Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Jacqueline (administrateur) sur DESKTOP-LR77UV6 (HP 510-p103nf) (12-09-2022 19:41:33)
Exécuté depuis C:\Users\Jacqueline\Desktop
Profils chargés: Jacqueline
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\ki131064.inf_amd64_5d13f27a9a9843fa\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131064.inf_amd64_5d13f27a9a9843fa\igfxEM.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0325303.inf_amd64_4e99ed79cccac08d\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131064.inf_amd64_5d13f27a9a9843fa\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131064.inf_amd64_5d13f27a9a9843fa\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131064.inf_amd64_5d13f27a9a9843fa\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279544 2018-09-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3295012386-2239820569-170819973-1001\...\Run: [Google Update] => C:\Users\Jacqueline\AppData\Local\Google\Update\1.3.36.152\GoogleUpdateCore.exe [230360 2022-08-30] (Google LLC -> Google LLC)
HKU\S-1-5-21-3295012386-2239820569-170819973-1001\...\MountPoints2: {5b95460c-18e1-11ed-b9d2-30e37a4bab03} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3295012386-2239820569-170819973-1001\...\MountPoints2: {5bbd3a6e-f0a3-11eb-b9b6-30e37a4baaff} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3295012386-2239820569-170819973-1001\...\MountPoints2: {ccc4ad11-3bf8-11ec-b9be-ec8eb5da7a96} - "F:\AutoRun.exe"
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\WINDOWS\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1615C8F8-585C-44E1-9EAE-FC7EC5BBEE17} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {2AD0A4D2-3BB6-4D7E-A307-521169C22BB0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {39BB314E-1419-49F5-90AB-79C92F466CA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {48B328DD-9373-4A22-A41B-4F373DDAB9A2} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {54F9BB43-C3DB-4185-A442-3368DE73DD52} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3295012386-2239820569-170819973-1001UA => C:\Users\Jacqueline\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2017-05-02] (Google Inc -> Google Inc.)
Task: {60A0CCBB-21E2-4CAC-8849-E7639C6D522C} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3295012386-2239820569-170819973-1001 => C:\Users\Jacqueline\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {78F4A342-4CE4-4F6D-BFB4-460EFD00126A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {7DE6ABDC-CFA0-44BF-B9E4-14C5FCB8C57D} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> )
Task: {7E43CC68-7EA7-4DD7-857F-F888EF0C8E93} - System32\Tasks\HPJumpStartProvider => C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartProvider.exe (Pas de fichier)
Task: {7F93FF6D-6B26-4F73-A758-CCB25563E3D8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9EF4985A-202B-419E-BF49-05CF47C35E3C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279544 2018-09-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {AED285D3-4B13-4E48-B602-39A5C7B117E4} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2017-10-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BE8C904C-3401-43D0-A297-94A43F4A43E4} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]
Task: {CB583224-DFB8-4918-8929-28439C9A6B59} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {D6C692A8-EEE7-4098-BA04-B792B5EE14F0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3295012386-2239820569-170819973-1001Core => C:\Users\Jacqueline\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2017-05-02] (Google Inc -> Google Inc.)
