Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Exécuté par Margot (administrateur) sur LAPTOP-RGSPF4LF (Acer Swift SF113-31) (18-10-2024 17:20:10)
Exécuté depuis C:\Users\ttgg\Desktop\FRST64.exe
Profils chargés: Margot
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxEM.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\ttgg\AppData\Local\Microsoft\OneDrive\24.192.0923.0006\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2401.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18394608 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.46\Installer\setup.exe [6829624 2024-10-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3690589988-2201348878-3316453455-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ttgg\AppData\Local\Microsoft\Teams\Update.exe [2613808 2024-03-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3690589988-2201348878-3316453455-1001\...\Run: [MicrosoftEdgeAutoLaunch_7ACAC7A59D88CC6AA6B689CDC662F2E2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3865656 2024-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [36352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\129.0.6668.103\Installer\chrmstp.exe [2024-10-18] (Google LLC -> Google LLC)
Startup: C:\Users\ttgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-02-18]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A0708CD1-5172-4A2A-8660-1B8FC3049058} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-05-24] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {1DA5C668-A1F5-47C1-9F91-D9A587ED2C0E} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-05-24] (Acer Incorporated -> )
Task: {07EFD624-ECCE-4644-9D21-FE71B4BB804E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-05-24] (Acer Incorporated -> )
Task: {11EEE378-7241-49CB-8DBA-BB79A0681E5B} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-12-14] (Acer Incorporated -> )
Task: {974B7BBE-433D-423B-A688-6541023F9EB6} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-12-13] (Acer Incorporated -> Acer Incorporated)
Task: {7177727B-0FE2-4788-A444-EE2C136FE46F} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-06-07] (Acer Incorporated -> )
Task: {AD42DB44-8F4B-470C-AEAE-7BBC85B67CB4} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {39FF343A-C9ED-4225-8FF5-91DF2DBAA29A} - System32\Tasks\App Explorer => C:\Users\ttgg\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7132056 2018-11-16] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {1A3F1825-6862-47F6-8FB8-177A26F880C7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {CB654FB3-2BD0-4EEE-A918-CFB9CB682306} - System32\Tasks\DashlaneUpgradeCheck => C:\WINDOWS\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {23656004-F185-45FD-97D5-3D7C32A619F9} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{4BD0F167-C4B0-4AE0-A575-DCA922005C21} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {3F2B3139-AFD3-452C-911B-48E11688F736} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [855352 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {7D26CA9A-67CF-45EC-A85A-441CEC8D9FD2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {534CE894-13C1-40BF-89AB-DF6ABD74FA09} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3DB03A0-150E-453D-8C36-E3C14D854E1F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7A882A4-B373-4E17-B2D5-03346FE1ECD5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {93B25BCF-5B40-413A-A8F8-24FE44C2B6C2} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [71368 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F7C5B02-58E5-4F65-9E4A-953B28C46848} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E01E0C3-1E49-4FBF-8BF1-490C23011EE1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {56CD06A6-768F-41B7-8B14-786DFF2E28A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ABA90396-402C-4084-8031-95C55467A35D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3935D57-60B6-47E7-8940-40AA1C8AB0F7} - System32\Tasks\MonitorAcerPortal => C:\ProgramData\acer\Acer Portal\monitorPortal.exe [32472 2017-06-07] (Acer Incorporated -> )
Task: {306FD23C-C773-49C0-B053-ABEDE4955C06} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-3690589988-2201348878-3316453455-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {58F645CE-D5B6-418B-B7EA-8215861E2CB2} - System32\Tasks\PicstreamAgent => C:\Program -> Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto
Task: {58F9C400-2C07-46EE-A77C-87DF42AB36AC} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2768176 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {D36E99EA-AC66-4CAA-B083-532CF890C991} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [445744 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {16ED185F-E387-4799-9B05-ECBCCB7EC035} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {AD88BDE6-CC38-41F3-ADCF-326344DDDDDB} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-05-23] (Acer Incorporated -> TODO:)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9837b5df-190c-45c7-8c74-b584c666ea39}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}: [DhcpDomain] home
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}\6427565626F687D2337383242313: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}\960586F6E656021333: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-18]
Edge Extension: (Google Docs hors connexion) - C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-18]
Edge Extension: (Edge relevant text changes) - C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-10]
FireFox:
========
FF DefaultProfile: 527x1hu6.default
FF ProfilePath: C:\Users\ttgg\AppData\Roaming\Mozilla\Firefox\Profiles\527x1hu6.default [2024-10-18]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2017-10-24] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2017-10-24] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-10-24] []
