Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par cyrie (administrateur) sur LAPTOP-D60AEKPA (Acer Aspire A317-51G) (06-05-2024 08:27:00)
Exécuté depuis C:\Users\cyrie\OneDrive\Bureau\FRST64.exe
Profils chargés: cyrie &
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3527 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe <8>
(C:\Program Files (x86)\Intego\IavService.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavProtection.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxEM.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Intego\elam_ppl\AMSProtectedService.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavWebFilter.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_553b9a82ff9cf770\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_225ceea266d51cd2\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24041.34.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_9.1.10.0_x86__h6adky7gbf63m\DMK_UWP_EntryPoint_Precompiled.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DragonManiaLegends_7.9.201.0_x64__h6adky7gbf63m\DragonManiaLegends.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-06-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138992 2020-08-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [BingWallpaperApp] => C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14046648 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [MicrosoftEdgeAutoLaunch_CE670E7C08165EDC3F23445D1673AC74] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482640 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {5F2944BA-3003-444A-9ABA-A1AF87DFB486} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2935088 2019-04-22] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {D40CF5D1-3C47-4CF5-B30C-BA6FB5CBA55B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41776 2019-04-22] (Acer Incorporated -> )
Task: {0B9F7871-EB11-45B8-91B9-9826B1E39E9C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4794672 2019-04-22] (Acer Incorporated -> )
Task: {0A4F5D1B-3814-4E0D-84F0-FE4600C87517} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {15405533-D790-4F32-9BC4-8C6B9BEF9F2D} - System32\Tasks\App Explorer => C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {49D99704-D5CB-4C75-80CD-E4CB2C36CCCF} - System32\Tasks\CyberGhostAvSchedule => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
Task: {4AFCA17F-E5F7-4559-BEB0-551948F104B5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{B88EBEF2-9B2B-446D-A9C5-F09065D96709} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {05F20A7D-145D-4E60-8F8A-68A8A77F3444} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {6ED96977-B897-41C3-B655-1554A60D0F8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH03VBM17K => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH03VBM17K (Pas de fichier)
Task: {E09D720F-10F1-4821-9CE3-3297AC378EC2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {833B07A1-AC20-40F2-A155-1BDB380DD3C7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {20C1C2BD-E533-4585-B06A-24D7EB5FB18A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {67AACC9F-C115-4AC6-AB91-210009AB47CB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {68BC02E1-523D-4AC6-8B99-3C321986D65B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {ACB9C782-B4E9-43BA-9691-5191BD9D6DC6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {6CDFEE60-19F2-4EC2-AFE7-15140FF4C211} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {581FBAB5-0A3D-4C3A-BC0F-168B77B9CB61} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {9ABF7E83-D36F-455B-AD43-8B6E2B04FB38} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6D5DDE8E-130B-4AA6-933C-1B03ED15035E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B35CA30-A6DF-4F24-96B5-87C6A075E48C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E84F11A0-32DC-4F1C-B352-18186CF5BFF3} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-01-26] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {00A265E8-003A-421F-987D-82051EA6C985} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E30D169-62D1-4A05-BFE9-74C8D340CA2A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C115294-9778-4D0B-8C94-CF9E9B310743} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C5AE682-BC5E-4F4F-A235-68C616944B03} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71C5A6D5-D2B2-4DB5-AE22-5127F1BC39C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5717B9-C96F-4132-BF23-FC8301374D43} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8744AEE2-B86C-40DE-8356-545DB27409F7} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {109A59AA-49BC-4596-9B0C-13448FCC9199} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2491025712-515002546-1273168305-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {DC234D41-EFC3-4BDF-8DA9-A2D28F632DD4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {6E145EB1-9F43-4A3A-A6EA-A6E90D301EDE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C909326-57D9-41B5-8CCC-D6A1AEE73D46} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {1F365794-9942-4C2F-A913-4358022A5860} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-09] (Acer Incorporated -> Acer Incorporated)
