Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
Exécuté par marie (administrateur) sur DESKTOP-CODB0DH (Acer Aspire XC-885) (25-08-2022 21:34:45)
Exécuté depuis C:\Users\marie\Desktop
Profils chargés: marie
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.54\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.63\msedgewebview2.exe <6>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <29>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteamsupdate.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\marie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-08-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833824 2019-01-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.63\Installer\setup.exe [3286968 2022-08-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Uninstall 22.151.0717.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\22.151.0717.0001" (Pas de fichier)
HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP ENVY 4500 series.lnk [2022-08-20]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP ENVY 4500 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP ENVY 4500 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN5192512S05X4;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1AF416CE-B7C4-4944-AD52-707335EC8D7A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {263F665C-B047-4F65-8764-5F031FFC324B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-07-27] (Acer Incorporated -> )
Task: {2985A0C8-69DA-48FD-9DEA-4031BF951BC6} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {2FF377D4-9C66-40CD-8CF7-9F4C3AB0A90E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-07-27] (Acer Incorporated -> )
Task: {361AA1B1-ACC5-44BA-A8F2-09D9B67775B6} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {4CA3410C-0F67-493F-9E59-1C2A08039E0C} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {57434C33-E275-41CA-A6BA-DB516DCDB975} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5AB5BDC7-FF24-4A39-87F4-5198CDE6ADEA} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-07-27] (Acer Incorporated -> )
Task: {68B9F307-04D0-4B4B-B753-F0CF62B2F054} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [217392 2018-03-23] (Acer Incorporated -> Acer Incorporated)
Task: {6D49EA3B-0099-4B92-8B1D-A5C5D8CE26AF} - System32\Tasks\App Explorer => C:\Users\marie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7887392 2022-04-23] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {71765D37-0E85-4422-988F-06489DF0DF4B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {71C75BEF-FFB2-45DE-B12E-D9F2A96D7F08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {74644B88-1D98-4094-AB36-B0092932D2B8} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {83971A4F-5298-4973-A950-1CB366E4C7FA} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-20] (Microsoft Windows -> Microsoft Corporation)
Task: {88FC54ED-67A2-445E-95CD-E17A0709168F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9215E84A-FBD4-448B-BD45-EEC6A9934A4F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1BF3935-E776-40CF-905F-B94B50177F3F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [965064 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B06700FD-433F-41C2-9F79-C32672DF54F7} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-20] (Microsoft Windows -> Microsoft Corporation)
Task: {B44F6FA8-FA56-4658-B987-BEBDC3E1E0EA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAC7F4BF-8EF8-4A43-B27A-0598FC376428} - System32\Tasks\Norton Security Scan for marie => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\Nss.exe [848912 2019-02-15] (Symantec Corporation -> Symantec Corporation)
Task: {BFB4CFD5-1BC9-48C1-BB27-F8D2E58A6647} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D51ABECE-D6C9-4BF1-A91C-1DD0D1EC649F} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-03-23] (Acer Incorporated -> Acer Incorporated)
Task: {E6E47698-A4B8-4521-9AAD-ECF0959DF70F} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {E845AE83-02F2-455F-8684-7123F70DDFFE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{23303130-ac27-4bd6-937d-4e8f7efdedc6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{420bc726-0d6d-40bf-8e0d-ab779dd00ba1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7dd47722-0763-4014-9e3b-387c8785e9b5}: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{c1d2909c-6ab9-4b04-8691-4033f379a162}: [DhcpNameServer] 172.20.10.1
Edge:
=======
DownloadDir: C:\Users\marie\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\marie\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-25]
Edge DownloadDir: Default -> C:\Users\marie\Downloads
FireFox:
========
FF DefaultProfile: xyjsdxo4.default
FF ProfilePath: C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default [2022-07-22]
FF Homepage: Mozilla\Firefox\Profiles\xyjsdxo4.default -> hxxps://www.google.ch/?gws_rd=ssl
