Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2023 Exécuté par Moi (administrateur) sur DESKTOP-PVQ11TU (HP HP Pavilion Desktop 590-p0xxx) (07-12-2023 12:54:04) Exécuté depuis C:\Users\Moi\Desktop\FRST64.exe Profils chargés: Moi Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.2792 (X64) Langue: Français (France) Navigateur par défaut: Brave Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe (C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe (C:\Program Files\Orange Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange Agent\27.0.1.259\DiscoverySrv.exe (C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange\Suite de Sécurité Orange\bdagent.exe (C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange\Suite de Sécurité Orange\bdntwrk.exe (C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> ) C:\Program Files\Orange\Suite de Sécurité Orange\wsccommunicator.exe (DriverStore\FileRepository\ki127769.inf_amd64_a6ec5bb94919df07\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki127769.inf_amd64_a6ec5bb94919df07\igfxEM.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Common Files\Orange\SetupInformation\Orange RedLine\bdredline.exe (services.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Orange) C:\Program Files\Orange\Suite de Sécurité Orange\updatesrv.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki127769.inf_amd64_a6ec5bb94919df07\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe (sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21752.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21752.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.2567_none_e93fb1d442e4b410\TiWorker.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SystemSettingsAdminFlows.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Dism\DismHost.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Bdagent] => C:\Program Files\Orange\Suite de Sécurité Orange\bdagent.exe [1041944 2023-09-26] (Bitdefender SRL -> Orange) HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.100\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10850840 2023-12-06] (Brave Software, Inc. -> Brave Software, Inc.) HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2107232 2017-12-19] (Realtek Semiconductor Corp. -> Realtek) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink Corp. -> CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-19] (CyberLink Corp. -> CyberLink Corp.) HKLM-x32\...\Run: [CLMLServer_For_P2G13] => C:\Program Files (x86)\CyberLink\Power2Go13\CLMLSvc_P2G13.exe [154296 2019-07-29] (CyberLink Corp. -> CyberLink) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\Run: [Steam] => C:\Users\Moi\Pictures\Saved Pictures\Nouveau dossier\steam.exe [3377440 2020-07-29] (Valve -> Valve Corporation) HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-19] (CyberLink Corp. -> CyberLink Corp.) HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\Run: [Power2GoExpress13] => C:\Program Files (x86)\CyberLink\Power2Go13\Power2GoExpress.exe [3697848 2019-07-29] (CyberLink Corp. -> CyberLink Corp.) HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\Run: [MicrosoftEdgeAutoLaunch_1C0D8D33CD05CE43661CCA53184A1995] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.100\Installer\chrmstp.exe [2023-12-07] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {65A67435-99B6-4114-B14C-D16A00FB49A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.) Task: {EF3D70D8-A815-458E-ABD4-D3A5CF97B707} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{458B4C70-7D44-4920-B4F0-83A227C028A4} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175416 2023-07-25] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {EC515465-0C89-42E9-90B8-D3C42A2C18CA} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{B87AABF4-10E1-475B-B598-1E0F4F8F03BB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175416 2023-07-25] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {EC682794-21C7-42D3-95F4-1A812A1FD8C0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-13] (Google Inc -> Google LLC) Task: {A78C0245-6A32-4423-980F-DC79DB793EE7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-13] (Google Inc -> Google LLC) Task: {358CB7AB-598A-4F17-8600-CF92982617F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [703536 2023-10-30] (HP Inc. -> HP Inc.) Task: {DCC57793-24C4-4473-94DE-CB0A5B6292A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2023-10-30] (HP Inc. -> HP Inc.) Task: {D3952F92-57C6-4264-93A4-B48BEED4927D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (Pas de fichier) Task: {43DA523D-550D-47CD-847B-F1C2158E794B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2023-10-30] (HP Inc. -> HP Inc.) Task: {D0F75FE2-A764-4BA7-93C5-EAC0A7966675} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier) Task: {6E68DF8C-532D-4DAA-A839-BBDE3A2559B2} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.) Task: {9800597A-D260-4944-92BF-D52EC0FEECBE} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs Task: {EFDA2779-F072-473F-85F0-0A3116FE5565} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier) Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe ReadyToReboot (Pas de fichier) Task: {376CD8EA-63D1-416B-B00F-5696CEE910BE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier) Task: {64C916DE-5C0B-45DB-B869-77A582AEBB9D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier) Task: {071A0CAF-202C-479A-842A-14246E469140} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (Pas de fichier) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {7FA67811-3D3C-4FF2-B5C1-CBC403ADFD56} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [137176 2023-12-05] (Microsoft Windows -> Microsoft Corporation) Task: {6480E29B-739E-45E8-8384-94F5AF18C745} - System32\Tasks\Orange Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Orange Agent\27.0.1.259\WatchDog.exe [936944 2023-07-27] (Bitdefender SRL -> Orange) Task: {B52F840C-635B-4905-8191-138394F0C706} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{996c7592-f92a-43e2-958c-a82a057f89b0}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-07] Edge Extension: (Google Docs hors connexion) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17] Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-11-29] Edge Extension: (Office Online - Copier et coller) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2023-11-26] Edge Extension: (Edge relevant text changes) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-26] Edge Extension: (Jeuxjeuxjeux) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lbahmneejcflmnhbgemjbmgoopcbadbc [2023-11-26] Edge Extension: (Instant Gaming) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2023-11-30] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-11-28] Edge Profile: C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-11-12] Edge Extension: (Ad 'n Popup-Blocker) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\eofhamhgcjpjmipbpegbjeododphaoep [2023-08-18] Edge Extension: (Google Docs hors connexion) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-12] Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-11-12] Edge Extension: (Edge relevant text changes) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-15] Edge Extension: (Jeuxjeuxjeux) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\lbahmneejcflmnhbgemjbmgoopcbadbc [2023-08-18] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Moi\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-11-12] FireFox: ======== FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Orange\Suite de Sécurité Orange\bdtbext FF Extension: (Orange Antispam Toolbar) - C:\Program Files\Orange\Suite de Sécurité Orange\bdtbext [2023-10-10] [] [non signé] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Orange\Suite de Sécurité Orange\bdtbext FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default [2023-12-07] CHR Notifications: Default -> hxxps://steamcommunity.com; hxxps://www.cpasmal.net; hxxps://www.filmstoon.pro; hxxps://www.gametwist.com; hxxps://www.jeux-gratuits.com; hxxps://www.lavenir.net; hxxps://www.media.io; hxxps://www.youtube.com CHR Extension: (Jeuxjeuxjeux) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajdcdldijnddfkjdikgbemhnjopehfof [2020-10-08] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-23] CHR Extension: (Ad 'n Popup-Blocker) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofhamhgcjpjmipbpegbjeododphaoep [2021-08-21] CHR Extension: (Google Docs hors connexion) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-28] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\Moi\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-21] CHR HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] Brave: ======= BRA Profile: C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-12-07] BRA Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29] BRA Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-24] BRA Extension: (Ad 'n Popup-Blocker) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eofhamhgcjpjmipbpegbjeododphaoep [2023-07-25] BRA Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-29] BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-12-06] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-12-06] BRA Extension: (Brave NTP background images) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-19] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-12-07] BRA Extension: (Brave Ads Resources) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2023-11-17] BRA Extension: (Wallet Data Files Updater) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-11-21] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-12-07] BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2023-12-07] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-07] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-07-25] BRA Extension: (Brave Ads Resources) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\ijgkfgmfiinppefbonemjidmkhgbonei [2023-11-17] BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-12-07] BRA Extension: (Brave NTP sponsored images) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2023-12-07] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-12-06] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-26] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.) R2 BDAuxSrv; C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe [814104 2023-09-26] (Bitdefender SRL -> Orange) R2 BDProtSrv; C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe [814104 2023-09-26] (Bitdefender SRL -> Orange) R2 bdredline; C:\Program Files\Common Files\Orange\SetupInformation\Orange RedLine\bdredline.exe [3134560 2022-01-28] (Bitdefender SRL -> Orange) R2 bdredline_agent; C:\Program Files\Orange Agent\redline\bdredline.exe [2701296 2023-07-20] (Bitdefender SRL -> Orange) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175416 2023-07-25] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175416 2023-07-25] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.100\brave_vpn_helper.exe [2766872 2023-12-06] (Brave Software, Inc. -> Brave Software, Inc.) S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.100\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10850840 2023-12-06] (Brave Software, Inc. -> Brave Software, Inc.) S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1376256 2023-12-05] (Microsoft Windows -> Microsoft Corporation) S3 GameInputSvc; C:\WINDOWS\System32\GameInputSvc.exe [71288 2023-12-05] (Microsoft Corporation -> Microsoft Corporation) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [887848 2023-10-30] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [886824 2023-10-30] (HP Inc. -> HP Inc.) R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [882728 2023-10-30] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [886824 2023-10-30] (HP Inc. -> HP Inc.) R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.) R2 ProductAgentService; C:\Program Files\Orange Agent\ProductAgentService.exe [659440 2023-07-27] (Bitdefender SRL -> Orange) R2 UPDATESRV; C:\Program Files\Orange\Suite de Sécurité Orange\updatesrv.exe [280088 2023-09-26] (Bitdefender SRL -> Orange) R2 VSSERV; C:\Program Files\Orange\Suite de Sécurité Orange\bdservicehost.exe [814104 2023-09-26] (Bitdefender SRL -> Orange) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1685312 2023-02-09] (WildTangent, Inc. -> ) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.100\elevation_service.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [5579176 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [798128 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [33208 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL) S3 bduefiscan; C:\WINDOWS\system32\DRIVERS\bduefiscan.sys [39840 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2023-04-23] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-04-23] (Microsoft Corporation) [Fichier non signé] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] R3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [113888 2018-05-02] (CyberLink Corp. -> CyberLink) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1322912 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [185328 2020-10-07] (Bitdefender SRL -> Bitdefender) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [633248 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [33792 2023-12-05] (Microsoft Windows -> Microsoft Corporation) R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [481184 2023-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-07 12:54 - 2023-12-07 12:56 - 000032925 _____ C:\Users\Moi\Desktop\FRST.txt 2023-12-07 12:52 - 2023-12-07 12:55 - 000000000 ____D C:\FRST 2023-12-07 12:46 - 2023-12-07 12:46 - 002384384 _____ (Farbar) C:\Users\Moi\Desktop\FRST64.exe 2023-12-07 07:42 - 2023-12-07 07:42 - 000848436 _____ C:\WINDOWS\system32\perfh00C.dat 2023-12-07 07:42 - 2023-12-07 07:42 - 000174524 _____ C:\WINDOWS\system32\perfc00C.dat 2023-12-06 08:31 - 2023-12-06 08:31 - 000000000 ____D C:\Users\Moi\AppData\Local\cache 2023-12-05 13:53 - 2023-12-05 13:53 - 000000000 ____D C:\WINDOWS\InboxApps 2023-12-04 09:36 - 2023-12-06 07:36 - 000000000 ____D C:\Users\Moi\AppData\Roaming\Telegram Desktop 2023-12-04 09:36 - 2023-12-04 09:36 - 000001033 _____ C:\Users\Moi\Desktop\Telegram.lnk 2023-12-04 09:36 - 2023-12-04 09:36 - 000000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-07 12:49 - 2020-04-27 11:27 - 000000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Word 2023-12-07 12:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-12-07 12:16 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-12-07 12:16 - 2019-07-13 19:17 - 000000000 ____D C:\Program Files (x86)\Google 2023-12-07 12:05 - 2021-06-10 16:01 - 000000000 ____D C:\Users\Moi\Documents\Logiciel 2023-12-07 09:07 - 2023-04-23 20:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-12-07 09:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-12-07 07:51 - 2023-07-25 19:58 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-12-07 07:44 - 2020-04-27 11:29 - 000000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\UProof 2023-12-07 07:42 - 2023-04-23 20:38 - 001957598 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-12-07 07:42 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2023-12-07 07:36 - 2019-04-09 08:55 - 000000000 __SHD C:\Users\Moi\IntelGraphicsProfiles 2023-12-07 07:35 - 2023-04-23 20:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-12-07 07:35 - 2020-08-25 23:05 - 000012288 ___SH C:\DumpStack.log.tmp 2023-12-07 07:28 - 2023-07-25 