Task: {DB41C702-1B81-49B9-A744-E88783D5CB52} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {E46F0755-4819-4DDC-A74E-942189763522} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E7A1DEC3-2B5D-477A-AF81-CB811456345B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ED509530-F532-475D-8D8D-620A95BF59B5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1C2A902-0A1F-424C-8A3E-1583ED4973F8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{1cebe8ec-0001-483e-808e-fc54313376cf}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jacqueline\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-12]

FireFox:
========
FF DefaultProfile: 07px0fjt.default
FF ProfilePath: C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\07px0fjt.default [2022-09-12]
FF Homepage: Mozilla\Firefox\Profiles\07px0fjt.default -> google.fr
FF Extension: (uBlock Origin) - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\07px0fjt.default\Extensions\uBlock0@raymondhill.net.xpi [2022-09-06]
FF SearchPlugin: C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\07px0fjt.default\searchplugins\yahoo! powered search.xml [2017-05-02]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-08] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default [2022-05-23]
CHR Notifications: Default -> hxxps://a.notif.cc; hxxps://calendar.google.com; hxxps://www.dealabs.com; hxxps://www.facebook.com; hxxps://www.king-jouet.com; hxxps://www.lemondeducampingcar.fr; hxxps://www.marmiton.org; hxxps://www.santediscount.com; hxxps://www.stores-discount.com
CHR Extension: (Slides) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-14]
CHR Extension: (Docs) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-14]
CHR Extension: (Google Drive) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-14]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-23]
CHR Extension: (Sheets) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-23]
CHR Extension: (Piggy - Codes Promo Automatiques et du cashback!) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2021-07-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-20]
CHR Extension: (Gmail) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-08-17]
CHR Profile: C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-07-14]
CHR Extension: (Slides) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-17]
CHR Extension: (Docs) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-17]
CHR Extension: (Google Drive) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-17]
CHR Extension: (YouTube) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-06-11]
CHR Extension: (Sheets) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-17]
CHR Extension: (Extension Trusted Shops pour Google Chrome) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2019-05-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-17]
CHR Extension: (Gmail) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-21]
CHR Profile: C:\Users\Jacqueline\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-17]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-04-27] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-24] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2016-03-23] (CyberLink Corp. -> CyberLink)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13271336 2021-09-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2016-02-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKsld27fc767; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{96C23016-5B14-4002-A759-7EFD29F1ADED}\MpKslDrv.sys [228600 2022-09-12] (Microsoft Windows -> Microsoft Corporation)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2019-05-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-12 19:41 - 2022-09-12 19:43 - 000023756 _____ C:\Users\Jacqueline\Desktop\FRST.txt
2022-09-12 18:54 - 2022-09-12 19:42 - 000000000 ____D C:\FRST
2022-09-12 18:18 - 2022-09-12 18:18 - 000001226 _____ C:\Users\Jacqueline\Desktop\readerdc64_fr_ha_acr_install.exe - Raccourci.lnk
2022-09-12 18:12 - 2022-09-12 18:12 - 002371072 _____ (Farbar) C:\Users\Jacqueline\Desktop\FRST64.exe
2022-09-10 12:11 - 2022-09-10 12:11 - 000000000 ____D C:\Users\Jacqueline\AppData\Roaming\com.adobe.dunamis
2022-09-08 13:44 - 2022-09-08 13:44 - 000117764 ____R C:\Users\Jacqueline\Downloads\FAC_FAC157-22020292.pdf
2022-09-07 18:01 - 2022-09-07 18:01 - 000021942 ____R C:\Users\Jacqueline\Downloads\Facture_PDF_AF212501940230.pdf
2022-09-07 17:09 - 2022-09-07 17:09 - 000157767 ____R C:\Users\Jacqueline\Downloads\Facture_EDF_10153948909-1.pdf
2022-09-07 16:34 - 2022-09-07 16:34 - 000071557 ____R C:\Users\Jacqueline\Downloads\GAECMAL_FA2303679FACTURECAVEDEGUEMENE.pdf
