Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2021
Exécuté par annie (administrateur) sur DESKTOP-I0ACEDS (Acer Aspire A517-51G) (08-09-2021 20:30:00)
Exécuté depuis C:\Users\annie\Downloads
Profils chargés: annie
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\CARE CENTER\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\CARE CENTER\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QASvc.exe
(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerCollectionS_1.0.3004.0_x64__48frkmn4z8aw4\DesktopApp\ACEStd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_14812541c4389768\RstMwService.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14326.20238.0_x86__8wekyb3d8bbwe\Office16\SDXHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14326.20238.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited) C:\Program Files\PDF Suite 2020\updater-ws.exe
(PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited) C:\Program Files\PDF Suite 2020\ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Random Salad Games LLC) C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.2.9.0_x64__kx24dqmazqk8j\SimpleSolitaire.UWP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WILDTANGENT GAMES\Integration\WildTangentHelperService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-06-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35145856 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [35145856 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\annie\AppData\Local\Programs\Messenger\Messenger.exe
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [MicrosoftEdgeAutoLaunch_D3A53630CF42123A9CF30C2FCF80A273] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\...\Print\Monitors\PDF Suite 2020 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2020-08-17] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-01] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0636155A-B224-4C43-87E4-D5DCDE89765D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-08-18] (Google Inc -> Google Inc.)
Task: {09A2FAF8-7841-49F1-8031-49106940A7B9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-27] (Piriform Software Ltd -> Piriform)
Task: {0E0A9879-56EF-4CC4-83FA-A040B5C2B52B} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {14E90961-42A5-44DB-9FFC-E6A9633172CC} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989432 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {180F04D2-BFC4-457F-9810-F2F605DF2871} - System32\Tasks\CCleanerSkipUAC - annie => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {23ACB340-79AC-46C9-BCA7-AC5D96BE0554} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {249B9EE4-2B7F-4D25-AB8C-93A46EEFCA33} - System32\Tasks\HPCustParticipation HP ENVY 5000 series => C:\Program Files\HP\HP ENVY 5000 series\Bin\HPCustPartic.exe [6659488 2019-03-18] (HP Inc -> HP Inc.)
Task: {2CCC9494-56AC-49D0-8A9E-6C3CD42BDF0E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {347FB61F-C94C-4DD1-920D-C41DCD26EEDF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3E3B2545-CE07-4571-9671-E0AB27990C04} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {43ED01CE-34E8-4BF5-A32C-6B04557AD60B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4FE46087-06B2-49FB-AD9E-459533F1EF30} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51E6346B-7A6E-4C44-83FC-C175FF0F3D4B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54468ECE-CC02-419D-B9D4-3AB78E62D207} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-08-13] (Acer Incorporated -> )
Task: {552862B2-27E4-45FD-9748-2AF245075855} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {624C37EB-E560-48B1-AC13-2347D2C8E656} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {7B929F9C-9A96-44EB-98D1-22CF36E7F5AF} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7BC7D775-F9ED-48C8-9272-FF5EA04C3610} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {805B4476-3FA3-49D0-8D39-8AE46B631BFB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-08-18] (Google Inc -> Google Inc.)
Task: {881F3EE5-4002-4B65-B2C9-7204C97EA7DB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B163CA7-DBEB-4A1A-9197-6FD861019B4B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {91F717C9-90B2-4E69-B629-76613D060ACD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9CB3303D-91BD-4DA1-B0FD-C0D4DCA792A4} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-08-13] (Acer Incorporated -> )
Task: {9DF12418-95D4-4EE8-AE34-40A917570DDB} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {A8280312-0CFE-4255-838F-C64EC10C188E} - System32\Tasks\Norton Product InstallerIdle => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\SymInstallStub.exe
Task: {AACBB6AF-BFC1-4441-97F1-C78D28EB4ADA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADCAA89D-338E-4698-8B09-3A9E33EE52E6} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268080 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {AFC1381F-B127-401C-A523-30C7D257E20B} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-08-13] (Acer Incorporated -> )
Task: {C5F973DE-8CE5-4E82-A225-838543584BF2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE342F1B-C6F3-48AF-9602-FF5B45B6C5EF} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {E0ABA261-5344-4BD7-AA1D-88859E8D9816} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {F8334709-DBA9-42AB-A338-21D38D3C5BDA} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {FAB8E9A8-57BD-45D9-AF23-82EFCC4863C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FEFB3B5E-42FA-4BC1-AA2B-30162847DF24} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Norton Product InstallerIdle.job => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\SymInstallStub.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{592777d0-ccad-4486-8112-9dda9e6d5707}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7f9c1baf-efbb-4069-b4ef-88cadc2a45dd}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\annie\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3179272420-1889258620-954823216-1001 -> about:start
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-08]
Edge HomePage: Default -> about:start
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Goobox) - C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\deflnlkimhpmijlhljikkfdlfjepkjka [2020-10-11]
