HP\HP Client Security Manager\HP.ClientSecurityManager.exe [262672 2024-03-18] (HP Inc. -> HP Inc.) Task: {528EFCAE-A06B-4CA7-B2DD-8A4FDC53C7C5} - System32\Tasks\HP\Sure Click\Sure Click 4.4.16.19 => C:\Program Files\HP\Sure Click\servers\BrLauncher.exe [2738960 2024-05-22] (Bromium UK Limited -> HP) Task: {9C06B775-45C6-4192-A1FF-E96E21B65FA8} - System32\Tasks\HP\Sure Click\Sure Click UI 4.4.16.19 => C:\Program Files\HP\Sure Click\servers\BrConsole.exe [165136 2024-05-22] (Bromium UK Limited -> HP) Task: {C162EFFD-71A6-480B-9517-044260BFC9B4} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-07-16] (Adobe Inc. -> Adobe Inc.) Task: {119B337F-5829-4F92-9D28-5ACA48E43CE2} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\WINDOWS\system32\rundll32.exe [73728 2024-05-03] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {2A30CDAE-391E-4D6D-A78D-B0A760145529} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7EA062D0-27C4-4D02-B8DB-91EE15584060} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B40FC4C1-14A7-43B7-879F-B7BAC62BDEC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {14527224-4CF7-43D4-99C5-58940ECEC48C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {83982736-DC4A-42FB-81F2-91849A214EE1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-09] (Mozilla Corporation -> Mozilla Foundation) Task: {398757F1-5CAF-473F-8D2E-8817546D9DC1} - System32\Tasks\PinnacleStudio26Notifier => C:\Program Files\Pinnacle\Studio 26\programs\PinnacleNotifierWrapper.exe [12560 2023-09-07] (Corel Corporation -> Pinnacle) Task: {AD017EC1-2A3C-4EB0-8C1E-48404945B4E4} - System32\Tasks\PinnacleStudio26Updater => C:\Program Files\Pinnacle\Studio 26\programs\PSNotification.exe [560448 2023-09-05] (Corel Corporation -> ) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{541b4a7b-70b7-43b9-86ca-7564881b072b}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{541b4a7b-70b7-43b9-86ca-7564881b072b}: [DhcpDomain] home Edge: ======= Edge Profile: C:\Users\XEFI\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-16] Edge HomePage: Default -> hxxp://google.fr/ Edge Extension: (HP Wolf Security Extension) - C:\Users\XEFI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aoganjpeihhkhippgnniaclfocnihgln [2024-04-28] Edge Extension: (Google Docs hors connexion) - C:\Users\XEFI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-24] Edge Extension: (Edge relevant text changes) - C:\Users\XEFI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-13] FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-06-26] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-06-26] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Default [2024-07-16] CHR Notifications: Default -> hxxps://new.express.adobe.com; hxxps://ww2-ce.groupepvcp.com; hxxps://www.lidl.fr; hxxps://www.macifavantages.fr; hxxps://www.sncf-connect.com CHR Session Restore: Default -> est activé. CHR Extension: (Google Docs hors connexion) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-04] CHR Extension: (HP Wolf Security Extension) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpmlagmcbcnjhkdjiofoenkfbaclgjkk [2024-06-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-19] CHR Profile: C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-06-19] CHR Session Restore: Profile 1 -> est activé. CHR Extension: (Google Docs hors connexion) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-19] CHR Extension: (HP Wolf Security Extension) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpmlagmcbcnjhkdjiofoenkfbaclgjkk [2024-06-19] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-06-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-19] CHR Profile: C:\Users\XEFI\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-16] CHR HKU\S-1-5-21-2695980517-2246088209-142646661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-06-26] (Adobe Inc. -> Adobe Inc.) S4 BrAmSvc; C:\Program Files\HP\Sure Click\servers\BrAmSvc.exe [2043536 2024-05-22] (HP Inc -> HP) R2 BrEndpointSvc; c:\Program Files\HP\Sure Click\servers\BemSvc.exe [4542224 2024-05-22] (Bromium UK Limited -> HP) R2 BrService; c:\Program Files\HP\Sure Click\servers\BrService.exe [10572560 2024-05-22] (Bromium UK Limited -> HP) R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [168448 2011-01-11] (SEIKO EPSON CORPORATION) [Fichier non signé] R2 HotKeyServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5fbd25da4ddef19f\HotKeyServiceDSU.exe [683064 2023-10-03] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\AppHelperCap.exe [928192 2024-06-12] (HP Inc. -> HP Inc.) R2 HPAssessAndRespond; C:\Program Files\HP\HP Assess and Respond\HPAssessAndRespond.exe [2969616 2024-03-07] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\DiagsCap.exe [926760 2024-06-12] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\NetworkCap.exe [922560 2024-06-12] (HP Inc. -> HP Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149448 2020-07-23] (HP Inc. -> HP) R2 hpsvcsscan; C:\WINDOWS\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_2d93188f2a23173f\x64\hpsvcsscan.exe [7018048 2024-03-22] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\SysInfoCap.exe [927680 2024-06-12] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe [568896 2024-05-07] (HP Inc. -> HP Inc.) S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-21] (Intel Corporation -> Intel(R) Corporation) R2 LanWlanWwanSwitchingServiceDSU; C:\WINDOWS\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_5fbd25da4ddef19f\LanWlanWwanSwitchingServiceDSU.exe [589368 2023-10-03] (HP Inc. -> HP Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe [1377416 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SecurityUpdateService; C:\Program Files\HP\Security Update Service\4.4.16.19\SecurityUpdateService.exe [4776208 2024-05-22] (Bromium UK Limited -> HP) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SFUService; C:\WINDOWS\Firmware\HpSfuService.exe [890304 2022-09-02] (HP Inc. -> HP Inc.) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [368248 2021-03-16] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe [3236728 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe [133688 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2024-06-04] (Microsoft Windows -> Microsoft Corporation) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [7153200 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) S3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [800168 2023-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 BdDci4; C:\WINDOWS\system32\DRIVERS\bddci4.sys [918576 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R0 BrCow_4_4_16_19; C:\WINDOWS\System32\DRIVERS\BrCow_4_4_16_19.sys [69576 2024-05-22] (Bromium UK Limited -> Windows (R) Win 7 DDK provider) R2 BrFilter_4_4_16_19; C:\WINDOWS\System32\DRIVERS\BrFilter_4_4_16_19.sys [233416 2024-05-22] (Bromium UK Limited -> HP) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [Fichier non signé] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_7e337195b92a35b6\e1d.sys [611936 2023-09-03] (Intel Corporation -> Intel Corporation) S1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1444288 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [26648 2022-06-24] (HP Inc. -> HP Inc.) R3 HPKbfDriver; C:\WINDOWS\System32\drivers\HPKbfDriver.sys [45440 2021-09-12] (HP Inc. -> HP Inc.) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605312 2023-03-06] (Intel Corporation -> Intel Corporation) S3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [Fichier non signé] R3 MpKsl6581d9f4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C2DFF36D-2D07-44B3-B6CC-381EE9CBA4FB}\MpKslDrv.sys [271640 2024-07-16] (Microsoft Windows -> Microsoft Corporation) S0 sselam_4_4_2_453; C:\WINDOWS\System32\DRIVERS\sselam_4_4_2_453.sys [19384 2024-05-22] (Microsoft Windows Early Launch Anti-malware Publisher -> HP) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 uxen; c:\Program Files\HP\Sure Click\bin\uxen.sys [1924552 2024-03-13] (Bromium UK Limited -> HP) S3 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [524848 2024-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21968 2024-07-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-07-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-07-16] (Microsoft Windows -> Microsoft Corporation) R3 WiManHu; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_e8edc74538613ea4\WiManHu\WiManHu.sys [211624 2023-12-21] (Intel Corporation -> Intel Corporation) S3 ax_pvi; \??\c:\Program Files\HP\Sure Click\bin\ax_pvi.sys [X] S4 hpsysinfo.driver; \SystemRoot\System32\drivers\hpsysinfo.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-07-16 12:10 - 2024-07-16 12:11 - 000034959 _____ C:\Users\XEFI\Downloads\FRST.txt 2024-07-16 12:07 - 2024-07-16 12:10 - 000000000 ____D C:\FRST 2024-07-16 12:07 - 2024-07-16 12:07 - 002395648 _____ (Farbar) C:\Users\XEFI\Downloads\FRST64.exe 2024-07-16 11:40 - 2024-07-16 11:40 - 002093056 _____ (Farbar) C:\Users\XEFI\Downloads\FRST.exe 2024-07-04 23:18 - 2024-07-04 23:18 - 000414286 _____ C:\Users\XEFI\Downloads\20240704_décompte_courrier_juillet_01.pdf 2024-07-03 12:22 - 2024-07-03 12:22 - 000108534 _____ C:\Users\XEFI\Downloads\Relevé n°004 du 02_07_2024.pdf 2024-07-03 12:21 - 2024-07-03 12:21 - 000130272 _____ C:\Users\XEFI\Downloads\Relevé n°007 du 02_07_2024.pdf 2024-07-03 12:09 - 2024-07-03 12:09 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat 2024-07-03 12:09 - 