Task: {8B50A325-05B3-436C-9EEC-552F9D0A440B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpDomain] home
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-06]
Edge HomePage: Default -> about:blank
Edge NewTab: Default -> Active:"chrome-extension://fodkmcnpjapcffbmhelopfjhlmdmnbll/index.html"
Edge Extension: (Simple New Tab) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fodkmcnpjapcffbmhelopfjhlmdmnbll [2024-04-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-04-16]
Edge NewTab: Profile 1 -> Active:"chrome-extension://fodkmcnpjapcffbmhelopfjhlmdmnbll/index.html"
Edge Extension: (Simple New Tab) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fodkmcnpjapcffbmhelopfjhlmdmnbll [2024-04-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-16]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-16]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default [2024-05-06]
CHR HomePage: Default -> hxxp://www.sfr.fr/
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-05-03]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-20]
CHR Extension: (Alerte Bons Plans eBuyClub) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjjddemkcndmbbeeibicagaobbijjgmm [2024-04-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Office Online - Copier et coller) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Tabji) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfljkfghflbjebbccojlpakfcjibecb [2023-06-22]
CHR Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lelehponoadknmgbnmgkcniabpopckme [2024-04-20]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmpchkfhgoclkajbifladignhbanjdk [2024-05-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Signal Spam) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-09]
CHR Extension: (Facile2Soutenir) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocneihgafjlmmglcedbcfjbchihkclne [2021-07-26]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-14]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-20]
CHR Extension: (Chrome Updates) - C:\Windows\InternalKernelGrid4 [2024-01-20]
CHR HKU\S-1-5-21-2491025712-515002546-1273168305-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300336 2019-04-22] (Acer Incorporated -> Acer Incorporated)
R2 AMSProtectedService; C:\Program Files (x86)\Intego\elam_ppl\amsprotectedservice.exe [639304 2020-05-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4974416 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S3 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-04-15] (HP Inc. -> HP Inc.)
R2 IntegoPreventions; C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe [5841320 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
S2 IntegoPreventions64; C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe [4825784 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoService; C:\Program Files (x86)\Intego\IavService.exe [6845752 2023-03-07] (Intego Inc -> Intego Inc)
R2 IntegoWebfilter; C:\Program Files (x86)\Intego\iavwebfilter.exe [6219712 2023-03-07] (Intego Inc -> Intego Inc)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S0 AMSElamDriver; C:\WINDOWS\System32\drivers\amselam.sys [21976 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [210400 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2020-03-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 cbfilter20-0; C:\Program Files (x86)\Intego\cbfilter20.sys [434208 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbprocess20-0; C:\Program Files (x86)\Intego\cbprocess20.sys [77344 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbregistry20-0; C:\Program Files (x86)\Intego\cbregistry20.sys [112672 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 iwf; C:\WINDOWS\system32\DRIVERS\iwf.sys [111288 2023-01-15] (Intego Inc -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 08:27 - 2024-05-06 08:28 - 000030251 _____ C:\Users\cyrie\OneDrive\Bureau\FRST.txt
2024-05-06 08:25 - 2024-05-06 08:25 - 002394112 _____ (Farbar) C:\Users\cyrie\OneDrive\Bureau\FRST64.exe
2024-05-06 08:25 - 2024-05-06 08:25 - 002394112 _____ (Farbar) C:\Users\cyrie\Downloads\FRST64 (1).exe
2024-05-05 16:50 - 2024-05-05 17:13 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2024-05-05 16:49 - 2024-05-05 16:50 - 050611432 _____ (Glarysoft Ltd) C:\Users\cyrie\Downloads\mhsetup.exe
2024-05-05 16:45 - 2024-05-05 16:48 - 000000000 ____D C:\ProgramData\HitmanPro
2024-05-05 16:45 - 2024-05-05 16:45 - 014287912 _____ (Sophos B.V.) C:\Users\cyrie\Downloads\HitmanPro_x64.exe