Edge Extension: (Navigateur Web Google Chrome) - C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kflldjfibkknfjmlppndjpbpgicildhn [2020-06-19]
Edge Profile: C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-09-07]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: fpkou95m.default
FF ProfilePath: C:\Users\annie\AppData\Roaming\Mozilla\Firefox\Profiles\fpkou95m.default [2021-09-08]
FF Homepage: Mozilla\Firefox\Profiles\fpkou95m.default -> hxxps://r.orange.fr/r/Oodc_oi_promoHP
FF Extension: (Français Language Pack) - C:\Users\annie\AppData\Roaming\Mozilla\Firefox\Profiles\fpkou95m.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2019-04-17]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2019-04-17]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2019-04-17] []
FF HKLM\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
FF Extension: (PDF Suite 2020 Creator) - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi [2020-01-08]
FF HKLM-x32\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-09-08]
CHR HomePage: Profile 1 -> orange.fr
CHR Extension: (Slides) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-11]
CHR Extension: (Docs) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-11]
CHR Extension: (Google Drive) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-11]
CHR Extension: (Sheets) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Orange page d'accueil) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2020-10-11]
CHR Extension: (Gmail) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Profile: C:\Users\annie\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-08]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-08-13] (Acer Incorporated -> Acer Incorporated)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\FileSyncHelper.exe [2384744 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\OneDriveUpdaterService.exe [2742632 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
R3 PDF Suite 2020; C:\Program Files\PDF Suite 2020\ws.exe [1972184 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S3 PDF Suite 2020 Creator; C:\Program Files\PDF Suite 2020\creator\common\creator-ws.exe [570840 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
R2 PDF Suite 2020 Update Service; C:\Program Files\PDF Suite 2020\updater-ws.exe [1648088 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1637424 2021-08-26] (WildTangent Inc -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R3 BtFilter; C:\WINDOWS\System32\drivers\btfilter.sys [65472 2017-12-11] (WDKTestCert aswbldsv,131431045756648395 -> Qualcomm)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 MpKslc4f9dbdc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2FE10285-6363-4F66-81BE-90281030EC5E}\MpKslDrv.sys [130296 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-08 20:11 - 2021-09-08 20:11 - 000000000 ____D C:\Users\annie\Downloads\FRST-OlderVersion
2021-09-08 20:07 - 2021-09-08 20:07 - 000356616 _____ C:\Users\annie\Desktop\ZHPDiag.html
2021-09-08 18:12 - 2021-09-08 18:15 - 000000000 ____D C:\Users\annie\Downloads\shexview
2021-09-08 18:12 - 2021-09-08 18:12 - 000073154 _____ C:\Users\annie\Downloads\shexview.zip
2021-09-08 17:45 - 2021-09-08 17:45 - 000001530 _____ C:\Users\annie\Desktop\MBAM.txt
2021-09-08 17:18 - 2020-10-17 13:55 - 000003072 _____ C:\WINDOWS\system32\Tasks\POWER BUTTON
2021-09-08 17:18 - 2020-10-17 13:55 - 000002998 _____ C:\WINDOWS\system32\Tasks\QUICK ACCESS
2021-09-08 17:18 - 2020-08-11 20:54 - 000003852 _____ C:\WINDOWS\system32\Tasks\ACCAGENT
2021-09-08 17:18 - 2020-08-11 20:54 - 000003692 _____ C:\WINDOWS\system32\Tasks\ACERCMUPDATETASK2.1.16258
2021-09-08 17:18 - 2020-08-11 20:54 - 000002782 _____ C:\WINDOWS\system32\Tasks\UBTFRAMEWORKSERVICE
2021-09-08 17:18 - 2020-08-11 20:54 - 000002712 _____ C:\WINDOWS\system32\Tasks\UEIPINVITATION
2021-09-08 17:18 - 2020-08-11 20:54 - 000002328 _____ C:\WINDOWS\system32\Tasks\ACCBACKGROUNDAPPLICATION
2021-09-08 17:15 - 2021-09-08 17:18 - 000000000 ____D C:\AdwCleaner
2021-09-08 17:15 - 2021-09-08 17:15 - 008553680 _____ (Malwarebytes) C:\Users\annie\Downloads\adwcleaner_8.3.0.exe
2021-09-08 17:13 - 2021-09-08 17:13 - 000004815 _____ C:\Users\annie\Desktop\ZHPCleaner (R).txt
2021-09-08 17:01 - 2021-09-08 17:01 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner (1).exe
2021-09-08 17:00 - 2021-09-08 17:00 - 003302272 _____ C:\Users\annie\Downloads\zhpcleaner_2019.1.17.9.exe
2021-09-08 16:56 - 2021-09-08 17:09 - 000004747 _____ C:\Users\annie\Desktop\ZHPCleaner (S).txt
2021-09-08 16:43 - 2021-09-08 17:01 - 000000924 _____ C:\Users\annie\Desktop\ZHPCleaner.lnk
2021-09-08 16:42 - 2021-09-08 16:42 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner.exe
2021-09-08 16:33 - 2021-09-08 16:33 - 000000000 ____D C:\Users\annie\Downloads\Wub
2021-09-08 16:32 - 2021-09-08 16:32 - 001003898 _____ C:\Users\annie\Downloads\Wub.zip
2021-09-07 20:14 - 2021-09-07 20:12 - 000046392 _____ C:\Users\annie\Desktop\FRST.txt
2021-09-07 20:14 - 2021-09-07 20:12 - 000041157 _____ C:\Users\annie\Desktop\Addition.txt
2021-09-07 20:14 - 2021-09-07 20:12 - 000038230 _____ C:\Users\annie\Desktop\Shortcut.txt
2021-09-07 20:12 - 2021-09-07 20:12 - 000038230 _____ C:\Users\annie\Downloads\Shortcut.txt
2021-09-07 20:09 - 2021-09-07 20:12 - 000041157 _____ C:\Users\annie\Downloads\Addition.txt
2021-09-07 20:01 - 2021-09-08 20:30 - 000025901 _____ C:\Users\annie\Downloads\FRST.txt
2021-09-07 20:00 - 2021-09-08 20:30 - 000000000 ____D C:\FRST
2021-09-07 19:59 - 2021-09-08 20:11 - 002302976 _____ (Farbar) C:\Users\annie\Downloads\FRST64.exe
2021-09-07 19:19 - 2021-09-08 20:23 - 000290206 _____ C:\Users\annie\Desktop\ZHPDiag.txt
2021-09-07 19:08 - 2021-09-08 16:43 - 000000000 ____D C:\Users\annie\AppData\Local\ZHP
2021-09-07 19:08 - 2021-09-07 19:08 - 003475608 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPSuite.exe
2021-09-07 19:08 - 2021-09-07 19:08 - 000000914 _____ C:\Users\annie\Desktop\ZHPSuite.lnk
2021-09-07 18:24 - 2021-09-07 18:24 - 000001234 _____ C:\Users\annie\Desktop\Microsoft Edge.lnk
2021-08-29 17:30 - 2021-08-29 17:30 - 000000359 _____ C:\Users\annie\Desktop\Corbeille - Raccourci.lnk
2021-08-20 18:41 - 2021-08-20 18:41 - 003797318 _____ C:\Users\annie\Downloads\Le vaccinateur des Lilas en hommage à Serge Gainsbourg.mp4