2024-07-03 12:09 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat 2024-07-03 12:04 - 2024-07-03 12:04 - 000012170 __RSH C:\ProgramData\ntuser.pol 2024-07-01 10:28 - 2024-07-01 10:28 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-07-01 10:28 - 2024-07-01 10:28 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-06-29 15:11 - 2024-06-29 15:11 - 000061932 _____ C:\Users\XEFI\Downloads\facture_9055135589_2023-10-31.pdf 2024-06-29 15:04 - 2024-06-29 15:04 - 000143799 _____ C:\Users\XEFI\Downloads\facture_9055135589_2024-05-30.pdf 2024-06-29 15:03 - 2024-06-29 15:03 - 000120567 _____ C:\Users\XEFI\Downloads\facture_9055135589_2024-04-30 (1).pdf 2024-06-29 15:00 - 2024-06-29 15:00 - 000120567 _____ C:\Users\XEFI\Downloads\facture_9055135589_2024-04-30.pdf 2024-06-29 14:55 - 2024-06-29 14:55 - 000069611 _____ C:\Users\XEFI\Downloads\facture_9055135589_2024-04-02.pdf 2024-06-29 14:46 - 2024-06-29 14:46 - 000073488 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-01-02.pdf 2024-06-29 14:45 - 2024-06-29 14:45 - 000076954 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-03-01.pdf 2024-06-29 14:45 - 2024-06-29 14:45 - 000076390 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-01-30.pdf 2024-06-29 14:43 - 2024-06-29 14:43 - 000076716 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-04-02 (1).pdf 2024-06-29 14:42 - 2024-06-29 14:42 - 000076716 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-04-02.pdf 2024-06-29 14:39 - 2024-06-29 14:39 - 000076949 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-04-30.pdf 2024-06-29 12:23 - 2024-06-29 12:23 - 000090024 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-05-30 (2).pdf 2024-06-29 12:18 - 2024-06-29 12:18 - 000090024 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-05-30 (1).pdf 2024-06-29 12:13 - 2024-06-29 12:13 - 000090024 _____ C:\Users\XEFI\Downloads\facture_9053440748_2024-05-30.pdf 2024-06-26 23:37 - 2024-06-26 23:37 - 000001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2024-06-18 16:44 - 2024-06-18 16:44 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\CrystalIdea Software 2024-06-18 16:27 - 2024-06-18 16:38 - 000000000 ____D C:\AdwCleaner 2024-06-18 11:21 - 2024-06-18 16:26 - 000000000 ____D C:\Program Files (x86)\CleanUp! 2024-06-18 11:21 - 2024-06-18 11:21 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CleanUp! 2024-06-17 19:38 - 2024-06-17 19:38 - 000001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk 2024-06-17 14:10 - 2024-06-17 14:16 - 000000621 _____ C:\WINDOWS\PAGa4.dat ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-07-16 12:08 - 2023-12-17 12:42 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2024-07-16 12:08 - 2023-12-17 12:04 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2024-07-16 12:08 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-07-16 11:28 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-07-16 11:22 - 2023-06-14 08:41 - 000000000 ___SD C:\Users\XEFI\AppData\Roaming\Microsoft\Credentials 2024-07-16 10:52 - 2024-02-25 12:44 - 000003578 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess 2024-07-16 10:16 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-07-16 10:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-07-16 09:40 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-07-16 09:32 - 2023-04-21 09:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-07-16 09:32 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-07-16 09:22 - 2023-04-21 09:53 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-07-16 09:22 - 2023-04-21 09:53 - 000002288 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-07-16 09:20 - 2023-06-20 09:57 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2024-07-16 09:20 - 2023-06-20 09:57 - 000002088 _____ C:\Users\XEFI\Desktop\Google Slides.lnk 2024-07-16 09:20 - 2023-06-20 09:57 - 000002088 _____ C:\Users\XEFI\Desktop\Google Sheets.lnk 2024-07-16 09:20 - 2023-06-20 09:57 - 000002076 _____ C:\Users\XEFI\Desktop\Google Docs.lnk 2024-07-16 09:19 - 2023-08-29 09:42 - 000000000 ___HD C:\adobeTemp 2024-07-16 09:19 - 2023-06-14 15:29 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-07-16 09:18 - 2023-06-14 12:19 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2695980517-2246088209-142646661-1001 2024-07-16 09:18 - 2023-06-14 12:19 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2695980517-2246088209-142646661-1001 2024-07-16 09:18 - 2023-06-14 08:42 - 000000000 ____D C:\Users\XEFI\AppData\Local\D3DSCache 2024-07-16 09:18 - 2023-06-14 08:41 - 000002467 _____ C:\Users\XEFI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-07-16 09:17 - 2019-12-07 11:50 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2024-07-16 09:16 - 2023-06-14 