2024-05-05 14:06 - 2024-05-05 14:06 - 000809482 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-05 14:06 - 2024-05-05 14:06 - 000156934 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-05 11:40 - 2024-05-05 11:40 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\com.spyshelter
2024-05-05 11:39 - 2024-05-05 16:42 - 000000000 ____D C:\ProgramData\SpyShelter
2024-05-01 07:50 - 2024-05-01 07:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-28 10:54 - 2024-04-28 10:54 - 000011384 _____ C:\Users\cyrie\Downloads\Vinted-S1263027047 (1).pdf
2024-04-28 10:52 - 2024-04-28 10:52 - 000011334 _____ C:\Users\cyrie\Downloads\Vinted-S1263712701.pdf
2024-04-27 17:17 - 2024-04-27 17:17 - 000011384 _____ C:\Users\cyrie\Downloads\Vinted-S1263027047.pdf
2024-04-26 17:17 - 2024-04-26 17:17 - 000227347 _____ C:\Users\cyrie\Downloads\LISTE REMEDES HOMEOPATIQUES PATHOLOGIES COURANTES.pdf
2024-04-26 16:11 - 2024-04-26 16:11 - 000395776 _____ C:\Users\cyrie\Downloads\CC_22041720_240426_295_E0024233471_23.pdf
2024-04-26 16:10 - 2024-04-26 16:10 - 000386784 _____ C:\Users\cyrie\Downloads\CC_22041720_240426_295_E0024233471_22.pdf
2024-04-26 16:08 - 2024-04-26 16:08 - 000019466 _____ C:\Users\cyrie\Downloads\CI_22041720_240426_295_E0024233471_21.pdf
2024-04-13 16:49 - 2024-04-13 16:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\boomzap
2024-04-13 16:48 - 2024-04-13 16:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Polda 7
2024-04-08 17:04 - 2024-04-08 17:04 - 000000000 ____D C:\Users\cyrie\AppData\LocalLow\World-LooM
2024-04-08 16:49 - 2024-04-08 16:49 - 000001118 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotel Ever After - Ellas Wish Collectors Edition.lnk
2024-04-08 16:48 - 2024-04-08 16:48 - 000000000 ____D C:\Program Files (x86)\Hotel Ever After - Ellas Wish Collectors Edition
2024-04-08 16:34 - 2024-04-08 16:34 - 000000000 ____D C:\Users\cyrie\AppData\Local\GameAnalytics
2024-04-08 16:34 - 2024-04-08 16:34 - 000000000 ____D C:\Users\cyrie\AppData\Local\FurnishMaster
2024-04-08 15:49 - 2024-04-08 15:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\MMFApplications
2024-04-08 15:47 - 2024-04-08 15:47 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\SevenSails
2024-04-08 15:35 - 2024-04-08 15:35 - 000000000 ____D C:\Users\cyrie\AppData\Local\mod.io
2024-04-08 15:34 - 2024-04-08 15:34 - 000000000 ____D C:\Users\cyrie\AppData\LocalLow\Frozen District
2024-04-08 15:21 - 2024-04-08 15:21 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\DAEMON Tools Lite
2024-04-08 15:21 - 2024-04-08 15:21 - 000000000 ____D C:\Users\cyrie\AppData\Local\Disc_Soft_FZE_LLC
2024-04-08 15:20 - 2024-04-08 15:20 - 000063696 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2024-04-08 15:20 - 2024-04-08 15:20 - 000042256 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Disc-Soft
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2024-04-08 15:19 - 2024-04-08 15:19 - 000000000 ____D C:\ProgramData\Disc-Soft
2024-04-08 08:22 - 2024-04-08 08:22 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\MMC
2024-04-07 17:19 - 2024-05-06 08:27 - 000000000 ____D C:\FRST
2024-04-06 09:39 - 2024-04-06 09:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 08:29 - 2021-06-09 10:25 - 000000000 ____D C:\ProgramData\Intego
2024-05-06 08:29 - 2020-12-14 17:44 - 000000000 ____D C:\Users\cyrie\AppData\Local\CyberGhost
2024-05-06 08:27 - 2022-10-05 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-06 07:50 - 2020-12-14 16:46 - 000000000 ____D C:\Users\cyrie\AppData\Local\Host App Service
2024-05-06 07:47 - 2020-12-14 16:58 - 000000000 __SHD C:\Users\cyrie\IntelGraphicsProfiles
2024-05-06 07:47 - 2020-06-03 18:46 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-05 17:58 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-05 17:13 - 2020-12-14 19:51 - 000000000 ____D C:\ProgramData\GlarySoft
2024-05-05 16:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-05 16:50 - 2020-12-14 18:24 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\GlarySoft
2024-05-05 16:42 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-05-05 14:06 - 2022-10-05 18:59 - 001805842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-05 11:42 - 2022-10-05 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-05 11:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-05-05 11:42 - 2021-03-13 07:20 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-05 11:42 - 2020-06-03 18:20 - 000000000 ___HD C:\Intel
2024-05-05 11:41 - 2022-05-07 07:17 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2024-05-05 09:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-05 08:08 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-05 07:57 - 2023-11-04 20:08 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-05 07:57 - 2020-12-23 15:59 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-05 07:57 - 2020-12-14 17:11 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-02 18:07 - 2020-12-14 17:42 - 000000000 ____D C:\Users\cyrie\AppData\Local\CrashDumps