2021-08-19 12:59 - 2021-08-19 12:59 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - annie
2021-08-11 16:39 - 2021-08-11 16:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-11 16:39 - 2021-08-11 16:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-11 16:39 - 2021-08-11 16:39 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-11 16:39 - 2021-08-11 16:39 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-11 16:39 - 2021-08-11 16:39 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-11 16:39 - 2021-08-11 16:39 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-11 16:39 - 2021-08-11 16:39 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-11 16:32 - 2021-08-11 16:32 - 000000000 ___HD C:\$WinREAgent
2021-08-08 17:52 - 2021-08-08 17:52 - 000000000 ____D C:\Users\annie\Documents\FAMILLES BOURSON
2021-07-23 13:30 - 2021-07-23 13:30 - 000014152 _____ C:\Users\annie\Downloads\Détails des communications.pdf
2021-07-15 19:26 - 2021-07-15 19:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-15 18:13 - 2021-07-15 18:13 - 000000286 _____ C:\Users\annie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\USB DISK (F).lnk
2021-07-07 18:09 - 2021-07-07 18:09 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-07 18:09 - 2021-07-07 18:09 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-07 18:09 - 2021-07-07 18:09 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-07 18:08 - 2021-07-07 18:08 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-07 18:08 - 2021-07-07 18:08 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-07 18:08 - 2021-07-07 18:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-17 08:06 - 2021-06-17 08:06 - 000000000 ____D C:\ProgramData\Avast Software
2021-06-17 08:06 - 2021-03-08 21:46 - 000081632 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2021-06-17 08:05 - 2021-06-17 08:05 - 001149536 _____ (Avast Software) C:\Users\annie\Downloads\avast_cleanup_online_setup.exe
2021-06-16 21:30 - 2021-06-16 21:30 - 000000000 _____ C:\Users\annie\AppData\Local\{79630252-E76D-45AF-BA0B-FFE8870D7A74}
2021-06-14 08:17 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-06-13 11:23 - 2021-06-14 08:18 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:23 - 2021-06-14 08:18 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:23 - 2021-06-13 12:25 - 000000000 ____D C:\Users\annie\AppData\Local\NVIDIA Corporation
2021-06-13 11:23 - 2021-06-13 11:23 - 000000000 ____D C:\Users\annie\AppData\Local\NVIDIA
2021-06-13 11:23 - 2021-06-13 11:23 - 000000000 ____D C:\Users\annie\AppData\Local\CEF
2021-06-13 11:23 - 2021-04-07 13:38 - 002817904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2021-06-13 11:23 - 2021-04-07 13:38 - 002171760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2021-06-13 11:23 - 2021-04-07 13:38 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-06-13 11:23 - 2021-03-30 12:57 - 000074608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2021-06-13 11:23 - 2021-03-30 12:57 - 000064880 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2021-06-13 11:22 - 2021-06-14 08:18 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:17 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:17 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-13 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-06-13 11:22 - 2021-03-03 22:49 - 000168304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2021-06-13 11:22 - 2021-03-03 22:49 - 000144240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2021-06-13 11:21 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2021-06-13 11:21 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2021-06-13 11:20 - 2021-06-13 11:21 - 127203936 _____ (NVIDIA Corporation New) C:\Users\annie\Downloads\GeForce_Experience_v3.21.0.36.exe
2021-06-11 16:36 - 2021-06-11 16:36 - 000157375 _____ C:\Users\annie\Downloads\pieces jointes_11_06_2021.zip
2021-06-10 18:44 - 2021-06-10 18:44 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-10 18:44 - 2021-06-10 18:44 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-10 18:44 - 2021-06-10 18:44 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-10 18:44 - 2021-06-10 18:44 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-08 20:23 - 2019-12-29 16:15 - 000000000 ____D C:\Users\annie\AppData\Roaming\ZHP
2021-09-08 20:18 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-08 20:18 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-08 20:03 - 2020-08-11 20:42 - 000936286 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-08 20:03 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-08 20:03 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-08 20:03 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-08 20:00 - 2019-08-18 17:01 - 000000000 ____D C:\Program Files\CCleaner
2021-09-08 20:00 - 2019-08-18 17:01 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-08 20:00 - 2019-02-26 21:04 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-08 19:58 - 2020-08-11 20:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-08 19:58 - 2020-08-11 20:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-08 19:58 - 2019-04-03 18:04 - 000000000 __SHD C:\Users\annie\IntelGraphicsProfiles
2021-09-08 19:50 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-09-08 18:58 - 2020-08-11 20:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-08 18:01 - 2019-12-01 10:15 - 000000000 ___RD C:\Users\annie\Desktop\CHERRIER
2021-09-08 17:30 - 2019-04-07 12:10 - 000000000 ____D C:\Users\annie\AppData\Local\CrashDumps
2021-09-08 17:23 - 2019-02-26 21:24 - 000000000 ____D C:\ProgramData\WildTangent
2021-09-08 17:21 - 2019-02-26 21:25 - 000000000 ____D C:\Program Files\Acer
2021-09-08 17:21 - 2019-02-26 21:19 - 000000000 ____D C:\ProgramData\Acer
2021-09-08 17:21 - 2019-02-26 21:19 - 000000000 ____D C:\Program Files (x86)\Acer
2021-09-08 16:41 - 2019-12-27 19:15 - 000000000 ____D C:\Users\annie\AppData\Roaming\Orange
2021-09-08 16:41 - 2019-02-26 21:25 - 000001244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-08 16:40 - 2019-04-03 18:04 - 000000000 ____D C:\Users\annie\AppData\Roaming\WildTangent
2021-09-08 16:40 - 2019-02-26 21:25 - 000000000 ____D C:\Program Files (x86)\WILDTANGENT GAMES
2021-09-08 16:40 - 2019-02-26 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WILDTANGENT GAMES
