Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-03-2021
Exécuté par anger (administrateur) sur LAPTOP-76D2QOH6 (Acer Aspire A517-51G) (27-03-2021 13:38:22)
Exécuté depuis C:\Users\anger\Downloads
Profils chargés: anger
Platform: Windows 10 Home Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(Autodesk, Inc -> Autodesk) C:\Program Files\Autodesk\AutoCAD 2017\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc -> Autodesk) C:\Program Files\Common Files\Autodesk Shared\CLM\V3\MSVC14\cliccore\acwebbrowser.exe <3>
(Autodesk, Inc -> Autodesk, Inc.) C:\Program Files\Autodesk\AutoCAD 2017\acad.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13628.20448.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Noriyuki Miyazaki -> Crystal Dew World) C:\Program Files\CrystalDiskInfo\DiskInfo64.exe
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\anger\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe <2>
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-12-06] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1943400 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc -> Autodesk, Inc.)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10395816 2021-01-08] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Policies\Explorer: []
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-18] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1648C7B0-801A-417C-A865-02B0E2E18DE6} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> )
Task: {189CB853-339F-4B0B-90D4-657C4F2AC816} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {1EF86595-5907-4AF0-8E01-A747D1AEBE55} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> )
Task: {27F37DB3-A01C-4CD0-8236-5F6F08F892CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {42887FD7-537A-4AB1-B1D7-834522EB6D5F} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {44DF51F2-1A5A-47C6-8E15-EC3CA8E7260D} - System32\Tasks\Microsoft\Windows\Secondary Authentication Factor\BackgroundTaskDeployment => C:\WINDOWS\System32\DeviceCredentialDeployment.exe [82432 2021-02-23] (Microsoft Windows -> Microsoft Corporation)
Task: {4E1B2360-9823-44EA-AD92-B3CDEFF16DE9} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5DB8C086-7CC2-4F7D-9B91-F5E0157C6E94} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Autofix => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {5E0E722A-8019-4A58-9816-414F048DEF53} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.5.39\WSCStub.exe [644608 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6DEDE943-2D42-4DC8-ADDF-D146459EC9C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-05] (Google Inc -> Google LLC)
Task: {6DFE44FC-9932-442A-8CAE-BFCDE4271827} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2018-12-17] (Acer Incorporated -> Acer Incorporated)
Task: {6E7B5515-E819-4995-94B0-0A0FD2379561} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-05] (Google Inc -> Google LLC)
Task: {81088862-69BC-4EAA-AA3B-916FBA360D40} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> )
Task: {87B356A3-3D9B-4896-871B-DAB296E947F0} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8DEA02AE-3688-4257-BD16-0EA8875CBB2B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2018-12-17] (Acer Incorporated -> Acer Incorporated)
Task: {952790C1-AB09-4477-AD1B-A59470B53AB3} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Processor => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {9CF1CCEB-9256-491C-B4BC-052B429B0BE2} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Ultra\Upgrade.exe [2162328 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {A913C96E-42BB-48E9-BD05-55B6E584436F} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {B06DBAEA-849D-4238-ADF7-D6BA3B43A7BB} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2882408 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BB9ABB54-9429-4DDA-AE48-E22A6124587D} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {C6124CA6-65ED-404D-B9D6-B52FCB494518} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {D446EBA1-76DD-4EA3-B7F7-984F4CC5301E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {D8E34BCF-55B9-411C-8BCE-E15DC87F3F2D} - System32\Tasks\App Explorer => C:\Users\anger\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7968424 2020-12-03] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {DC5B2227-C419-4287-A1FD-BA60AD2EA9C2} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{869df148-6a46-4111-ac03-9e9592f2eaa3}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{bbf0ff50-2f75-4e35-ae37-318cb701d628}: [DhcpNameServer] 192.168.1.254
Edge:
=======
DownloadDir: C:\Users\anger\Downloads
Edge Notifications: HKU\S-1-5-21-3200959906-3325350217-2552121573-1001 -> hxxps://www.facebook.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\anger\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-27]
Edge DownloadDir: C:\Users\anger\Downloads
FireFox:
========
FF DefaultProfile: pjaji7me.default