2024-05-01 07:50 - 2020-12-14 17:05 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-26 07:46 - 2020-12-14 16:58 - 000000000 ____D C:\Users\cyrie\AppData\Local\Packages
2024-04-26 07:45 - 2022-12-04 09:35 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-04-25 18:18 - 2022-10-05 18:55 - 000495496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-25 18:16 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-04-25 11:38 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-25 11:35 - 2022-05-07 07:25 - 000077312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2024-04-25 11:35 - 2022-05-07 07:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2024-04-25 11:35 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-25 11:30 - 2022-10-05 18:56 - 003214336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-25 08:11 - 2024-01-15 17:06 - 000000274 _____ C:\WINDOWS\system32\NvWinSearchOptimizer.ps1
2024-04-22 11:28 - 2022-10-06 06:49 - 000000000 ____D C:\Users\cyrie\AppData\Local\D3DSCache
2024-04-16 08:02 - 2020-06-03 19:11 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-13 17:09 - 2023-11-13 08:53 - 000000000 ____D C:\Users\cyrie\AppData\Local\VirtualStore
2024-04-13 16:49 - 2020-12-26 10:01 - 000000000 ___RD C:\Users\cyrie\OneDrive\Documents\Jeux
2024-04-12 18:13 - 2023-09-29 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-04-12 18:13 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 13:43 - 2020-12-18 19:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-12 13:33 - 2020-12-18 19:31 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-08 16:34 - 2021-08-12 17:28 - 000000000 ____D C:\Users\cyrie\AppData\Local\UnrealEngine
2024-04-06 09:40 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par cyrie (administrateur) sur LAPTOP-D60AEKPA (Acer Aspire A317-51G) (06-05-2024 08:27:00)
Exécuté depuis C:\Users\cyrie\OneDrive\Bureau\FRST64.exe
Profils chargés: cyrie &
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3527 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe <8>
(C:\Program Files (x86)\Intego\IavService.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavProtection.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxEM.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Intego\elam_ppl\AMSProtectedService.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavWebFilter.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_553b9a82ff9cf770\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_225ceea266d51cd2\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24041.34.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_9.1.10.0_x86__h6adky7gbf63m\DMK_UWP_EntryPoint_Precompiled.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DragonManiaLegends_7.9.201.0_x64__h6adky7gbf63m\DragonManiaLegends.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-06-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138992 2020-08-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [BingWallpaperApp] => C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14046648 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [MicrosoftEdgeAutoLaunch_CE670E7C08165EDC3F23445D1673AC74] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482640 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {5F2944BA-3003-444A-9ABA-A1AF87DFB486} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2935088 2019-04-22] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {D40CF5D1-3C47-4CF5-B30C-BA6FB5CBA55B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41776 2019-04-22] (Acer Incorporated -> )
Task: {0B9F7871-EB11-45B8-91B9-9826B1E39E9C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4794672 2019-04-22] (Acer Incorporated -> )
Task: {0A4F5D1B-3814-4E0D-84F0-FE4600C87517} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {15405533-D790-4F32-9BC4-8C6B9BEF9F2D} - System32\Tasks\App Explorer => C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {49D99704-D5CB-4C75-80CD-E4CB2C36CCCF} - System32\Tasks\CyberGhostAvSchedule => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
Task: {4AFCA17F-E5F7-4559-BEB0-551948F104B5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{B88EBEF2-9B2B-446D-A9C5-F09065D96709} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {05F20A7D-145D-4E60-8F8A-68A8A77F3444} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {6ED96977-B897-41C3-B655-1554A60D0F8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH03VBM17K => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH03VBM17K (Pas de fichier)