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-14] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default [2024-09-05]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Avast SafePrice) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2024-09-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-05]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-05]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2024-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-06]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2024-09-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [234968 2024-03-13] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [461616 2017-05-16] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [506672 2017-05-16] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-05-23] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-04-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-04-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-30] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-10-18 17:20 - 2024-10-18 17:23 - 000021113 _____ C:\Users\ttgg\Desktop\FRST.txt
2024-10-18 17:19 - 2024-10-18 17:21 - 000000000 ____D C:\FRST
2024-10-18 17:17 - 2024-10-18 17:18 - 002397696 _____ (Farbar) C:\Users\ttgg\Desktop\FRST64.exe
2024-10-18 17:12 - 2024-10-18 17:12 - 000000000 ___HD C:\OneDriveTemp
2024-10-18 16:13 - 2024-10-18 16:14 - 000000000 ____D C:\Users\ttgg\AppData\LocalLow\Mozilla
2024-10-18 16:13 - 2024-10-18 16:13 - 000000000 ____D C:\Users\ttgg\AppData\Roaming\Mozilla
2024-10-18 16:13 - 2024-10-18 16:13 - 000000000 ____D C:\Users\ttgg\AppData\Local\Mozilla
2024-10-18 15:28 - 2024-10-18 15:29 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-09-30 16:45 - 2024-09-30 16:45 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-09-30 16:38 - 2024-09-30 16:38 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-09-30 16:11 - 2024-09-30 16:11 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-10-18 17:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-18 17:12 - 2017-10-24 09:41 - 000000000 ___RD C:\Users\ttgg\OneDrive
2024-10-18 17:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-18 17:02 - 2018-01-26 18:18 - 000000000 ____D C:\Users\ttgg\AppData\Local\Packages
2024-10-18 16:55 - 2020-12-30 02:57 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-18 16:55 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2024-10-18 16:55 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2024-10-18 16:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-10-18 16:51 - 2020-12-30 03:17 - 000003510 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2024-10-18 16:51 - 2019-09-27 22:49 - 000000000 ____D C:\Users\ttgg\AppData\Roaming\Microsoft\Teams
2024-10-18 16:49 - 2020-12-30 03:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-18 16:49 - 2020-12-30 02:40 - 000008192 ___SH C:\DumpStack.log.tmp
2024-10-18 16:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-18 16:48 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-10-18 16:47 - 2020-10-05 08:36 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-18 16:47 - 2020-10-05 08:36 - 000002360 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-10-18 16:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-18 16:07 - 2018-03-18 21:58 - 000000000 ____D C:\ProgramData\EPSON
2024-10-18 16:02 - 2022-12-17 18:36 - 000000000 ____D C:\ProgramData\Piriform
2024-10-18 15:59 - 2018-06-14 21:28 - 000000000 ____D C:\ProgramData\Packages
2024-10-18 15:56 - 2021-12-13 09:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3690589988-2201348878-3316453455-1001
2024-10-18 15:56 - 2020-12-30 03:17 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3690589988-2201348878-3316453455-1001
2024-10-18 15:56 - 2020-12-30 02:44 - 000002422 _____ C:\Users\ttgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-18 15:56 - 2020-12-30 02:44 - 000000000 ____D C:\Users\ttgg
2024-10-18 15:53 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-10-18 15:52 - 2022-02-21 22:23 - 000000000 ____D C:\Program Files\RUXIM
2024-10-18 15:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-18 15:36 - 2020-12-30 02:40 - 000433576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-18 15:35 - 2022-02-07 17:00 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-18 15:35 - 2018-01-15 19:49 - 201324920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-10-18 15:35 - 2018-01-15 19:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-10-18 15:30 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-18 15:29 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-10-18 15:28 - 2024-07-28 08:53 - 000000000 ____D C:\WINDOWS\InboxApps
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\schemas
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-10-18 15:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-10-18 15:23 - 2020-12-30 02:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-18 15:13 - 2020-12-30 03:17 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-18 15:13 - 2020-12-30 03:17 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-18 15:13 - 2018-03-30 15:30 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-30 16:38 - 2020-12-30 02:41 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-30 16:00 - 2020-12-30 03:17 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-09-30 15:59 - 2018-11-17 23:30 - 000000000 ____D C:\Users\ttgg\AppData\Local\D3DSCache
2024-09-30 15:49 - 2017-10-24 06:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-09-30 15:46 - 2018-03-18 17:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-30 15:44 - 2018-06-30 21:58 - 000000000 ____D C:\Users\ttgg\AppData\Local\CrashDumps
==================== Fichiers à la racine de certains dossiers ========
2019-04-15 15:44 - 2019-04-15 15:44 - 000001195 _____ () C:\Users\ttgg\AppData\Roaming\SAS7_000.DAT
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Margot (administrateur) sur LAPTOP-RGSPF4LF (Acer Swift SF113-31) (18-10-2024 17:20:10)
Exécuté depuis C:\Users\ttgg\Desktop\FRST64.exe
Profils chargés: Margot