19:57 - 000003688 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{B87AABF4-10E1-475B-B598-1E0F4F8F03BB} 2023-12-07 07:28 - 2023-07-25 19:56 - 000003564 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{458B4C70-7D44-4920-B4F0-83A227C028A4} 2023-12-06 21:11 - 2023-04-23 20:52 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-12-06 21:11 - 2023-04-23 20:52 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-12-06 18:04 - 2021-04-08 18:06 - 000015695 _____ C:\Users\Moi\Documents\coupe d'europe.xlsx 2023-12-06 18:04 - 2020-04-29 16:56 - 000000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Excel 2023-12-06 07:11 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-12-05 14:17 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-12-05 14:02 - 2022-05-07 06:17 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2023-12-05 13:58 - 2023-04-23 20:23 - 000506424 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-12-05 13:56 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-12-05 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-12-05 13:53 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing 2023-12-05 12:32 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-12-05 05:24 - 2020-06-18 05:26 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-12-04 09:10 - 2020-03-27 16:07 - 000000000 ____D C:\Users\Moi\Documents\Anthony 2023-12-02 14:59 - 2019-07-13 19:46 - 000000000 ____D C:\Users\Moi\AppData\Roaming\vlc 2023-12-02 14:49 - 2021-06-19 08:49 - 000000000 ____D C:\My Works 2023-11-30 22:12 - 2019-07-13 19:19 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-11-30 20:16 - 2021-01-22 16:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-11-29 23:16 - 2023-04-23 19:18 - 000000000 ____D C:\Users\Moi 2023-11-24 06:22 - 2019-05-25 02:50 - 000000000 ____D C:\Users\Moi\AppData\Local\D3DSCache 2023-11-21 16:10 - 2023-04-23 20:52 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2883437007-3712616849-1720056259-1001 2023-11-21 16:10 - 2023-04-23 20:52 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2883437007-3712616849-1720056259-1001 2023-11-21 16:10 - 2020-08-25 23:09 - 000002422 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-11-15 13:48 - 2022-10-11 16:26 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-11-15 07:57 - 2019-07-13 19:24 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-11-15 07:51 - 2019-07-13 19:24 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-11-15 07:38 - 2023-04-23 20:28 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-11-09 06:22 - 2023-04-23 20:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard 2023-11-08 14:14 - 2018-08-13 00:55 - 000000000 ____D C:\Program Files\HP ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ======================== Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-12-2023 Exécuté par Moi (07-12-2023 12:59:57) Exécuté depuis C:\Users\Moi\Desktop Microsoft Windows 11 Famille Version 23H2 22631.2792 (X64) (2023-04-23 19:55:10) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2883437007-3712616849-1720056259-500 - Administrator - Disabled) cleva (S-1-5-21-2883437007-3712616849-1720056259-1002 - Limited - Enabled) DefaultAccount (S-1-5-21-2883437007-3712616849-1720056259-503 - Limited - Disabled) Invité (S-1-5-21-2883437007-3712616849-1720056259-501 - Limited - Disabled) Moi (S-1-5-21-2883437007-3712616849-1720056259-1001 - Administrator - Enabled) => C:\Users\Moi WDAGUtilityAccount (S-1-5-21-2883437007-3712616849-1720056259-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Orange Antivirus (Enabled - Up to date) {F4F8BE4F-D893-2EB2-F208-1A2FF1A396CA} AS: Suite de Sécurité Orange (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Orange Pare-feu (Enabled) {CCC33F6A-92FC-2FEA-D957-B31A0F70D1B1} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 23.006.20380 - Adobe Systems Incorporated) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.12.2.0 - Ask.com) <==== ATTENTION Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.2063 - Microsoft Corporation) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 120.1.61.100 - Auteurs de Brave) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) CyberLink LabelPrint 2.5 (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.13602 - CyberLink Corp.) Hidden CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.13602 - CyberLink Corp.) CyberLink Power2Go 13 (HKLM-x32\...\{7BB5FFC9-EC40-47c7-B10A-E0E6A296074D}) (Version: 13.0.0718.0b - CyberLink Corp.) CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.3215 - CyberLink Corp.) Hidden CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.3215 - CyberLink Corp.) CyberLink Power2Go Content Pack Essential (HKLM-x32\...\{016482D4-C6D4-4fdc-AA5B-D4BABDAB5CD5}) (Version: 13.0.0410.0 - CyberLink Corp.) CyberLink Power2Go Content Pack Premium (HKLM-x32\...\{B1EDB84E-9ADD-4dd8-AC60-8E42D4D7DD65}) (Version: 13.0.0410.1 - CyberLink Corp.) CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.1.9529.0 - CyberLink Corp.) Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.200 - Google LLC) HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.) HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM\...