Task: {E09D720F-10F1-4821-9CE3-3297AC378EC2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {833B07A1-AC20-40F2-A155-1BDB380DD3C7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {20C1C2BD-E533-4585-B06A-24D7EB5FB18A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {67AACC9F-C115-4AC6-AB91-210009AB47CB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {68BC02E1-523D-4AC6-8B99-3C321986D65B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {ACB9C782-B4E9-43BA-9691-5191BD9D6DC6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {6CDFEE60-19F2-4EC2-AFE7-15140FF4C211} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {581FBAB5-0A3D-4C3A-BC0F-168B77B9CB61} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {9ABF7E83-D36F-455B-AD43-8B6E2B04FB38} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6D5DDE8E-130B-4AA6-933C-1B03ED15035E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B35CA30-A6DF-4F24-96B5-87C6A075E48C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E84F11A0-32DC-4F1C-B352-18186CF5BFF3} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-01-26] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {00A265E8-003A-421F-987D-82051EA6C985} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E30D169-62D1-4A05-BFE9-74C8D340CA2A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C115294-9778-4D0B-8C94-CF9E9B310743} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C5AE682-BC5E-4F4F-A235-68C616944B03} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71C5A6D5-D2B2-4DB5-AE22-5127F1BC39C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5717B9-C96F-4132-BF23-FC8301374D43} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8744AEE2-B86C-40DE-8356-545DB27409F7} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {109A59AA-49BC-4596-9B0C-13448FCC9199} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2491025712-515002546-1273168305-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {DC234D41-EFC3-4BDF-8DA9-A2D28F632DD4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {6E145EB1-9F43-4A3A-A6EA-A6E90D301EDE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C909326-57D9-41B5-8CCC-D6A1AEE73D46} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {1F365794-9942-4C2F-A913-4358022A5860} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-09] (Acer Incorporated -> Acer Incorporated)
Task: {8B50A325-05B3-436C-9EEC-552F9D0A440B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpDomain] home
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-06]
Edge HomePage: Default -> about:blank
Edge NewTab: Default -> Active:"chrome-extension://fodkmcnpjapcffbmhelopfjhlmdmnbll/index.html"
Edge Extension: (Simple New Tab) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fodkmcnpjapcffbmhelopfjhlmdmnbll [2024-04-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-04-16]
Edge NewTab: Profile 1 -> Active:"chrome-extension://fodkmcnpjapcffbmhelopfjhlmdmnbll/index.html"
Edge Extension: (Simple New Tab) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fodkmcnpjapcffbmhelopfjhlmdmnbll [2024-04-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-16]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-16]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default [2024-05-06]
CHR HomePage: Default -> hxxp://www.sfr.fr/
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-05-03]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-20]
CHR Extension: (Alerte Bons Plans eBuyClub) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjjddemkcndmbbeeibicagaobbijjgmm [2024-04-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Office Online - Copier et coller) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Tabji) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfljkfghflbjebbccojlpakfcjibecb [2023-06-22]
CHR Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lelehponoadknmgbnmgkcniabpopckme [2024-04-20]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmpchkfhgoclkajbifladignhbanjdk [2024-05-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Signal Spam) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-09]
CHR Extension: (Facile2Soutenir) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocneihgafjlmmglcedbcfjbchihkclne [2021-07-26]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-14]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-20]
CHR Extension: (Chrome Updates) - C:\Windows\InternalKernelGrid4 [2024-01-20]
CHR HKU\S-1-5-21-2491025712-515002546-1273168305-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300336 2019-04-22] (Acer Incorporated -> Acer Incorporated)
R2 AMSProtectedService; C:\Program Files (x86)\Intego\elam_ppl\amsprotectedservice.exe [639304 2020-05-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4974416 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S3 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-04-15] (HP Inc. -> HP Inc.)