FF ProfilePath: C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default [2021-03-27]
FF Homepage: Mozilla\Firefox\Profiles\pjaji7me.default -> hxxps://www.bing.com/?PC=MP33
FF Extension: (Amazon Assistant for Firefox) - C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default\Extensions\abb-acer@amazon.com.xpi [2019-10-06] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2020-08-09]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com.xpi [2017-12-09] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2018-09-05]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2019-04-09] []
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default [2021-03-27]
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://mail.google.com; hxxps://www.codedelaroute.fr; hxxps://www.download-mp3-youtube.com; hxxps://www.euautopieces.fr; hxxps://www.facebook.com; hxxps://www.justfab.fr; hxxps://www.pinterest.fr; hxxps://www.youtube.com
CHR DefaultSearchURL: Default -> hxxps://app.sketchup.com/icons/windows10/Square71x71Logo.scale-400.png
CHR Extension: (Slides) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-05]
CHR Extension: (Docs) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-05]
CHR Extension: (Google Drive) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-06]
CHR Extension: (SketchUp for Web) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\beodkchghmjjfhojholjdhdfodleinln [2020-07-19]
CHR Extension: (YouTube) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-05]
CHR Extension: (Sheets) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-18]
CHR Extension: (Joko pour Chrome) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\jigflhhckdjdefdjmodlkomnmdonfbbn [2021-03-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-27]
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-27]
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-27]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.39\Exts\Chrome.crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.39\Exts\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-03-04] (Autodesk, Inc. -> Autodesk Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\FileSyncHelper.exe [2233704 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe [344760 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe [1056096 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\OneDriveUpdaterService.exe [2602368 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2018-12-17] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\BASHDefs\20210316.001\BHDrvx64.sys [1995864 2021-03-16] (Symantec Corporation -> Broadcom)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\ccSetx64.sys [192248 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-01-30] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-02-24] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20210317.061\IDSvia64.sys [1479536 2021-03-17] (Symantec Corporation -> Broadcom)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSP64.SYS [889704 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSPX64.SYS [50920 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SYMEFASI64.SYS [1964384 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SymELAM.sys [25080 2020-07-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-07-05] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.1.4\SymPlatform\SymEvnt.sys [712368 2020-01-13] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\Ironx64.SYS [316488 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\symnets.sys [575328 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\wpCtrlDrv.sys [1013792 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-27 13:38 - 2021-03-27 13:39 - 000024823 _____ C:\Users\anger\Downloads\FRST.txt
2021-03-27 13:37 - 2021-03-27 13:39 - 000000000 ____D C:\FRST
2021-03-27 13:36 - 2021-03-27 13:36 - 002300928 _____ (Farbar) C:\Users\anger\Downloads\FRST64.exe
2021-03-27 13:36 - 2021-03-27 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-03-27 13:36 - 2021-03-27 13:36 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-03-27 13:32 - 2021-03-27 13:34 - 004707136 _____ (Crystal Dew World ) C:\Users\anger\Downloads\CrystalDiskInfo8_11_2.exe
2021-03-27 13:22 - 2021-03-27 13:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-03-18 21:37 - 2021-03-18 21:37 - 000021623 _____ C:\Users\anger\Downloads\dxf-cc-14166000ZE01.tar.bz2
2021-03-18 21:01 - 2021-03-18 21:01 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d70a397dfb495a
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-27 13:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-27 13:29 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-27 13:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-27 13:11 - 2021-02-24 00:26 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1E109334-A441-416E-9BF5-6EE35E4B32F8}
2021-03-27 13:01 - 2019-07-03 20:57 - 000000000 ____D C:\ProgramData\Autodesk