2021-09-08 16:38 - 2019-02-26 21:26 - 000000000 ____D C:\ProgramData\install_clap
2021-09-08 16:38 - 2019-02-26 20:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-09-08 16:33 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2021-09-08 16:24 - 2020-08-11 20:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-09-07 19:21 - 2019-08-21 06:14 - 000000000 ____D C:\Users\annie\AppData\Local\D3DSCache
2021-09-07 19:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-07 18:25 - 2019-04-03 18:04 - 000000000 ____D C:\Users\annie\AppData\Local\Packages
2021-09-07 18:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-06 12:48 - 2020-09-13 12:32 - 000000000 ____D C:\Users\annie\Desktop\FAMILLES MAUFRAS
2021-09-05 09:17 - 2019-12-27 19:35 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-09-04 17:28 - 2020-08-11 20:54 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-09-04 17:28 - 2019-12-27 19:35 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-04 11:00 - 2021-01-23 15:14 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-04 08:58 - 2020-06-18 09:05 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-04 08:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-03 10:09 - 2019-02-26 20:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-08-31 08:28 - 2020-01-26 10:35 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-17 01:22 - 2021-01-23 15:14 - 000740168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-08-17 01:22 - 2021-01-23 15:14 - 000486728 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-08-15 21:52 - 2020-08-11 20:54 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-15 21:52 - 2020-08-11 20:54 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-11 19:56 - 2020-08-11 20:33 - 000267384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-11 19:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-11 16:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-11 16:31 - 2019-04-05 10:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-11 16:30 - 2019-04-05 10:37 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-09 21:29 - 2019-04-03 18:04 - 000000000 ___RD C:\Users\annie\3D Objects
==================== Fichiers à la racine de certains dossiers ========
2021-06-16 21:30 - 2021-06-16 21:30 - 000000000 _____ () C:\Users\annie\AppData\Local\{79630252-E76D-45AF-BA0B-FFE8870D7A74}
==================== SigCheckExt =========================
2021-09-07 19:59 - 2021-09-08 20:11 - 002302976 _____ (Farbar) C:\Users\annie\Downloads\FRST64.exe
2021-03-21 16:58 - 2021-03-21 16:58 - 197613537 _____ C:\Users\annie\Downloads\windows-password-reset.exe
2021-09-08 17:01 - 2021-09-08 17:01 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner (1).exe
2021-09-08 16:42 - 2021-09-08 16:42 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner.exe
2021-09-08 17:00 - 2021-09-08 17:00 - 003302272 _____ C:\Users\annie\Downloads\zhpcleaner_2019.1.17.9.exe
2021-09-07 19:08 - 2021-09-07 19:08 - 003475608 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{046439bf-39f3-11e9-9bbe-806e6f6e6963}
{046439c0-39f3-11e9-9bbe-806e6f6e6963}
{046439c1-39f3-11e9-9bbe-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {70257222-dc09-11ea-9527-e350ca6b501f}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {046439bf-39f3-11e9-9bbe-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {046439c0-39f3-11e9-9bbe-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {046439c1-39f3-11e9-9bbe-806e6f6e6963}
description EFI Network
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {70257224-dc09-11ea-9527-e350ca6b501f}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {70257222-dc09-11ea-9527-e350ca6b501f}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {70257224-dc09-11ea-9527-e350ca6b501f}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{70257225-dc09-11ea-9527-e350ca6b501f}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{70257225-dc09-11ea-9527-e350ca6b501f}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {70257222-dc09-11ea-9527-e350ca6b501f}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {70257224-dc09-11ea-9527-e350ca6b501f}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {70257225-dc09-11ea-9527-e350ca6b501f}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par annie (administrateur) sur DESKTOP-I0ACEDS (Acer Aspire A517-51G) (08-09-2021 20:30:00)
Exécuté depuis C:\Users\annie\Downloads
Profils chargés: annie
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\CARE CENTER\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\CARE CENTER\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\QUICK ACCESS SERVICE\QASvc.exe
(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerCollectionS_1.0.3004.0_x64__48frkmn4z8aw4\DesktopApp\ACEStd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_14812541c4389768\RstMwService.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14326.20238.0_x86__8wekyb3d8bbwe\Office16\SDXHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14326.20238.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited) C:\Program Files\PDF Suite 2020\updater-ws.exe
(PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited) C:\Program Files\PDF Suite 2020\ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Random Salad Games LLC) C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.2.9.0_x64__kx24dqmazqk8j\SimpleSolitaire.UWP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WILDTANGENT GAMES\Integration\WildTangentHelperService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-06-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35145856 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [35145856 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\annie\AppData\Local\Programs\Messenger\Messenger.exe
HKU\S-1-5-21-3179272420-1889258620-954823216-1001\...\Run: [MicrosoftEdgeAutoLaunch_D3A53630CF42123A9CF30C2FCF80A273] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\...\Print\Monitors\PDF Suite 2020 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2020-08-17] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-01] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0636155A-B224-4C43-87E4-D5DCDE89765D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-08-18] (Google Inc -> Google Inc.)