R2 IntegoPreventions; C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe [5841320 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
S2 IntegoPreventions64; C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe [4825784 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoService; C:\Program Files (x86)\Intego\IavService.exe [6845752 2023-03-07] (Intego Inc -> Intego Inc)
R2 IntegoWebfilter; C:\Program Files (x86)\Intego\iavwebfilter.exe [6219712 2023-03-07] (Intego Inc -> Intego Inc)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S0 AMSElamDriver; C:\WINDOWS\System32\drivers\amselam.sys [21976 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [210400 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2020-03-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 cbfilter20-0; C:\Program Files (x86)\Intego\cbfilter20.sys [434208 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbprocess20-0; C:\Program Files (x86)\Intego\cbprocess20.sys [77344 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbregistry20-0; C:\Program Files (x86)\Intego\cbregistry20.sys [112672 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2024-04-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 iwf; C:\WINDOWS\system32\DRIVERS\iwf.sys [111288 2023-01-15] (Intego Inc -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 08:27 - 2024-05-06 08:28 - 000030251 _____ C:\Users\cyrie\OneDrive\Bureau\FRST.txt
2024-05-06 08:25 - 2024-05-06 08:25 - 002394112 _____ (Farbar) C:\Users\cyrie\OneDrive\Bureau\FRST64.exe
2024-05-06 08:25 - 2024-05-06 08:25 - 002394112 _____ (Farbar) C:\Users\cyrie\Downloads\FRST64 (1).exe
2024-05-05 16:50 - 2024-05-05 17:13 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2024-05-05 16:49 - 2024-05-05 16:50 - 050611432 _____ (Glarysoft Ltd) C:\Users\cyrie\Downloads\mhsetup.exe
2024-05-05 16:45 - 2024-05-05 16:48 - 000000000 ____D C:\ProgramData\HitmanPro
2024-05-05 16:45 - 2024-05-05 16:45 - 014287912 _____ (Sophos B.V.) C:\Users\cyrie\Downloads\HitmanPro_x64.exe
2024-05-05 14:06 - 2024-05-05 14:06 - 000809482 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-05 14:06 - 2024-05-05 14:06 - 000156934 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-05 11:40 - 2024-05-05 11:40 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\com.spyshelter
2024-05-05 11:39 - 2024-05-05 16:42 - 000000000 ____D C:\ProgramData\SpyShelter
2024-05-01 07:50 - 2024-05-01 07:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-28 10:54 - 2024-04-28 10:54 - 000011384 _____ C:\Users\cyrie\Downloads\Vinted-S1263027047 (1).pdf
2024-04-28 10:52 - 2024-04-28 10:52 - 000011334 _____ C:\Users\cyrie\Downloads\Vinted-S1263712701.pdf
2024-04-27 17:17 - 2024-04-27 17:17 - 000011384 _____ C:\Users\cyrie\Downloads\Vinted-S1263027047.pdf
2024-04-26 17:17 - 2024-04-26 17:17 - 000227347 _____ C:\Users\cyrie\Downloads\LISTE REMEDES HOMEOPATIQUES PATHOLOGIES COURANTES.pdf
2024-04-26 16:11 - 2024-04-26 16:11 - 000395776 _____ C:\Users\cyrie\Downloads\CC_22041720_240426_295_E0024233471_23.pdf
2024-04-26 16:10 - 2024-04-26 16:10 - 000386784 _____ C:\Users\cyrie\Downloads\CC_22041720_240426_295_E0024233471_22.pdf
2024-04-26 16:08 - 2024-04-26 16:08 - 000019466 _____ C:\Users\cyrie\Downloads\CI_22041720_240426_295_E0024233471_21.pdf
2024-04-13 16:49 - 2024-04-13 16:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\boomzap
2024-04-13 16:48 - 2024-04-13 16:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Polda 7
2024-04-08 17:04 - 2024-04-08 17:04 - 000000000 ____D C:\Users\cyrie\AppData\LocalLow\World-LooM
2024-04-08 16:49 - 2024-04-08 16:49 - 000001118 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotel Ever After - Ellas Wish Collectors Edition.lnk
2024-04-08 16:48 - 2024-04-08 16:48 - 000000000 ____D C:\Program Files (x86)\Hotel Ever After - Ellas Wish Collectors Edition
2024-04-08 16:34 - 2024-04-08 16:34 - 000000000 ____D C:\Users\cyrie\AppData\Local\GameAnalytics
2024-04-08 16:34 - 2024-04-08 16:34 - 000000000 ____D C:\Users\cyrie\AppData\Local\FurnishMaster
2024-04-08 15:49 - 2024-04-08 15:49 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\MMFApplications
2024-04-08 15:47 - 2024-04-08 15:47 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\SevenSails
2024-04-08 15:35 - 2024-04-08 15:35 - 000000000 ____D C:\Users\cyrie\AppData\Local\mod.io
2024-04-08 15:34 - 2024-04-08 15:34 - 000000000 ____D C:\Users\cyrie\AppData\LocalLow\Frozen District
2024-04-08 15:21 - 2024-04-08 15:21 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\DAEMON Tools Lite