\{16311D0B-D57C-46F8-AE64-9D4D44227271}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{4C246A91-6BAE-450E-BDEA-70D01663DF43}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{78525DEA-1E62-429B-9CA4-A78F899A9F29}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{B2CFD444-5088-4ECC-A1F1-28620C082C36}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{3D00C669-D447-4A04-AFDA-25E9E76E7873}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{59649835-21FD-4523-9AB0-9E67ED77F0CA}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.) HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.) HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.) HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1511 - HP) Hidden HP Registration Service (HKLM-x32\...\{4E097B06-83A0-4CDD-A9DB-22F0744FE16A}) (Version: 1.0.0.43 - HP Inc.) Hidden HP Support Solutions Framework (HKLM-x32\...\{31FB777B-6676-45D0-AC28-13D3B40A7026}) (Version: 12.17.27.5 - HP Inc.) HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.) Intel(R) Chipset Device Software (HKLM\...\{C844CC39-BC28-46CA-8239-3F37D8FE2A59}) (Version: 10.1.17541.8066 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1808.12.0.1102 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{B4F59074-915E-4DFE-BFD6-1B415B37AE2F}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{ED204DD8-2982-4B22-B077-0F70024D5FEB}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{4B1DEC5C-ED0A-4DD1-ADB2-FD1117FF94D7}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 24.20.100.6025 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{FDA51260-818D-4F38-B39B-FD808ED54E5E}) (Version: 30.100.1727.1 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.48.197.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden Jeux WildTangent (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.1.1.46 - WildTangent) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.97 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.97 - Microsoft Corporation) Microsoft Office Access MUI (French) 2010 (HKLM\...\{90140000-0015-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (French) 2010 (HKLM\...\{90140000-0016-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Famille et Étudiant 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Office 32-bit Components 2010 (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (French) 2010 (HKLM\...\{90140000-00A1-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (French) 2010 (HKLM\...\{90140000-001A-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (French) 2010 (HKLM\...\{90140000-0018-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Arabic) 2010 (HKLM\...\{90140000-001F-0401-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Dutch) 2010 (HKLM\...\{90140000-001F-0413-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2010 (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (French) 2010 (HKLM\...\{90140000-002C-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (French) 2010 (HKLM\...\{90140000-0019-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 32-bit MUI (French) 2010 (HKLM\...\{90140000-0043-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (French) 2010 (HKLM\...\{90140000-006E-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Single Image 2010 (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (French) 2010 (HKLM\...\{90140000-001B-040C-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft OneDrive (HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\OneDriveSetup.exe) (Version: 23.226.1031.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{9F513024-FFAD-4466-8CF0-5348389196B8}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{C521A8D8-511F-43DF-B789-7DD0B3F7363B}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506 (HKLM\...\{B0B194F8-E0CE-33FE-AA11-636428A4B73D}) (Version: 14.0.23506 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506 (HKLM\...\{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}) (Version: 14.0.23506 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506 (HKLM-x32\...\{1045AB6F-6151-3634-8C2C-EE308AA1A6A7}) (Version: 14.0.23506 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506 (HKLM-x32\...\{65AD78AD-D23D-3A1E-9305-3AE65CD522C2}) (Version: 14.0.23506 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.10000.1.0 - Nero AG) Orange Agent (HKLM\...\Orange Agent) (Version: 27.0.1.259 - Orange) PhotoFiltre 7 (HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\PhotoFiltre 7) (Version: - ) REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.88 - REALTEK Semiconductor Corp.