Task: {09A2FAF8-7841-49F1-8031-49106940A7B9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-27] (Piriform Software Ltd -> Piriform)
Task: {0E0A9879-56EF-4CC4-83FA-A040B5C2B52B} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {14E90961-42A5-44DB-9FFC-E6A9633172CC} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989432 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {180F04D2-BFC4-457F-9810-F2F605DF2871} - System32\Tasks\CCleanerSkipUAC - annie => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {23ACB340-79AC-46C9-BCA7-AC5D96BE0554} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {249B9EE4-2B7F-4D25-AB8C-93A46EEFCA33} - System32\Tasks\HPCustParticipation HP ENVY 5000 series => C:\Program Files\HP\HP ENVY 5000 series\Bin\HPCustPartic.exe [6659488 2019-03-18] (HP Inc -> HP Inc.)
Task: {2CCC9494-56AC-49D0-8A9E-6C3CD42BDF0E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {347FB61F-C94C-4DD1-920D-C41DCD26EEDF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3E3B2545-CE07-4571-9671-E0AB27990C04} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {43ED01CE-34E8-4BF5-A32C-6B04557AD60B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4FE46087-06B2-49FB-AD9E-459533F1EF30} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51E6346B-7A6E-4C44-83FC-C175FF0F3D4B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54468ECE-CC02-419D-B9D4-3AB78E62D207} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-08-13] (Acer Incorporated -> )
Task: {552862B2-27E4-45FD-9748-2AF245075855} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {624C37EB-E560-48B1-AC13-2347D2C8E656} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {7B929F9C-9A96-44EB-98D1-22CF36E7F5AF} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7BC7D775-F9ED-48C8-9272-FF5EA04C3610} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {805B4476-3FA3-49D0-8D39-8AE46B631BFB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-08-18] (Google Inc -> Google Inc.)
Task: {881F3EE5-4002-4B65-B2C9-7204C97EA7DB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B163CA7-DBEB-4A1A-9197-6FD861019B4B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {91F717C9-90B2-4E69-B629-76613D060ACD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9CB3303D-91BD-4DA1-B0FD-C0D4DCA792A4} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-08-13] (Acer Incorporated -> )
Task: {9DF12418-95D4-4EE8-AE34-40A917570DDB} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {A8280312-0CFE-4255-838F-C64EC10C188E} - System32\Tasks\Norton Product InstallerIdle => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\SymInstallStub.exe
Task: {AACBB6AF-BFC1-4441-97F1-C78D28EB4ADA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADCAA89D-338E-4698-8B09-3A9E33EE52E6} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268080 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {AFC1381F-B127-401C-A523-30C7D257E20B} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-08-13] (Acer Incorporated -> )
Task: {C5F973DE-8CE5-4E82-A225-838543584BF2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE342F1B-C6F3-48AF-9602-FF5B45B6C5EF} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {E0ABA261-5344-4BD7-AA1D-88859E8D9816} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {F8334709-DBA9-42AB-A338-21D38D3C5BDA} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {FAB8E9A8-57BD-45D9-AF23-82EFCC4863C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FEFB3B5E-42FA-4BC1-AA2B-30162847DF24} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Norton Product InstallerIdle.job => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\SymInstallStub.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{592777d0-ccad-4486-8112-9dda9e6d5707}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7f9c1baf-efbb-4069-b4ef-88cadc2a45dd}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\annie\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3179272420-1889258620-954823216-1001 -> about:start
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-08]
Edge HomePage: Default -> about:start
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Goobox) - C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\deflnlkimhpmijlhljikkfdlfjepkjka [2020-10-11]
Edge Extension: (Navigateur Web Google Chrome) - C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kflldjfibkknfjmlppndjpbpgicildhn [2020-06-19]
Edge Profile: C:\Users\annie\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-09-07]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: fpkou95m.default
FF ProfilePath: C:\Users\annie\AppData\Roaming\Mozilla\Firefox\Profiles\fpkou95m.default [2021-09-08]
FF Homepage: Mozilla\Firefox\Profiles\fpkou95m.default -> hxxps://r.orange.fr/r/Oodc_oi_promoHP
FF Extension: (Français Language Pack) - C:\Users\annie\AppData\Roaming\Mozilla\Firefox\Profiles\fpkou95m.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2019-04-17]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2019-04-17]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2019-04-17] []
FF HKLM\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
FF Extension: (PDF Suite 2020 Creator) - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi [2020-01-08]
FF HKLM-x32\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-09-08]
CHR HomePage: Profile 1 -> orange.fr
CHR Extension: (Slides) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-11]