12:19 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-16 09:16 - 2023-06-14 12:19 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-07-08 16:44 - 2023-09-23 10:57 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{F263FABB-7FA4-4B74-AE3F-762DB391072F} 2024-07-08 16:39 - 2023-06-19 19:09 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\Excel 2024-07-08 11:27 - 2023-06-30 23:08 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\Forms 2024-07-07 18:35 - 2024-02-19 19:13 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI 2024-07-05 10:41 - 2023-06-14 08:41 - 000000000 ____D C:\Users\XEFI\AppData\Local\Packages 2024-07-05 09:50 - 2023-06-14 12:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-07-04 16:32 - 2023-06-19 19:10 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\Word 2024-07-03 12:18 - 2023-06-14 15:30 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-07-03 12:18 - 2023-06-14 15:30 - 000002069 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-07-03 12:09 - 2023-06-14 12:21 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-07-03 12:04 - 2023-06-14 12:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-07-03 12:04 - 2023-04-21 09:53 - 000012288 ___SH C:\DumpStack.log.tmp 2024-07-03 12:03 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-07-01 23:54 - 2023-06-19 19:09 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\Office 2024-07-01 10:51 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-07-01 10:50 - 2023-06-14 15:30 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-07-01 10:36 - 2023-06-14 12:16 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2024-07-01 10:34 - 2023-06-14 12:16 - 001143560 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-07-01 10:32 - 2022-05-07 12:35 - 000000000 ____D C:\WINDOWS\InboxApps 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-07-01 10:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-07-01 10:28 - 2023-06-14 12:19 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-07-01 10:28 - 2023-06-14 10:42 - 000000000 ____D C:\Users\XEFI\AppData\Local\CrashDumps 2024-06-26 23:51 - 2023-06-14 15:30 - 000000000 ____D C:\ProgramData\Adobe 2024-06-26 23:37 - 2023-06-14 15:30 - 000000000 ____D C:\Program Files\Adobe 2024-06-26 23:16 - 2023-06-19 16:01 - 000001390 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2024-06-26 23:16 - 2023-06-19 16:01 - 000000000 ____D C:\Program Files (x86)\Adobe 2024-06-26 23:07 - 2023-04-21 10:06 - 000000000 ____D C:\ProgramData\Bromium 2024-06-23 16:50 - 2023-06-15 11:23 - 000000000 ____D C:\ProgramData\Package Cache 2024-06-23 16:49 - 2023-06-14 15:23 - 000000000 ____D C:\SWSetup 2024-06-18 22:13 - 2023-04-21 10:05 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2024-06-18 16:58 - 2023-04-21 09:53 - 000000000 ____D C:\ProgramData\HP 2024-06-18 16:38 - 2023-04-21 11:34 - 000000000 _RSHD C:\hp 2024-06-18 16:38 - 2023-04-21 10:00 - 000000000 ____D C:\Program Files (x86)\HP 2024-06-18 11:55 - 2023-06-14 15:27 - 000000000 ____D C:\Users\XEFI\AppData\Local\Adobe 2024-06-18 11:45 - 2023-06-19 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2024-06-18 11:22 - 2023-11-07 18:38 - 000000000 ____D C:\A_Perso_21.12.22 2024-06-18 11:22 - 2023-06-14 08:41 - 000000000 ____D C:\Users\XEFI\AppData\Local\VirtualStore 2024-06-17 15:05 - 2024-02-19 20:50 - 000000919 _____ C:\Users\XEFI\AppData\Roaming\DESKTOP-FEUEDBM.MTBF.txt 2024-06-17 15:05 - 2024-02-19 20:50 - 000000000 ____D C:\Users\XEFI\temp 2024-06-17 15:05 - 2023-06-19 19:40 - 000000000 ____D C:\Users\XEFI\AppData\Local\Pinnacle 2024-06-17 14:14 - 2023-10-18 14:06 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant 2024-06-17 14:10 - 2023-10-18 14:07 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-06-17 14:10 - 2023-10-18 14:07 - 000000000 ____D C:\ProgramData\AOMEIPA 2024-06-17 11:56 - 2023-06-22 18:59 - 000000000 ____D C:\Users\XEFI\AppData\Roaming\Microsoft\MMC 2024-06-17 10:01 - 2023-06-14 08:42 - 000000000 ____D C:\ProgramData\Packages 2024-06-16 15:06 - 2023-06-14 12:30 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-06-16 15:04 - 2023-06-14 12:30 - 199048176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-06-16 08:40 - 2023-10-18 23:33 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView ==================== Fichiers à la racine de certains dossiers ======== 2024-02-19 20:50 - 2024-06-17 15:05 - 000000919 _____ () C:\Users\XEFI\AppData\Roaming\DESKTOP-FEUEDBM.MTBF.txt 2024-02-23 11:54 - 2024-02-23 11:54 - 000003584 _____ () C:\Users\XEFI\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2023-12-18 12:21 - 2023-12-18 12:21 - 000000000 _____ () C:\Users\XEFI\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================