FF Extension: (Amazon Assistant) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default\Extensions\abb-acer@amazon.com.xpi [2021-10-24] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2022-07-22]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2022-06-08] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2022-06-08]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-06-08] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-07-27] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [303408 2018-03-23] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-03-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-03-15] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 MpKsl1510a20a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1160CF48-7993-4F24-80CB-41424C668F91}\MpKslDrv.sys [141576 2022-08-25] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-10] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-25 21:34 - 2022-08-25 21:35 - 000022551 _____ C:\Users\marie\Desktop\FRST.txt
2022-08-25 21:34 - 2022-08-25 21:35 - 000000000 ____D C:\FRST
2022-08-25 21:32 - 2022-08-25 21:32 - 002371072 _____ (Farbar) C:\Users\marie\Desktop\FRST64.exe
2022-08-25 21:32 - 2022-08-25 21:32 - 000000000 _____ C:\Users\marie\Downloads\Non confirmé 672903.crdownload
2022-08-20 17:06 - 2022-08-20 17:06 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-20 17:05 - 2022-08-20 17:05 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-20 16:58 - 2022-08-20 16:58 - 000000000 ___HD C:\$WinREAgent
2022-07-31 09:41 - 2022-07-31 09:41 - 000000000 ____D C:\Users\marie\AppData\Local\CEF
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-25 21:34 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-08-25 21:34 - 2019-03-08 05:58 - 000000000 ____D C:\Users\marie\AppData\Local\Host App Service
2022-08-25 21:32 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-08-25 00:39 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-25 00:39 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-24 20:21 - 2020-07-30 22:42 - 000000000 ____D C:\Users\marie\AppData\Local\D3DSCache
2022-08-24 19:04 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-24 18:59 - 2020-07-30 22:33 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-24 18:59 - 2020-07-30 22:33 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-24 18:54 - 2022-03-15 11:37 - 002702546 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-24 18:54 - 2022-03-15 09:56 - 000745774 _____ C:\WINDOWS\system32\perfh007.dat
2022-08-24 18:54 - 2022-03-15 09:56 - 000155996 _____ C:\WINDOWS\system32\perfc007.dat
2022-08-24 18:54 - 2021-06-05 20:14 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-24 18:54 - 2021-06-05 20:14 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-24 18:53 - 2022-03-15 11:40 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-24 18:53 - 2022-03-15 11:40 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-24 18:51 - 2022-03-15 11:40 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2987563127-3994488005-3902136144-1001
2022-08-24 18:51 - 2022-03-15 11:40 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2987563127-3994488005-3902136144-1001
2022-08-24 18:51 - 2020-08-26 17:57 - 000002425 _____ C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-24 18:51 - 2019-03-08 06:03 - 000000000 ___RD C:\Users\marie\OneDrive
2022-08-24 18:49 - 2022-03-15 11:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-24 18:49 - 2020-08-26 17:56 - 000012288 ___SH C:\DumpStack.log.tmp
2022-08-24 18:49 - 2019-03-08 06:10 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-08-24 18:49 - 2019-03-08 06:01 - 000000000 __SHD C:\Users\marie\IntelGraphicsProfiles
2022-08-20 22:42 - 2021-06-05 14:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-08-20 22:41 - 2022-06-08 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-08-20 22:41 - 2022-03-15 11:34 - 000471384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-20 22:41 - 2022-03-15 11:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-20 22:41 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-20 22:41 - 2018-12-19 14:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-20 17:12 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-20 17:11 - 2019-04-03 12:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-20 17:10 - 2019-04-03 12:40 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-20 17:05 - 2022-03-15 11:35 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-20 16:42 - 2019-04-27 13:53 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-03 15:53 - 2019-03-08 06:02 - 000000000 ____D C:\Users\marie\AppData\Local\PlaceholderTileLogoFolder
2022-07-31 08:52 - 2019-03-08 06:16 - 000000000 ____D C:\ProgramData\Packages
2022-07-31 08:52 - 2019-03-08 06:01 - 000000000 ____D C:\Users\marie\AppData\Local\Packages
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par marie (administrateur) sur DESKTOP-CODB0DH (Acer Aspire XC-885) (25-08-2022 21:34:45)
Exécuté depuis C:\Users\marie\Desktop
Profils chargés: marie