CHR Extension: (Docs) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-11]
CHR Extension: (Google Drive) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-11]
CHR Extension: (Sheets) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Orange page d'accueil) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2020-10-11]
CHR Extension: (Gmail) - C:\Users\annie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Profile: C:\Users\annie\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-08]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-08-13] (Acer Incorporated -> Acer Incorporated)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\FileSyncHelper.exe [2384744 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\OneDriveUpdaterService.exe [2742632 2021-09-04] (Microsoft Corporation -> Microsoft Corporation)
R3 PDF Suite 2020; C:\Program Files\PDF Suite 2020\ws.exe [1972184 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S3 PDF Suite 2020 Creator; C:\Program Files\PDF Suite 2020\creator\common\creator-ws.exe [570840 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
R2 PDF Suite 2020 Update Service; C:\Program Files\PDF Suite 2020\updater-ws.exe [1648088 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1637424 2021-08-26] (WildTangent Inc -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R3 BtFilter; C:\WINDOWS\System32\drivers\btfilter.sys [65472 2017-12-11] (WDKTestCert aswbldsv,131431045756648395 -> Qualcomm)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 MpKslc4f9dbdc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2FE10285-6363-4F66-81BE-90281030EC5E}\MpKslDrv.sys [130296 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-08 20:11 - 2021-09-08 20:11 - 000000000 ____D C:\Users\annie\Downloads\FRST-OlderVersion
2021-09-08 20:07 - 2021-09-08 20:07 - 000356616 _____ C:\Users\annie\Desktop\ZHPDiag.html
2021-09-08 18:12 - 2021-09-08 18:15 - 000000000 ____D C:\Users\annie\Downloads\shexview
2021-09-08 18:12 - 2021-09-08 18:12 - 000073154 _____ C:\Users\annie\Downloads\shexview.zip
2021-09-08 17:45 - 2021-09-08 17:45 - 000001530 _____ C:\Users\annie\Desktop\MBAM.txt
2021-09-08 17:18 - 2020-10-17 13:55 - 000003072 _____ C:\WINDOWS\system32\Tasks\POWER BUTTON
2021-09-08 17:18 - 2020-10-17 13:55 - 000002998 _____ C:\WINDOWS\system32\Tasks\QUICK ACCESS
2021-09-08 17:18 - 2020-08-11 20:54 - 000003852 _____ C:\WINDOWS\system32\Tasks\ACCAGENT
2021-09-08 17:18 - 2020-08-11 20:54 - 000003692 _____ C:\WINDOWS\system32\Tasks\ACERCMUPDATETASK2.1.16258
2021-09-08 17:18 - 2020-08-11 20:54 - 000002782 _____ C:\WINDOWS\system32\Tasks\UBTFRAMEWORKSERVICE
2021-09-08 17:18 - 2020-08-11 20:54 - 000002712 _____ C:\WINDOWS\system32\Tasks\UEIPINVITATION
2021-09-08 17:18 - 2020-08-11 20:54 - 000002328 _____ C:\WINDOWS\system32\Tasks\ACCBACKGROUNDAPPLICATION
2021-09-08 17:15 - 2021-09-08 17:18 - 000000000 ____D C:\AdwCleaner
2021-09-08 17:15 - 2021-09-08 17:15 - 008553680 _____ (Malwarebytes) C:\Users\annie\Downloads\adwcleaner_8.3.0.exe
2021-09-08 17:13 - 2021-09-08 17:13 - 000004815 _____ C:\Users\annie\Desktop\ZHPCleaner (R).txt
2021-09-08 17:01 - 2021-09-08 17:01 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner (1).exe
2021-09-08 17:00 - 2021-09-08 17:00 - 003302272 _____ C:\Users\annie\Downloads\zhpcleaner_2019.1.17.9.exe
2021-09-08 16:56 - 2021-09-08 17:09 - 000004747 _____ C:\Users\annie\Desktop\ZHPCleaner (S).txt
2021-09-08 16:43 - 2021-09-08 17:01 - 000000924 _____ C:\Users\annie\Desktop\ZHPCleaner.lnk
2021-09-08 16:42 - 2021-09-08 16:42 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner.exe
2021-09-08 16:33 - 2021-09-08 16:33 - 000000000 ____D C:\Users\annie\Downloads\Wub
2021-09-08 16:32 - 2021-09-08 16:32 - 001003898 _____ C:\Users\annie\Downloads\Wub.zip
2021-09-07 20:14 - 2021-09-07 20:12 - 000046392 _____ C:\Users\annie\Desktop\FRST.txt
2021-09-07 20:14 - 2021-09-07 20:12 - 000041157 _____ C:\Users\annie\Desktop\Addition.txt
2021-09-07 20:14 - 2021-09-07 20:12 - 000038230 _____ C:\Users\annie\Desktop\Shortcut.txt
2021-09-07 20:12 - 2021-09-07 20:12 - 000038230 _____ C:\Users\annie\Downloads\Shortcut.txt
2021-09-07 20:09 - 2021-09-07 20:12 - 000041157 _____ C:\Users\annie\Downloads\Addition.txt
2021-09-07 20:01 - 2021-09-08 20:30 - 000025901 _____ C:\Users\annie\Downloads\FRST.txt
2021-09-07 20:00 - 2021-09-08 20:30 - 000000000 ____D C:\FRST
2021-09-07 19:59 - 2021-09-08 20:11 - 002302976 _____ (Farbar) C:\Users\annie\Downloads\FRST64.exe
2021-09-07 19:19 - 2021-09-08 20:23 - 000290206 _____ C:\Users\annie\Desktop\ZHPDiag.txt
2021-09-07 19:08 - 2021-09-08 16:43 - 000000000 ____D C:\Users\annie\AppData\Local\ZHP
2021-09-07 19:08 - 2021-09-07 19:08 - 003475608 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPSuite.exe
2021-09-07 19:08 - 2021-09-07 19:08 - 000000914 _____ C:\Users\annie\Desktop\ZHPSuite.lnk
2021-09-07 18:24 - 2021-09-07 18:24 - 000001234 _____ C:\Users\annie\Desktop\Microsoft Edge.lnk
2021-08-29 17:30 - 2021-08-29 17:30 - 000000359 _____ C:\Users\annie\Desktop\Corbeille - Raccourci.lnk
2021-08-20 18:41 - 2021-08-20 18:41 - 003797318 _____ C:\Users\annie\Downloads\Le vaccinateur des Lilas en hommage à Serge Gainsbourg.mp4
2021-08-19 12:59 - 2021-08-19 12:59 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - annie