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.31239 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.108 - REALTEK Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Roblox Player for Moi (HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for Moi (HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\roblox-studio) (Version: - Roblox Corporation) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0401-1000-0000000FF1CE}_Office14.SingleImage_{95D2BA54-BC12-44A2-8DDA-A79449EC8BAA}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.SingleImage_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0413-1000-0000000FF1CE}_Office14.SingleImage_{C281A20E-A7DE-4950-8656-13E31F2DF194}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.SingleImage_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-040C-1000-0000000FF1CE}_Office14.SingleImage_{383712B7-1113-46EC-9BE4-01DAF8E8BB02}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-040C-1000-0000000FF1CE}_Office14.SingleImage_{CEE5B747-2AA9-43A5-A069-34A7E81E588F}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-040C-1000-0000000FF1CE}_Office14.SingleImage_{8AAFBABE-DDD8-4815-A567-FEBFB72E9E70}) (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-040C-1000-0000000FF1CE}_Office14.SingleImage_{E23A2A78-D3DC-4E12-A0A4-1568477DF429}) (Version: - Microsoft) Hidden SketchUp 2016 (HKLM\...\{4A8F2944-0D02-440C-809C-D2B17C3E6623}) (Version: 16.1.1449 - Trimble Navigation Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Suite de Sécurité Orange (HKLM\...\Orange) (Version: 26.0.14.64 - Orange) Telegram Desktop (HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.12.2 - Telegram FZ-LLC) Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN) Vulkan Run Time Libraries 1.1.70.1 (HKLM\...\VulkanRT1.1.70.1) (Version: 1.1.70.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.1.70.1 (HKLM\...\VulkanRT1.1.70.1-2) (Version: 1.1.70.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.1.70.1 (HKLM\...\VulkanRT1.1.70.1-3) (Version: 1.1.70.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.1.70.1 (HKLM\...\VulkanRT1.1.70.1-4) (Version: 1.1.70.1 - LunarG, Inc.) Hidden WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 5.0.0.331 - WildTangent) Hidden WildTangent ShortcutProvider (HKLM-x32\...\{80831F60-19D7-43B3-A60C-5CAF8C478DF6}) (Version: 1.0.0.59 - WildTangent) Hidden WinRAR 6.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) Packages: ========= Adobe Acrobat Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC [2023-11-15] () Bitdefender CL Contextual Menu -> C:\Program Files\Orange\Suite de Sécurité Orange [2023-12-07] (Bitdefender) Booking.com: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comBigsavingsonhot_2.0.5.0_x64__mgae2k3ys4ra0 [2023-11-20] (Priceline Partner Network) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_3.8.4.0_x64__kgqvnymyfvs32 [2023-12-01] (king.com) Dropbox - offre promotionnelle -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.21.0_x64__xbfy0k16fey96 [2023-11-28] (Dropbox Inc.) HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.481.0_x86__v10z8vjag6ke6 [2020-04-30] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.31.22.0_x64__v10z8vjag6ke6 [2023-11-04] (HP Inc.) LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.14.0_x64__w1wdnht996qgy [2023-11-15] (LinkedIn) [Startup Task] McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2023-02-20] (McAfee LLC.) Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad] Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-17] (Microsoft Corp.) Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21027.539.0_x64__8wekyb3d8bbwe [2023-10-31] (Microsoft Corporation) Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16827.20166.0_x86__8wekyb3d8bbwe [2023-10-15] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-12-05] (Microsoft Corporation) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-17] (Netflix, Inc.) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1101.300_x64__8wekyb3d8bbwe [2023-11-15] (Microsoft Corporation) Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.PowerMediaPlayer14forHPConsumerPC_14.2.9528.0_x86__06qsbagp91rvg [2020-04-30] (CYBERLINKCOM CORP) Solitaire Français -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.14.0_x64__kx24dqmazqk8j [2023-11-20] (Random Salad Games LLC) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0 [2023-11-26] (Spotify AB) [Startup Task] WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.84.0_x64__qt5r5pa5dyg8m [2023-02-20] (WildTangent Games) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-12-05] (Microsoft Corporation) Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-19] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2019-07-29] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-19] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2019-07-29] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki127769.inf_amd64_a6ec5bb94919df07\igfxDTCM.dll [2018-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2023-09-18 07:39 - 2023-09-18 07:39 - 000138240 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\f5836eea869011d9f6291cf9b7052643\Interop.IWshRuntimeLibrary.ni.dll 2023-11-15 08:11 - 2023-11-15 08:11 - 000145920 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\a319a31709ed425ced7aa6a7f62f1fd2\RegistrationUtilities.ni.dll 2023-11-15 08:12 - 2023-11-15 08:12 - 000134656 _____ (hardcodet.net) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\b62c550bf5ff08c3ebfa16aefbe31551\Hardcodet.Wpf.TaskbarNotification.ni.dll 2023-11-15 08:12 - 2023-11-15 08:12 - 001701376 _____ (Mark Heath & Contributors) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\b20f32663a55670daaf165b00b0e05ef\NAudio.ni.dll 2023-11-15 08:12 - 2023-11-15 08:12 - 003062272 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\2b13620e3b6fa4833a45d281ead8ccbd\Newtonsoft.Json.ni.dll 2023-11-15 08:10 - 2023-11-15 08:10 - 002305536 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\49b843905f767dbdad2df99b5d6e68f3\Newtonsoft.Json.ni.dll 2023-11-15 08:12 - 2023-11-15 08:12 - 000793088 _____ (The Apache Software Foundation) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\e9703f61f061c2222a3858c5f875b8e5\log4net.ni.