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.54\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.63\msedgewebview2.exe <6>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <29>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3156b3035fd88b4d\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.4.101.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteamsupdate.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\marie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-08-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833824 2019-01-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.63\Installer\setup.exe [3286968 2022-08-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2987563127-3994488005-3902136144-1001\...\RunOnce: [Uninstall 22.151.0717.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\22.151.0717.0001" (Pas de fichier)
HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP ENVY 4500 series.lnk [2022-08-20]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP ENVY 4500 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP ENVY 4500 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN5192512S05X4;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1AF416CE-B7C4-4944-AD52-707335EC8D7A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {263F665C-B047-4F65-8764-5F031FFC324B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-07-27] (Acer Incorporated -> )
Task: {2985A0C8-69DA-48FD-9DEA-4031BF951BC6} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {2FF377D4-9C66-40CD-8CF7-9F4C3AB0A90E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-07-27] (Acer Incorporated -> )
Task: {361AA1B1-ACC5-44BA-A8F2-09D9B67775B6} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {4CA3410C-0F67-493F-9E59-1C2A08039E0C} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {57434C33-E275-41CA-A6BA-DB516DCDB975} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5AB5BDC7-FF24-4A39-87F4-5198CDE6ADEA} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-07-27] (Acer Incorporated -> )
Task: {68B9F307-04D0-4B4B-B753-F0CF62B2F054} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [217392 2018-03-23] (Acer Incorporated -> Acer Incorporated)
Task: {6D49EA3B-0099-4B92-8B1D-A5C5D8CE26AF} - System32\Tasks\App Explorer => C:\Users\marie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7887392 2022-04-23] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {71765D37-0E85-4422-988F-06489DF0DF4B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {71C75BEF-FFB2-45DE-B12E-D9F2A96D7F08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {74644B88-1D98-4094-AB36-B0092932D2B8} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {83971A4F-5298-4973-A950-1CB366E4C7FA} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-20] (Microsoft Windows -> Microsoft Corporation)
Task: {88FC54ED-67A2-445E-95CD-E17A0709168F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9215E84A-FBD4-448B-BD45-EEC6A9934A4F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1BF3935-E776-40CF-905F-B94B50177F3F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [965064 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B06700FD-433F-41C2-9F79-C32672DF54F7} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-08-20] (Microsoft Windows -> Microsoft Corporation)
Task: {B44F6FA8-FA56-4658-B987-BEBDC3E1E0EA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAC7F4BF-8EF8-4A43-B27A-0598FC376428} - System32\Tasks\Norton Security Scan for marie => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\Nss.exe [848912 2019-02-15] (Symantec Corporation -> Symantec Corporation)
Task: {BFB4CFD5-1BC9-48C1-BB27-F8D2E58A6647} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D51ABECE-D6C9-4BF1-A91C-1DD0D1EC649F} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-03-23] (Acer Incorporated -> Acer Incorporated)
Task: {E6E47698-A4B8-4521-9AAD-ECF0959DF70F} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {E845AE83-02F2-455F-8684-7123F70DDFFE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{23303130-ac27-4bd6-937d-4e8f7efdedc6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{420bc726-0d6d-40bf-8e0d-ab779dd00ba1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7dd47722-0763-4014-9e3b-387c8785e9b5}: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{c1d2909c-6ab9-4b04-8691-4033f379a162}: [DhcpNameServer] 172.20.10.1
Edge:
=======
DownloadDir: C:\Users\marie\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\marie\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-25]
Edge DownloadDir: Default -> C:\Users\marie\Downloads
FireFox:
========
FF DefaultProfile: xyjsdxo4.default
FF ProfilePath: C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default [2022-07-22]
FF Homepage: Mozilla\Firefox\Profiles\xyjsdxo4.default -> hxxps://www.google.ch/?gws_rd=ssl