2021-08-11 16:39 - 2021-08-11 16:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-11 16:39 - 2021-08-11 16:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-11 16:39 - 2021-08-11 16:39 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-11 16:39 - 2021-08-11 16:39 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-11 16:39 - 2021-08-11 16:39 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-11 16:39 - 2021-08-11 16:39 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-11 16:39 - 2021-08-11 16:39 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-11 16:32 - 2021-08-11 16:32 - 000000000 ___HD C:\$WinREAgent
2021-08-08 17:52 - 2021-08-08 17:52 - 000000000 ____D C:\Users\annie\Documents\FAMILLES BOURSON
2021-07-23 13:30 - 2021-07-23 13:30 - 000014152 _____ C:\Users\annie\Downloads\Détails des communications.pdf
2021-07-15 19:26 - 2021-07-15 19:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-15 19:26 - 2021-07-15 19:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-15 18:13 - 2021-07-15 18:13 - 000000286 _____ C:\Users\annie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\USB DISK (F).lnk
2021-07-07 18:09 - 2021-07-07 18:09 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-07 18:09 - 2021-07-07 18:09 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-07 18:09 - 2021-07-07 18:09 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-07 18:09 - 2021-07-07 18:09 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-07 18:08 - 2021-07-07 18:08 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-07 18:08 - 2021-07-07 18:08 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-07 18:08 - 2021-07-07 18:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-17 08:06 - 2021-06-17 08:06 - 000000000 ____D C:\ProgramData\Avast Software
2021-06-17 08:06 - 2021-03-08 21:46 - 000081632 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2021-06-17 08:05 - 2021-06-17 08:05 - 001149536 _____ (Avast Software) C:\Users\annie\Downloads\avast_cleanup_online_setup.exe
2021-06-16 21:30 - 2021-06-16 21:30 - 000000000 _____ C:\Users\annie\AppData\Local\{79630252-E76D-45AF-BA0B-FFE8870D7A74}
2021-06-14 08:17 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-06-13 11:23 - 2021-06-14 08:18 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:23 - 2021-06-14 08:18 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:23 - 2021-06-13 12:25 - 000000000 ____D C:\Users\annie\AppData\Local\NVIDIA Corporation
2021-06-13 11:23 - 2021-06-13 11:23 - 000000000 ____D C:\Users\annie\AppData\Local\NVIDIA
2021-06-13 11:23 - 2021-06-13 11:23 - 000000000 ____D C:\Users\annie\AppData\Local\CEF
2021-06-13 11:23 - 2021-04-07 13:38 - 002817904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2021-06-13 11:23 - 2021-04-07 13:38 - 002171760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2021-06-13 11:23 - 2021-04-07 13:38 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-06-13 11:23 - 2021-03-30 12:57 - 000074608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2021-06-13 11:23 - 2021-03-30 12:57 - 000064880 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2021-06-13 11:22 - 2021-06-14 08:18 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:18 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:17 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-14 08:17 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-13 11:22 - 2021-06-13 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-06-13 11:22 - 2021-03-03 22:49 - 000168304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2021-06-13 11:22 - 2021-03-03 22:49 - 000144240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2021-06-13 11:21 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2021-06-13 11:21 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2021-06-13 11:20 - 2021-06-13 11:21 - 127203936 _____ (NVIDIA Corporation New) C:\Users\annie\Downloads\GeForce_Experience_v3.21.0.36.exe
2021-06-11 16:36 - 2021-06-11 16:36 - 000157375 _____ C:\Users\annie\Downloads\pieces jointes_11_06_2021.zip
2021-06-10 18:44 - 2021-06-10 18:44 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-10 18:44 - 2021-06-10 18:44 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-10 18:44 - 2021-06-10 18:44 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-10 18:44 - 2021-06-10 18:44 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-10 18:44 - 2021-06-10 18:44 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-08 20:23 - 2019-12-29 16:15 - 000000000 ____D C:\Users\annie\AppData\Roaming\ZHP
2021-09-08 20:18 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-08 20:18 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-08 20:03 - 2020-08-11 20:42 - 000936286 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-08 20:03 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-08 20:03 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-08 20:03 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-08 20:00 - 2019-08-18 17:01 - 000000000 ____D C:\Program Files\CCleaner
2021-09-08 20:00 - 2019-08-18 17:01 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-08 20:00 - 2019-02-26 21:04 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-08 19:58 - 2020-08-11 20:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-08 19:58 - 2020-08-11 20:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-08 19:58 - 2019-04-03 18:04 - 000000000 __SHD C:\Users\annie\IntelGraphicsProfiles