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxEM.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6ee3ae9b5e598778\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\ttgg\AppData\Local\Microsoft\OneDrive\24.192.0923.0006\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2401.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18394608 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.46\Installer\setup.exe [6829624 2024-10-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3690589988-2201348878-3316453455-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ttgg\AppData\Local\Microsoft\Teams\Update.exe [2613808 2024-03-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3690589988-2201348878-3316453455-1001\...\Run: [MicrosoftEdgeAutoLaunch_7ACAC7A59D88CC6AA6B689CDC662F2E2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3865656 2024-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [36352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\129.0.6668.103\Installer\chrmstp.exe [2024-10-18] (Google LLC -> Google LLC)
Startup: C:\Users\ttgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-02-18]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A0708CD1-5172-4A2A-8660-1B8FC3049058} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-05-24] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {1DA5C668-A1F5-47C1-9F91-D9A587ED2C0E} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-05-24] (Acer Incorporated -> )
Task: {07EFD624-ECCE-4644-9D21-FE71B4BB804E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-05-24] (Acer Incorporated -> )
Task: {11EEE378-7241-49CB-8DBA-BB79A0681E5B} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-12-14] (Acer Incorporated -> )
Task: {974B7BBE-433D-423B-A688-6541023F9EB6} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-12-13] (Acer Incorporated -> Acer Incorporated)
Task: {7177727B-0FE2-4788-A444-EE2C136FE46F} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-06-07] (Acer Incorporated -> )
Task: {AD42DB44-8F4B-470C-AEAE-7BBC85B67CB4} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {39FF343A-C9ED-4225-8FF5-91DF2DBAA29A} - System32\Tasks\App Explorer => C:\Users\ttgg\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7132056 2018-11-16] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {1A3F1825-6862-47F6-8FB8-177A26F880C7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {CB654FB3-2BD0-4EEE-A918-CFB9CB682306} - System32\Tasks\DashlaneUpgradeCheck => C:\WINDOWS\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {23656004-F185-45FD-97D5-3D7C32A619F9} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{4BD0F167-C4B0-4AE0-A575-DCA922005C21} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {3F2B3139-AFD3-452C-911B-48E11688F736} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [855352 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {7D26CA9A-67CF-45EC-A85A-441CEC8D9FD2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {534CE894-13C1-40BF-89AB-DF6ABD74FA09} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3DB03A0-150E-453D-8C36-E3C14D854E1F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7A882A4-B373-4E17-B2D5-03346FE1ECD5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {93B25BCF-5B40-413A-A8F8-24FE44C2B6C2} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [71368 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F7C5B02-58E5-4F65-9E4A-953B28C46848} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E01E0C3-1E49-4FBF-8BF1-490C23011EE1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {56CD06A6-768F-41B7-8B14-786DFF2E28A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ABA90396-402C-4084-8031-95C55467A35D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3935D57-60B6-47E7-8940-40AA1C8AB0F7} - System32\Tasks\MonitorAcerPortal => C:\ProgramData\acer\Acer Portal\monitorPortal.exe [32472 2017-06-07] (Acer Incorporated -> )
Task: {306FD23C-C773-49C0-B053-ABEDE4955C06} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-3690589988-2201348878-3316453455-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {58F645CE-D5B6-418B-B7EA-8215861E2CB2} - System32\Tasks\PicstreamAgent => C:\Program -> Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto
Task: {58F9C400-2C07-46EE-A77C-87DF42AB36AC} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2768176 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {D36E99EA-AC66-4CAA-B083-532CF890C991} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [445744 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {16ED185F-E387-4799-9B05-ECBCCB7EC035} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-05-16] (Acer Incorporated -> Acer Incorporated)
Task: {AD88BDE6-CC38-41F3-ADCF-326344DDDDDB} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-05-23] (Acer Incorporated -> TODO:
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9837b5df-190c-45c7-8c74-b584c666ea39}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}: [DhcpDomain] home
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}\6427565626F687D2337383242313: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c27c3585-e899-4a90-9287-3b3dcb919fa2}\960586F6E656021333: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-18]
Edge Extension: (Google Docs hors connexion) - C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-18]
Edge Extension: (Edge relevant text changes) - C:\Users\ttgg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-10]
FireFox:
========
FF DefaultProfile: 527x1hu6.default
FF ProfilePath: C:\Users\ttgg\AppData\Roaming\Mozilla\Firefox\Profiles\527x1hu6.default [2024-10-18]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2017-10-24] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2017-10-24] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-10-24] []