FF Extension: (Amazon Assistant) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default\Extensions\abb-acer@amazon.com.xpi [2021-10-24] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\xyjsdxo4.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2022-07-22]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2022-06-08] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2022-06-08]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-06-08] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-07-27] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [303408 2018-03-23] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-03-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-03-15] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 MpKsl1510a20a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1160CF48-7993-4F24-80CB-41424C668F91}\MpKslDrv.sys [141576 2022-08-25] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-10] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-25 21:34 - 2022-08-25 21:35 - 000022551 _____ C:\Users\marie\Desktop\FRST.txt
2022-08-25 21:34 - 2022-08-25 21:35 - 000000000 ____D C:\FRST
2022-08-25 21:32 - 2022-08-25 21:32 - 002371072 _____ (Farbar) C:\Users\marie\Desktop\FRST64.exe
2022-08-25 21:32 - 2022-08-25 21:32 - 000000000 _____ C:\Users\marie\Downloads\Non confirmé 672903.crdownload
2022-08-20 17:06 - 2022-08-20 17:06 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-20 17:06 - 2022-08-20 17:06 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-20 17:05 - 2022-08-20 17:05 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-20 16:58 - 2022-08-20 16:58 - 000000000 ___HD C:\$WinREAgent
2022-07-31 09:41 - 2022-07-31 09:41 - 000000000 ____D C:\Users\marie\AppData\Local\CEF
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-25 21:34 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-08-25 21:34 - 2019-03-08 05:58 - 000000000 ____D C:\Users\marie\AppData\Local\Host App Service
2022-08-25 21:32 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-08-25 00:39 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-25 00:39 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-24 20:21 - 2020-07-30 22:42 - 000000000 ____D C:\Users\marie\AppData\Local\D3DSCache
2022-08-24 19:04 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-24 18:59 - 2020-07-30 22:33 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-24 18:59 - 2020-07-30 22:33 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-24 18:54 - 2022-03-15 11:37 - 002702546 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-24 18:54 - 2022-03-15 09:56 - 000745774 _____ C:\WINDOWS\system32\perfh007.dat
2022-08-24 18:54 - 2022-03-15 09:56 - 000155996 _____ C:\WINDOWS\system32\perfc007.dat
2022-08-24 18:54 - 2021-06-05 20:14 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-24 18:54 - 2021-06-05 20:14 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-24 18:53 - 2022-03-15 11:40 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-24 18:53 - 2022-03-15 11:40 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-24 18:51 - 2022-03-15 11:40 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2987563127-3994488005-3902136144-1001
2022-08-24 18:51 - 2022-03-15 11:40 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2987563127-3994488005-3902136144-1001
2022-08-24 18:51 - 2020-08-26 17:57 - 000002425 _____ C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-24 18:51 - 2019-03-08 06:03 - 000000000 ___RD C:\Users\marie\OneDrive
2022-08-24 18:49 - 2022-03-15 11:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-24 18:49 - 2020-08-26 17:56 - 000012288 ___SH C:\DumpStack.log.tmp
2022-08-24 18:49 - 2019-03-08 06:10 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-08-24 18:49 - 2019-03-08 06:01 - 000000000 __SHD C:\Users\marie\IntelGraphicsProfiles
2022-08-20 22:42 - 2021-06-05 14:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-08-20 22:41 - 2022-06-08 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-08-20 22:41 - 2022-03-15 11:34 - 000471384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-20 22:41 - 2022-03-15 11:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-20 22:41 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-20 22:41 - 2018-12-19 14:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-20 22:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-20 17:12 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-20 17:11 - 2019-04-03 12:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-20 17:10 - 2019-04-03 12:40 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-20 17:05 - 2022-03-15 11:35 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-20 16:42 - 2019-04-27 13:53 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-03 15:53 - 2019-03-08 06:02 - 000000000 ____D C:\Users\marie\AppData\Local\PlaceholderTileLogoFolder
2022-07-31 08:52 - 2019-03-08 06:16 - 000000000 ____D C:\ProgramData\Packages
2022-07-31 08:52 - 2019-03-08 06:01 - 000000000 ____D C:\Users\marie\AppData\Local\Packages
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================