2021-09-08 19:50 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-09-08 18:58 - 2020-08-11 20:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-08 18:01 - 2019-12-01 10:15 - 000000000 ___RD C:\Users\annie\Desktop\CHERRIER
2021-09-08 17:30 - 2019-04-07 12:10 - 000000000 ____D C:\Users\annie\AppData\Local\CrashDumps
2021-09-08 17:23 - 2019-02-26 21:24 - 000000000 ____D C:\ProgramData\WildTangent
2021-09-08 17:21 - 2019-02-26 21:25 - 000000000 ____D C:\Program Files\Acer
2021-09-08 17:21 - 2019-02-26 21:19 - 000000000 ____D C:\ProgramData\Acer
2021-09-08 17:21 - 2019-02-26 21:19 - 000000000 ____D C:\Program Files (x86)\Acer
2021-09-08 16:41 - 2019-12-27 19:15 - 000000000 ____D C:\Users\annie\AppData\Roaming\Orange
2021-09-08 16:41 - 2019-02-26 21:25 - 000001244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-08 16:40 - 2019-04-03 18:04 - 000000000 ____D C:\Users\annie\AppData\Roaming\WildTangent
2021-09-08 16:40 - 2019-02-26 21:25 - 000000000 ____D C:\Program Files (x86)\WILDTANGENT GAMES
2021-09-08 16:40 - 2019-02-26 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WILDTANGENT GAMES
2021-09-08 16:38 - 2019-02-26 21:26 - 000000000 ____D C:\ProgramData\install_clap
2021-09-08 16:38 - 2019-02-26 20:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-09-08 16:33 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2021-09-08 16:24 - 2020-08-11 20:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-09-07 19:21 - 2019-08-21 06:14 - 000000000 ____D C:\Users\annie\AppData\Local\D3DSCache
2021-09-07 19:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-07 18:25 - 2019-04-03 18:04 - 000000000 ____D C:\Users\annie\AppData\Local\Packages
2021-09-07 18:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-06 12:48 - 2020-09-13 12:32 - 000000000 ____D C:\Users\annie\Desktop\FAMILLES MAUFRAS
2021-09-05 09:17 - 2019-12-27 19:35 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-09-04 17:28 - 2020-08-11 20:54 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-09-04 17:28 - 2019-12-27 19:35 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-04 11:00 - 2021-01-23 15:14 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-04 08:58 - 2020-06-18 09:05 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-04 08:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-03 10:09 - 2019-02-26 20:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-08-31 08:28 - 2020-01-26 10:35 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-17 01:22 - 2021-01-23 15:14 - 000740168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-08-17 01:22 - 2021-01-23 15:14 - 000486728 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-08-15 21:52 - 2020-08-11 20:54 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-15 21:52 - 2020-08-11 20:54 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-11 19:56 - 2020-08-11 20:33 - 000267384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-11 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-11 19:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-11 16:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-11 16:31 - 2019-04-05 10:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-11 16:30 - 2019-04-05 10:37 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-09 21:29 - 2019-04-03 18:04 - 000000000 ___RD C:\Users\annie\3D Objects
==================== Fichiers à la racine de certains dossiers ========
2021-06-16 21:30 - 2021-06-16 21:30 - 000000000 _____ () C:\Users\annie\AppData\Local\{79630252-E76D-45AF-BA0B-FFE8870D7A74}
==================== SigCheckExt =========================
2021-09-07 19:59 - 2021-09-08 20:11 - 002302976 _____ (Farbar) C:\Users\annie\Downloads\FRST64.exe
2021-03-21 16:58 - 2021-03-21 16:58 - 197613537 _____ C:\Users\annie\Downloads\windows-password-reset.exe
2021-09-08 17:01 - 2021-09-08 17:01 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner (1).exe
2021-09-08 16:42 - 2021-09-08 16:42 - 003289240 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPCleaner.exe
2021-09-08 17:00 - 2021-09-08 17:00 - 003302272 _____ C:\Users\annie\Downloads\zhpcleaner_2019.1.17.9.exe
2021-09-07 19:08 - 2021-09-07 19:08 - 003475608 _____ (Nicolas Coolman) C:\Users\annie\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{046439bf-39f3-11e9-9bbe-806e6f6e6963}
{046439c0-39f3-11e9-9bbe-806e6f6e6963}
{046439c1-39f3-11e9-9bbe-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {70257222-dc09-11ea-9527-e350ca6b501f}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {046439bf-39f3-11e9-9bbe-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {046439c0-39f3-11e9-9bbe-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {046439c1-39f3-11e9-9bbe-806e6f6e6963}
description EFI Network
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {70257224-dc09-11ea-9527-e350ca6b501f}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {70257222-dc09-11ea-9527-e350ca6b501f}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {70257224-dc09-11ea-9527-e350ca6b501f}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{70257225-dc09-11ea-9527-e350ca6b501f}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{70257225-dc09-11ea-9527-e350ca6b501f}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {70257222-dc09-11ea-9527-e350ca6b501f}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {70257224-dc09-11ea-9527-e350ca6b501f}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {70257225-dc09-11ea-9527-e350ca6b501f}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================