2024-04-08 15:21 - 2024-04-08 15:21 - 000000000 ____D C:\Users\cyrie\AppData\Local\Disc_Soft_FZE_LLC
2024-04-08 15:20 - 2024-04-08 15:20 - 000063696 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2024-04-08 15:20 - 2024-04-08 15:20 - 000042256 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Disc-Soft
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2024-04-08 15:20 - 2024-04-08 15:20 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2024-04-08 15:19 - 2024-04-08 15:19 - 000000000 ____D C:\ProgramData\Disc-Soft
2024-04-08 08:22 - 2024-04-08 08:22 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\MMC
2024-04-07 17:19 - 2024-05-06 08:27 - 000000000 ____D C:\FRST
2024-04-06 09:39 - 2024-04-06 09:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 08:29 - 2021-06-09 10:25 - 000000000 ____D C:\ProgramData\Intego
2024-05-06 08:29 - 2020-12-14 17:44 - 000000000 ____D C:\Users\cyrie\AppData\Local\CyberGhost
2024-05-06 08:27 - 2022-10-05 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-06 07:50 - 2020-12-14 16:46 - 000000000 ____D C:\Users\cyrie\AppData\Local\Host App Service
2024-05-06 07:47 - 2020-12-14 16:58 - 000000000 __SHD C:\Users\cyrie\IntelGraphicsProfiles
2024-05-06 07:47 - 2020-06-03 18:46 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-05 17:58 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-05 17:13 - 2020-12-14 19:51 - 000000000 ____D C:\ProgramData\GlarySoft
2024-05-05 16:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-05 16:50 - 2020-12-14 18:24 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\GlarySoft
2024-05-05 16:42 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-05-05 14:06 - 2022-10-05 18:59 - 001805842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-05 11:42 - 2022-10-05 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-05 11:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-05-05 11:42 - 2021-03-13 07:20 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-05 11:42 - 2020-06-03 18:20 - 000000000 ___HD C:\Intel
2024-05-05 11:41 - 2022-05-07 07:17 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2024-05-05 09:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-05 08:08 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-05 07:57 - 2023-11-04 20:08 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-05 07:57 - 2020-12-23 15:59 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-05 07:57 - 2020-12-14 17:11 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-02 18:07 - 2020-12-14 17:42 - 000000000 ____D C:\Users\cyrie\AppData\Local\CrashDumps
2024-05-01 07:50 - 2020-12-14 17:05 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-26 07:46 - 2020-12-14 16:58 - 000000000 ____D C:\Users\cyrie\AppData\Local\Packages
2024-04-26 07:45 - 2022-12-04 09:35 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-04-25 18:18 - 2022-10-05 18:55 - 000495496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-25 18:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-04-25 18:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-25 18:16 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-04-25 11:38 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-25 11:35 - 2022-05-07 07:25 - 000077312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2024-04-25 11:35 - 2022-05-07 07:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2024-04-25 11:35 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-25 11:30 - 2022-10-05 18:56 - 003214336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-25 08:11 - 2024-01-15 17:06 - 000000274 _____ C:\WINDOWS\system32\NvWinSearchOptimizer.ps1
2024-04-22 11:28 - 2022-10-06 06:49 - 000000000 ____D C:\Users\cyrie\AppData\Local\D3DSCache
2024-04-16 08:02 - 2020-06-03 19:11 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-13 17:09 - 2023-11-13 08:53 - 000000000 ____D C:\Users\cyrie\AppData\Local\VirtualStore
2024-04-13 16:49 - 2020-12-26 10:01 - 000000000 ___RD C:\Users\cyrie\OneDrive\Documents\Jeux
2024-04-12 18:13 - 2023-09-29 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-04-12 18:13 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 13:43 - 2020-12-18 19:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-12 13:33 - 2020-12-18 19:31 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-08 16:34 - 2021-08-12 17:28 - 000000000 ____D C:\Users\cyrie\AppData\Local\UnrealEngine
2024-04-06 09:40 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================