2021-03-27 13:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-27 12:59 - 2021-01-14 22:37 - 000000000 ____D C:\Program Files\CCleaner
2021-03-27 12:58 - 2020-09-20 13:54 - 000000000 ____D C:\Users\anger\AppData\Roaming\Messenger
2021-03-27 12:58 - 2019-07-03 18:31 - 000000000 ___RD C:\Users\anger\OneDrive
2021-03-27 12:55 - 2019-07-04 06:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-27 12:54 - 2019-07-03 18:20 - 000000000 ____D C:\Users\anger\AppData\Local\Host App Service
2021-03-27 12:51 - 2019-07-04 06:07 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-27 12:51 - 2019-07-03 18:28 - 000000000 __SHD C:\Users\anger\IntelGraphicsProfiles
2021-03-18 22:50 - 2019-04-09 10:24 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-18 21:34 - 2020-06-20 14:05 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-18 21:34 - 2020-06-20 14:05 - 000002267 _____ C:\ProgramData\Bureau\Microsoft Edge.lnk
2021-03-18 21:30 - 2019-07-05 18:08 - 000001389 _____ C:\ProgramData\Bureau\Application de bureau Autodesk.lnk
2021-03-18 21:08 - 2021-02-24 00:26 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-03-18 21:08 - 2021-02-20 17:17 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-18 21:08 - 2019-09-29 08:41 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-18 21:08 - 2019-09-29 08:41 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-03-18 21:02 - 2021-02-24 00:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-18 21:02 - 2021-02-24 00:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security Ultra
2021-03-18 21:01 - 2021-02-24 00:26 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-18 20:58 - 2021-02-24 00:14 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-18 20:58 - 2019-12-07 15:49 - 000792838 _____ C:\WINDOWS\system32\perfh00C.dat
2021-03-18 20:58 - 2019-12-07 15:49 - 000149968 _____ C:\WINDOWS\system32\perfc00C.dat
2021-03-18 20:57 - 2019-12-07 10:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2021-03-18 20:54 - 2021-02-24 00:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-18 20:54 - 2021-02-23 23:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-28 00:21 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-27 22:50 - 2021-02-23 23:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par anger (administrateur) sur LAPTOP-76D2QOH6 (Acer Aspire A517-51G) (27-03-2021 13:38:22)
Exécuté depuis C:\Users\anger\Downloads
Profils chargés: anger
Platform: Windows 10 Home Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(Autodesk, Inc -> Autodesk) C:\Program Files\Autodesk\AutoCAD 2017\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc -> Autodesk) C:\Program Files\Common Files\Autodesk Shared\CLM\V3\MSVC14\cliccore\acwebbrowser.exe <3>
(Autodesk, Inc -> Autodesk, Inc.) C:\Program Files\Autodesk\AutoCAD 2017\acad.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0b3e3ed3ace9602a\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13628.20448.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Noriyuki Miyazaki -> Crystal Dew World) C:\Program Files\CrystalDiskInfo\DiskInfo64.exe
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\anger\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe <2>
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-12-06] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1943400 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc -> Autodesk, Inc.)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10395816 2021-01-08] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3200959906-3325350217-2552121573-1001\...\Policies\Explorer: []
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-18] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1648C7B0-801A-417C-A865-02B0E2E18DE6} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> )
Task: {189CB853-339F-4B0B-90D4-657C4F2AC816} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {1EF86595-5907-4AF0-8E01-A747D1AEBE55} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> )
Task: {27F37DB3-A01C-4CD0-8236-5F6F08F892CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {42887FD7-537A-4AB1-B1D7-834522EB6D5F} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {44DF51F2-1A5A-47C6-8E15-EC3CA8E7260D} - System32\Tasks\Microsoft\Windows\Secondary Authentication Factor\BackgroundTaskDeployment => C:\WINDOWS\System32\DeviceCredentialDeployment.exe [82432 2021-02-23] (Microsoft Windows -> Microsoft Corporation)
Task: {4E1B2360-9823-44EA-AD92-B3CDEFF16DE9} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5DB8C086-7CC2-4F7D-9B91-F5E0157C6E94} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Autofix => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {5E0E722A-8019-4A58-9816-414F048DEF53} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.5.39\WSCStub.exe [644608 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6DEDE943-2D42-4DC8-ADDF-D146459EC9C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-05] (Google Inc -> Google LLC)