2022-09-07 16:07 - 2022-09-07 16:07 - 000168260 ____R C:\Users\Jacqueline\Downloads\229_20220905_OF_01_10780229_TTTF110AA.pdf
2022-09-06 21:48 - 2022-09-06 21:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-09-06 11:55 - 2022-09-06 11:55 - 000124383 ____R C:\Users\Jacqueline\Downloads\RIB CRCA EARL_20211018_0001(0).pdf
2022-09-06 11:39 - 2022-09-06 11:39 - 000063058 ____R C:\Users\Jacqueline\Downloads\Bilan_lot_elv_12488901.pdf
2022-09-06 11:39 - 2022-09-06 11:39 - 000062940 ____R C:\Users\Jacqueline\Downloads\Bilan_lot_elv_12489001.pdf
2022-09-06 10:19 - 2022-09-06 10:19 - 000546089 ____R C:\Users\Jacqueline\Downloads\Bilan annuel 2019 - GAEC LA BARBERIE-1.pdf
2022-09-06 10:14 - 2022-09-06 10:14 - 000546089 ____R C:\Users\Jacqueline\Downloads\Bilan annuel 2019 - GAEC LA BARBERIE.pdf
2022-09-06 09:52 - 2022-09-06 09:52 - 000063122 ____R C:\Users\Jacqueline\Downloads\Bilan_lot_elv_12567901.pdf
2022-09-06 09:50 - 2022-09-06 09:50 - 000061916 ____R C:\Users\Jacqueline\Downloads\Bilan_lot_elv_12568001.pdf
2022-09-06 09:44 - 2022-09-06 09:44 - 003828781 ____R C:\Users\Jacqueline\Downloads\Contrat de production - EARL la BARBERIE.pdf
2022-09-06 09:42 - 2022-09-06 09:42 - 000671021 ____R C:\Users\Jacqueline\Downloads\Bilan annuel 2021 - EARL la BARBERIE.pdf
2022-09-06 09:40 - 2022-09-06 09:40 - 000304507 ____R C:\Users\Jacqueline\Downloads\FicheElevage_22-06-17_EARL-BARBERIE-(LA)_V044BKK_BAT-B.pdf
2022-09-06 09:37 - 2022-09-06 09:37 - 000304270 ____R C:\Users\Jacqueline\Downloads\FicheElevage_22-06-17_EARL-BARBERIE-(LA)_V044BKJ_BAT-A.pdf
2022-08-30 15:11 - 2022-08-30 15:11 - 000157767 ____R C:\Users\Jacqueline\Downloads\Facture_EDF_10153948909.pdf
2022-08-30 15:10 - 2022-08-30 15:10 - 000168191 ____R C:\Users\Jacqueline\Downloads\229_20220801_OF_01_10780229_TTTF110AA.pdf
2022-08-30 15:04 - 2022-08-30 15:04 - 000134174 ____R C:\Users\Jacqueline\Downloads\229_20220821_OF_01_10780229_TTTF100AA.pdf
2022-08-30 15:00 - 2022-08-30 15:00 - 000158722 ____R C:\Users\Jacqueline\Downloads\Facture_EDF_10155763367.pdf
2022-08-16 10:17 - 2022-08-16 10:29 - 000000000 ____D C:\Users\Jacqueline\Desktop\telephone maman aout 2022
2022-08-15 19:11 - 2022-08-15 19:11 - 000004830 _____ C:\Users\Jacqueline\Documents\lettre portail pilou.odt

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-12 19:44 - 2017-05-02 10:38 - 000000000 ____D C:\Users\Jacqueline\AppData\LocalLow\Mozilla
2022-09-12 19:41 - 2020-10-31 00:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-12 18:40 - 2017-05-02 10:39 - 000000000 ____D C:\Users\Jacqueline\AppData\Local\Adobe
2022-09-12 18:25 - 2022-02-10 17:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-12 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-12 09:52 - 2017-09-27 11:43 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2022-09-12 09:52 - 2017-04-29 17:41 - 000000000 __SHD C:\Users\Jacqueline\IntelGraphicsProfiles
2022-09-10 12:02 - 2020-06-15 08:01 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-10 12:02 - 2020-06-15 08:01 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-10 12:02 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-10 12:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-09 23:57 - 2021-10-28 11:11 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-09 23:57 - 2021-10-28 11:11 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-09 23:57 - 2020-10-31 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-08 22:29 - 2021-09-07 15:16 - 000002212 _____ C:\Users\Jacqueline\Desktop\Isanet.lnk
2022-09-08 22:29 - 2021-02-20 13:26 - 000001341 _____ C:\Users\Jacqueline\Desktop\Recovery Tool for Mozilla Thunderbird.lnk
2022-09-08 22:29 - 2017-09-27 16:22 - 000001027 _____ C:\Users\Jacqueline\Desktop\Yahtzee.lnk
2022-09-08 22:29 - 2017-09-27 13:26 - 000001281 _____ C:\Users\Jacqueline\Desktop\Media Player Classic.lnk
2022-09-07 10:55 - 2018-05-23 18:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-07 10:53 - 2021-10-11 09:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-09-07 10:53 - 2017-05-02 10:38 - 000001235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 08:50 - 2020-10-31 01:09 - 000003860 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3295012386-2239820569-170819973-1001UA
2022-08-30 08:50 - 2020-10-31 01:09 - 000003592 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3295012386-2239820569-170819973-1001Core
2022-08-20 15:44 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-19 11:03 - 2020-10-31 01:09 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-19 11:03 - 2020-10-31 01:09 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================