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0] AlternateDataStreams: C:\Users\Moi\Desktop\FRST64.exe:BDU [0] AlternateDataStreams: C:\Users\Moi\Downloads\BraveBrowserSetup-BRV010.exe:BDU [0] AlternateDataStreams: C:\Users\Moi\Downloads\Windows11InstallationAssistant.exe:BDU [0] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.search.ask.com/?l=dis&o=101912 HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE SearchScopes: HKU\S-1-5-21-2883437007-3712616849-1720056259-1001 -> {87BBD812-F6E5-48A6-9236-D888896B2D26} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=101909&src=kw&q={searchTerms}&locale=fr_US&apn_ptnrs=^EU&apn_dtid=^YYYYYY^YY^US&apn_uid=9A001F73-28E4-45FD-A896-A349327FF23F&apn_sauid=8A4A1CF4-08BE-4152-925D-BFB4A3922188 BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2023-10-30] (HP Inc. -> HP Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2023-10-30] (HP Inc. -> HP Inc.) Toolbar: HKLM-x32 - Pas de nom - {D4027C7F-154A-4066-A1AD-4243D8127440} - Pas de fichier ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-04-12 00:38 - 2023-10-10 16:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Moi\Pictures\Camera Roll\Sans titre 1.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8" HKLM\...\StartupApproved\Run32: => "CLVirtualDrive" HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G13" HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\StartupApproved\Run: => "Power2GoExpress8" HKU\S-1-5-21-2883437007-3712616849-1720056259-1001\...\StartupApproved\Run: => "Power2GoExpress13" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{B0FA1B0A-EA48-4C2D-9E62-3CB4E74735F0}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [{AA148408-BB38-4F93-B4D9-0F525C312BCB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [{6362A629-087B-4E57-89F3-B1280A16553F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{1D0899D4-63B2-4118-9160-72D8A97ED23C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0DF68B2F-AB24-42D3-A1C9-EFC1E2DDBAC9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{01C75A8B-6180-4BB2-9043-69338ABBF430}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5616E132-22B3-47D2-B404-1D8201550A65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{68E9D052-DB24-42D3-BA07-B7F59265BF7F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{8A4F09CE-9FA0-4651-B94D-EEB7F0228F6A}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe => Pas de fichier FirewallRules: [{FB92F273-541E-4517-A4E8-01520828A791}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe => Pas de fichier FirewallRules: [{1CDD2C57-97C3-445B-88A8-C4070B3D201B}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll => Pas de fichier FirewallRules: [{56F70EEC-B6E0-42D2-B5EE-100B2CE4718F}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll => Pas de fichier FirewallRules: [{B6293E76-15C4-4C89-BE99-8E9FEBA0BF31}] => (Allow) C:\Users\Moi\Pictures\Saved Pictures\Nouveau dossier\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{738CB1B8-2FDB-474A-B50B-0A40BC74DAA8}] => (Allow) C:\Users\Moi\Pictures\Saved Pictures\Nouveau dossier\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{E415D427-12ED-47EA-95C7-CE486739A35B}] => (Allow) C:\Users\Moi\Pictures\Saved Pictures\Nouveau dossier\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{33E02C78-A7A0-4391-8A78-01067A33446F}] => (Allow) C:\Users\Moi\Pictures\Saved Pictures\Nouveau dossier\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{1300184E-502B-4D55-87E1-597937EE82D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16827.20166.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5A647F73-DDBB-4F05-85CA-4E5C8DF43F0B}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8DE0CF95-426D-4A70-9290-BDDA301A7000}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F4A4CDCE-7D61-4B7B-86C4-60C5E6B76DA4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{0E5E3401-3BF3-4831-9665-B7CBE35F8F49}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{68758F8D-620C-448A-9598-4AB0822BB891}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{22E3EE08-1AAE-4CDE-B8D9-BF6E6FCD0C92}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{4ABC13F6-E5C3-43FA-B5DE-5F6AD5ECD9F6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{0410D5FA-F096-47B0-B5E3-D08641CD2281}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{0670DA1F-7133-4846-A266-738DCCFDFDB6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{4E02B1BE-0438-4C03-9612-EA6B8D5087E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A7B0D65F-CA22-4414-8340-22DB6F3BF364}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{603810AC-4D27-46E6-8514-BED351EEFA58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.225.1011.