Task: {6DFE44FC-9932-442A-8CAE-BFCDE4271827} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2018-12-17] (Acer Incorporated -> Acer Incorporated)
Task: {6E7B5515-E819-4995-94B0-0A0FD2379561} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-05] (Google Inc -> Google LLC)
Task: {81088862-69BC-4EAA-AA3B-916FBA360D40} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> )
Task: {87B356A3-3D9B-4896-871B-DAB296E947F0} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8DEA02AE-3688-4257-BD16-0EA8875CBB2B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2018-12-17] (Acer Incorporated -> Acer Incorporated)
Task: {952790C1-AB09-4477-AD1B-A59470B53AB3} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Processor => C:\Program Files\Norton Security\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {9CF1CCEB-9256-491C-B4BC-052B429B0BE2} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Ultra\Upgrade.exe [2162328 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {A913C96E-42BB-48E9-BD05-55B6E584436F} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {B06DBAEA-849D-4238-ADF7-D6BA3B43A7BB} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2882408 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BB9ABB54-9429-4DDA-AE48-E22A6124587D} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {C6124CA6-65ED-404D-B9D6-B52FCB494518} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {D446EBA1-76DD-4EA3-B7F7-984F4CC5301E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {D8E34BCF-55B9-411C-8BCE-E15DC87F3F2D} - System32\Tasks\App Explorer => C:\Users\anger\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7968424 2020-12-03] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {DC5B2227-C419-4287-A1FD-BA60AD2EA9C2} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{869df148-6a46-4111-ac03-9e9592f2eaa3}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{bbf0ff50-2f75-4e35-ae37-318cb701d628}: [DhcpNameServer] 192.168.1.254
Edge:
=======
DownloadDir: C:\Users\anger\Downloads
Edge Notifications: HKU\S-1-5-21-3200959906-3325350217-2552121573-1001 -> hxxps://www.facebook.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\anger\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-27]
Edge DownloadDir: C:\Users\anger\Downloads
FireFox:
========
FF DefaultProfile: pjaji7me.default
FF ProfilePath: C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default [2021-03-27]
FF Homepage: Mozilla\Firefox\Profiles\pjaji7me.default -> hxxps://www.bing.com/?PC=MP33
FF Extension: (Amazon Assistant for Firefox) - C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default\Extensions\abb-acer@amazon.com.xpi [2019-10-06] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\anger\AppData\Roaming\Mozilla\Firefox\Profiles\pjaji7me.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2020-08-09]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com.xpi [2017-12-09] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2018-09-05]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2019-04-09] []
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default [2021-03-27]
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://mail.google.com; hxxps://www.codedelaroute.fr; hxxps://www.download-mp3-youtube.com; hxxps://www.euautopieces.fr; hxxps://www.facebook.com; hxxps://www.justfab.fr; hxxps://www.pinterest.fr; hxxps://www.youtube.com
CHR DefaultSearchURL: Default -> hxxps://app.sketchup.com/icons/windows10/Square71x71Logo.scale-400.png
CHR Extension: (Slides) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-05]
CHR Extension: (Docs) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-05]
CHR Extension: (Google Drive) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-06]
CHR Extension: (SketchUp for Web) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\beodkchghmjjfhojholjdhdfodleinln [2020-07-19]
CHR Extension: (YouTube) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-05]
CHR Extension: (Sheets) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-18]
CHR Extension: (Joko pour Chrome) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\jigflhhckdjdefdjmodlkomnmdonfbbn [2021-03-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\anger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-27]
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-27]