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-14] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default [2024-09-05]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Avast SafePrice) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2024-09-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-05]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-05]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2024-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-06]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\ttgg\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2024-09-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [234968 2024-03-13] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [461616 2017-05-16] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [506672 2017-05-16] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-05-23] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-04-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-04-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-30] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-10-18 17:20 - 2024-10-18 17:23 - 000021113 _____ C:\Users\ttgg\Desktop\FRST.txt
2024-10-18 17:19 - 2024-10-18 17:21 - 000000000 ____D C:\FRST
2024-10-18 17:17 - 2024-10-18 17:18 - 002397696 _____ (Farbar) C:\Users\ttgg\Desktop\FRST64.exe
2024-10-18 17:12 - 2024-10-18 17:12 - 000000000 ___HD C:\OneDriveTemp
2024-10-18 16:13 - 2024-10-18 16:14 - 000000000 ____D C:\Users\ttgg\AppData\LocalLow\Mozilla
2024-10-18 16:13 - 2024-10-18 16:13 - 000000000 ____D C:\Users\ttgg\AppData\Roaming\Mozilla
2024-10-18 16:13 - 2024-10-18 16:13 - 000000000 ____D C:\Users\ttgg\AppData\Local\Mozilla
2024-10-18 15:28 - 2024-10-18 15:29 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-09-30 16:45 - 2024-09-30 16:45 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-09-30 16:38 - 2024-09-30 16:38 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-09-30 16:11 - 2024-09-30 16:11 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-10-18 17:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-18 17:12 - 2017-10-24 09:41 - 000000000 ___RD C:\Users\ttgg\OneDrive
2024-10-18 17:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-18 17:02 - 2018-01-26 18:18 - 000000000 ____D C:\Users\ttgg\AppData\Local\Packages
2024-10-18 16:55 - 2020-12-30 02:57 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-18 16:55 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2024-10-18 16:55 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2024-10-18 16:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-10-18 16:51 - 2020-12-30 03:17 - 000003510 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2024-10-18 16:51 - 2019-09-27 22:49 - 000000000 ____D C:\Users\ttgg\AppData\Roaming\Microsoft\Teams
2024-10-18 16:49 - 2020-12-30 03:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-18 16:49 - 2020-12-30 02:40 - 000008192 ___SH C:\DumpStack.log.tmp
2024-10-18 16:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-18 16:48 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-10-18 16:47 - 2020-10-05 08:36 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-18 16:47 - 2020-10-05 08:36 - 000002360 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-10-18 16:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-18 16:07 - 2018-03-18 21:58 - 000000000 ____D C:\ProgramData\EPSON
2024-10-18 16:02 - 2022-12-17 18:36 - 000000000 ____D C:\ProgramData\Piriform
2024-10-18 15:59 - 2018-06-14 21:28 - 000000000 ____D C:\ProgramData\Packages
2024-10-18 15:56 - 2021-12-13 09:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3690589988-2201348878-3316453455-1001
2024-10-18 15:56 - 2020-12-30 03:17 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3690589988-2201348878-3316453455-1001
2024-10-18 15:56 - 2020-12-30 02:44 - 000002422 _____ C:\Users\ttgg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-18 15:56 - 2020-12-30 02:44 - 000000000 ____D C:\Users\ttgg
2024-10-18 15:53 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-10-18 15:52 - 2022-02-21 22:23 - 000000000 ____D C:\Program Files\RUXIM
2024-10-18 15:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-18 15:36 - 2020-12-30 02:40 - 000433576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-18 15:35 - 2022-02-07 17:00 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-18 15:35 - 2018-01-15 19:49 - 201324920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-10-18 15:35 - 2018-01-15 19:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-10-18 15:30 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-10-18 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-18 15:29 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-18 15:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-10-18 15:28 - 2024-07-28 08:53 - 000000000 ____D C:\WINDOWS\InboxApps
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-10-18 15:28 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\schemas
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2024-10-18 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-10-18 15:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-10-18 15:23 - 2020-12-30 02:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-18 15:13 - 2020-12-30 03:17 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-18 15:13 - 2020-12-30 03:17 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-18 15:13 - 2018-03-30 15:30 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-30 16:38 - 2020-12-30 02:41 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-30 16:00 - 2020-12-30 03:17 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-09-30 15:59 - 2018-11-17 23:30 - 000000000 ____D C:\Users\ttgg\AppData\Local\D3DSCache
2024-09-30 15:49 - 2017-10-24 06:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-09-30 15:46 - 2018-03-18 17:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-30 15:44 - 2018-06-30 21:58 - 000000000 ____D C:\Users\ttgg\AppData\Local\CrashDumps
==================== Fichiers à la racine de certains dossiers ========
2019-04-15 15:44 - 2019-04-15 15:44 - 000001195 _____ () C:\Users\ttgg\AppData\Roaming\SAS7_000.DAT
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================