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{6B8F61F6-C5EE-4189-87C3-1D5A26B019B2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{99556AAB-2DA6-45AA-97EC-E4A6CF8A3195}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{071C68E0-6C88-4E5E-88F2-51B7EBAB585B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{032EB679-55EE-4ED7-BCB3-2B7A0FAE207B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C896A8F9-874D-441F-AE2B-1E70D2334989}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2226EB82-9BB3-4A98-85D7-48F5551824B3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B0C46128-B633-4859-B900-0E3964C31A7F}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) ==================== Points de restauration ========================= 01-12-2023 23:19:30 Windows Update 01-12-2023 23:19:35 Windows Update 05-12-2023 07:31:09 Windows Update 05-12-2023 07:31:59 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (12/07/2023 09:10:48 AM) (Source: Application Hang) (EventID: 1002) (User: AUTORITE NT) Description: Le programme SystemSettings.exe version 10.0.22621.2792 a cessé d'interagir avec Windows et a été fermé. Pour savoir si vous disposez de plus d'informations sur le problème, consultez l'historique des problèmes dans le panneau de configuration Sécurité et maintenance. Error: (12/07/2023 08:01:05 AM) (Source: Application Hang) (EventID: 1002) (User: AUTORITE NT) Description: Le programme SystemSettings.exe version 10.0.22621.2792 a cessé d'interagir avec Windows et a été fermé. Pour savoir si vous disposez de plus d'informations sur le problème, consultez l'historique des problèmes dans le panneau de configuration Sécurité et maintenance. Error: (12/07/2023 07:27:29 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-PVQ11TU) Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.22621.2792, horodatage : 0xfbda1990 Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000008ebef ID du processus défaillant : 0x0x2d74 Heure de début de l’application défaillante : 0x0x1da28d63863254b Chemin d’accès de l’application défaillante : C:\WINDOWS\Explorer.EXE Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : a660b614-a449-4783-869a-93d66f82493b Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/06/2023 11:20:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 32000 Error: (12/06/2023 11:20:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 32000 Error: (12/06/2023 11:20:58 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/06/2023 11:20:42 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15657 Error: (12/06/2023 11:20:42 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15657 Erreurs système: ============= Error: (12/07/2023 07:35:52 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 07:33:39 le ‎07/‎12/‎2023 n’était pas prévu. Error: (12/07/2023 07:35:01 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (12/07/2023 07:32:09 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-PVQ11TU) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/05/2023 02:08:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-PVQ11TU) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/05/2023 01:56:22 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Le service Service Sécurité Windows ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (12/05/2023 07:34:03 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9WZDNCRFHVQM-MICROSOFT.WINDOWSCOMMUNICATIONSAPPS. Error: (12/04/2023 06:38:02 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-PVQ11TU) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/04/2023 12:15:25 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-PVQ11TU) Description: Le serveur WildTangentGames.63435CFB65F55_2.0.84.0_x64__qt5r5pa5dyg8m!WwwWildtangentCom.AppX86ekntxrj5wzm2q8ak8srv0hfces4w56.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. CodeIntegrity: =============== Date: 2023-12-07 10:40:45 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Orange\Suite de Sécurité Orange\bdamsi\266803722563838203\antimalware_provider64.dll that did not meet the Windows signing level requirements.� Date: 2023-12-07 09:08:29 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Orange\Suite de Sécurité Orange\bdamsi\266803722563838203\antimalware_provider64.dll that did not meet the Windows signing level requirements.� ==================== Infos Mémoire =========================== BIOS: AMI F.48 07/27/2022 Carte mère: HP 843B Processeur: Intel(R) Core(TM) i3-8100 CPU @ 3.60GHz Pourcentage de mémoire utilisée: 86% Mémoire physique - RAM - totale: 3923.46 MB Mémoire physique - RAM - disponible: 527.57 MB Mémoire virtuelle totale: 7699.82 MB Mémoire virtuelle disponible: 2460.52 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:912.78 GB) (Free:823.93 GB) (Model: ST1000DM003-1SB102) NTFS Drive d: (RECOVERY) (Fixed) (Total:17.5 GB) (Free:2.02 GB) (Model: ST1000DM003-1SB102) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] \\?\Volume{2924b862-26fe-4d75-ac85-634d512629c8}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.18 GB) NTFS \\?\Volume{14a499f0-77c2-4750-82c2-70e2368db75b}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D) Partition: GPT. ==================== Fin de Addition.txt =======================