CHR Profile: C:\Users\anger\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-27]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.39\Exts\Chrome.crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.39\Exts\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-03-04] (Autodesk, Inc. -> Autodesk Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\FileSyncHelper.exe [2233704 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.5.39\NortonSecurity.exe [344760 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.5.39\nsWscSvc.exe [1056096 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\OneDriveUpdaterService.exe [2602368 2021-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2018-12-17] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\BASHDefs\20210316.001\BHDrvx64.sys [1995864 2021-03-16] (Symantec Corporation -> Broadcom)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\ccSetx64.sys [192248 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-01-30] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-02-24] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.1.4\Definitions\IPSDefs\20210317.061\IDSvia64.sys [1479536 2021-03-17] (Symantec Corporation -> Broadcom)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSP64.SYS [889704 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSPX64.SYS [50920 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SYMEFASI64.SYS [1964384 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SymELAM.sys [25080 2020-07-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-07-05] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.1.4\SymPlatform\SymEvnt.sys [712368 2020-01-13] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\Ironx64.SYS [316488 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\symnets.sys [575328 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\wpCtrlDrv.sys [1013792 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-27 13:38 - 2021-03-27 13:39 - 000024823 _____ C:\Users\anger\Downloads\FRST.txt
2021-03-27 13:37 - 2021-03-27 13:39 - 000000000 ____D C:\FRST
2021-03-27 13:36 - 2021-03-27 13:36 - 002300928 _____ (Farbar) C:\Users\anger\Downloads\FRST64.exe
2021-03-27 13:36 - 2021-03-27 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-03-27 13:36 - 2021-03-27 13:36 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-03-27 13:32 - 2021-03-27 13:34 - 004707136 _____ (Crystal Dew World ) C:\Users\anger\Downloads\CrystalDiskInfo8_11_2.exe
2021-03-27 13:22 - 2021-03-27 13:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-03-18 21:37 - 2021-03-18 21:37 - 000021623 _____ C:\Users\anger\Downloads\dxf-cc-14166000ZE01.tar.bz2
2021-03-18 21:01 - 2021-03-18 21:01 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d70a397dfb495a
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-27 13:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-27 13:29 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-27 13:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-27 13:11 - 2021-02-24 00:26 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1E109334-A441-416E-9BF5-6EE35E4B32F8}
2021-03-27 13:01 - 2019-07-03 20:57 - 000000000 ____D C:\ProgramData\Autodesk
2021-03-27 13:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-27 12:59 - 2021-01-14 22:37 - 000000000 ____D C:\Program Files\CCleaner
2021-03-27 12:58 - 2020-09-20 13:54 - 000000000 ____D C:\Users\anger\AppData\Roaming\Messenger
2021-03-27 12:58 - 2019-07-03 18:31 - 000000000 ___RD C:\Users\anger\OneDrive
2021-03-27 12:55 - 2019-07-04 06:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-27 12:54 - 2019-07-03 18:20 - 000000000 ____D C:\Users\anger\AppData\Local\Host App Service
2021-03-27 12:51 - 2019-07-04 06:07 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-27 12:51 - 2019-07-03 18:28 - 000000000 __SHD C:\Users\anger\IntelGraphicsProfiles
2021-03-18 22:50 - 2019-04-09 10:24 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-18 21:34 - 2020-06-20 14:05 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-18 21:34 - 2020-06-20 14:05 - 000002267 _____ C:\ProgramData\Bureau\Microsoft Edge.lnk
2021-03-18 21:30 - 2019-07-05 18:08 - 000001389 _____ C:\ProgramData\Bureau\Application de bureau Autodesk.lnk
2021-03-18 21:08 - 2021-02-24 00:26 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-03-18 21:08 - 2021-02-20 17:17 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-18 21:08 - 2019-09-29 08:41 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-18 21:08 - 2019-09-29 08:41 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-03-18 21:02 - 2021-02-24 00:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-18 21:02 - 2021-02-24 00:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security Ultra
2021-03-18 21:01 - 2021-02-24 00:26 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-18 20:58 - 2021-02-24 00:14 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-18 20:58 - 2019-12-07 15:49 - 000792838 _____ C:\WINDOWS\system32\perfh00C.dat
2021-03-18 20:58 - 2019-12-07 15:49 - 000149968 _____ C:\WINDOWS\system32\perfc00C.dat
2021-03-18 20:57 - 2019-12-07 10:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2021-03-18 20:54 - 2021-02-24 00:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-18 20:54 - 2021-02-23 23:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-18 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-28 00:21 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-27 22:50 - 2021-02-23 23:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================