Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06.04.2024 01
Exécuté par cyrie (administrateur) sur LAPTOP-D60AEKPA (Acer Aspire A317-51G) (07-04-2024 17:20:25)
Exécuté depuis C:\Users\cyrie\Downloads\FRST64.exe
Profils chargés: cyrie
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3374 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.234.783.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Intego\IavService.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavProtection.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Plugin\AppMonitor\AppMonitorPlugIn.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <18>
(DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <52>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Intego\elam_ppl\AMSProtectedService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavWebFilter.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_553b9a82ff9cf770\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_225ceea266d51cd2\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_9.0.12.0_x86__h6adky7gbf63m\DMK_UWP_EntryPoint_Precompiled.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-06-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138992 2020-08-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [BingWallpaperApp] => C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14046648 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [MicrosoftEdgeAutoLaunch_CE670E7C08165EDC3F23445D1673AC74] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.106\Installer\chrmstp.exe [2024-04-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {5F2944BA-3003-444A-9ABA-A1AF87DFB486} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2935088 2019-04-22] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {D40CF5D1-3C47-4CF5-B30C-BA6FB5CBA55B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41776 2019-04-22] (Acer Incorporated -> )
Task: {0B9F7871-EB11-45B8-91B9-9826B1E39E9C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4794672 2019-04-22] (Acer Incorporated -> )
Task: {0A4F5D1B-3814-4E0D-84F0-FE4600C87517} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {15405533-D790-4F32-9BC4-8C6B9BEF9F2D} - System32\Tasks\App Explorer => C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {49D99704-D5CB-4C75-80CD-E4CB2C36CCCF} - System32\Tasks\CyberGhostAvSchedule => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
Task: {43D1F6A5-58C5-40E3-8E8E-5D2DA8B42C27} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-14] (Google LLC -> Google LLC)
Task: {A03EC7C0-9EBF-48B7-ACC7-45D6D065868C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-14] (Google LLC -> Google LLC)
Task: {05F20A7D-145D-4E60-8F8A-68A8A77F3444} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {6ED96977-B897-41C3-B655-1554A60D0F8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH03VBM17K => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH03VBM17K (Pas de fichier)
Task: {E83927A8-4A88-475C-B486-3F873633141E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {617DA2DF-7EB5-445E-AF28-272ADF3D5750} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {C605436B-4412-4920-A484-D0A1FA1E8C34} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {50205DD1-1169-4E09-A844-63667DC2921B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DE1A040-F18C-4B29-B381-B7124330DF32} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {ACB9C782-B4E9-43BA-9691-5191BD9D6DC6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {6CDFEE60-19F2-4EC2-AFE7-15140FF4C211} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {581FBAB5-0A3D-4C3A-BC0F-168B77B9CB61} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {9ABF7E83-D36F-455B-AD43-8B6E2B04FB38} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6D5DDE8E-130B-4AA6-933C-1B03ED15035E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B35CA30-A6DF-4F24-96B5-87C6A075E48C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E84F11A0-32DC-4F1C-B352-18186CF5BFF3} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-01-26] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {00A265E8-003A-421F-987D-82051EA6C985} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E30D169-62D1-4A05-BFE9-74C8D340CA2A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C115294-9778-4D0B-8C94-CF9E9B310743} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C5AE682-BC5E-4F4F-A235-68C616944B03} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71C5A6D5-D2B2-4DB5-AE22-5127F1BC39C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5717B9-C96F-4132-BF23-FC8301374D43} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8744AEE2-B86C-40DE-8356-545DB27409F7} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {109A59AA-49BC-4596-9B0C-13448FCC9199} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2491025712-515002546-1273168305-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {DC234D41-EFC3-4BDF-8DA9-A2D28F632DD4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {6E145EB1-9F43-4A3A-A6EA-A6E90D301EDE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C909326-57D9-41B5-8CCC-D6A1AEE73D46} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {1F365794-9942-4C2F-A913-4358022A5860} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-09] (Acer Incorporated -> Acer Incorporated)
Task: {8B50A325-05B3-436C-9EEC-552F9D0A440B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpDomain] home
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-07]
Edge HomePage: Default -> about:blank
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default [2024-04-07]
CHR HomePage: Default -> hxxp://www.sfr.fr/
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-04-04]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-20]
CHR Extension: (Alerte Bons Plans eBuyClub) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjjddemkcndmbbeeibicagaobbijjgmm [2024-02-07]
CHR Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Office Online - Copier et coller) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Tabji) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfljkfghflbjebbccojlpakfcjibecb [2023-06-22]
CHR Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lelehponoadknmgbnmgkcniabpopckme [2024-04-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Signal Spam) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-09]
CHR Extension: (Facile2Soutenir) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocneihgafjlmmglcedbcfjbchihkclne [2021-07-26]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-14]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-20]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkofdnfadkamabkgjdjcddeopopbdjhg [2024-03-24]
CHR Extension: (Chrome Updates) - C:\Windows\InternalKernelGrid4 [2024-01-20]
CHR HKU\S-1-5-21-2491025712-515002546-1273168305-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300336 2019-04-22] (Acer Incorporated -> Acer Incorporated)
R2 AMSProtectedService; C:\Program Files (x86)\Intego\elam_ppl\amsprotectedservice.exe [639304 2020-05-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
S3 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S3 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-04-15] (HP Inc. -> HP Inc.)
R2 IntegoPreventions; C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe [5841320 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoPreventions64; C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe [4825784 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoService; C:\Program Files (x86)\Intego\IavService.exe [6845752 2023-03-07] (Intego Inc -> Intego Inc)
R2 IntegoWebfilter; C:\Program Files (x86)\Intego\iavwebfilter.exe [6219712 2023-03-07] (Intego Inc -> Intego Inc)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S0 AMSElamDriver; C:\WINDOWS\System32\drivers\amselam.sys [21976 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [210400 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2020-03-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 cbfilter20-0; C:\Program Files (x86)\Intego\cbfilter20.sys [434208 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbprocess20-0; C:\Program Files (x86)\Intego\cbprocess20.sys [77344 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbregistry20-0; C:\Program Files (x86)\Intego\cbregistry20.sys [112672 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
S3 iwf; C:\WINDOWS\system32\DRIVERS\iwf.sys [111288 2023-01-15] (Intego Inc -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-07 17:20 - 2024-04-07 17:21 - 000029047 _____ C:\Users\cyrie\Downloads\FRST.txt
2024-04-07 17:19 - 2024-04-07 17:20 - 000000000 ____D C:\FRST
2024-04-07 17:18 - 2024-04-07 17:18 - 002393600 _____ (Farbar) C:\Users\cyrie\Downloads\FRST64.exe
2024-04-07 16:54 - 2024-04-07 16:54 - 000809482 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-07 16:54 - 2024-04-07 16:54 - 000156934 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-06 09:39 - 2024-04-06 09:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-05 09:00 - 2024-04-05 09:00 - 000243680 _____ C:\Users\cyrie\Downloads\PDF remplissable Consentement DT.pdf
2024-04-03 11:27 - 2024-04-03 11:27 - 000011318 _____ C:\Users\cyrie\Downloads\Vinted-S1223965269.pdf
2024-04-03 08:45 - 2024-04-03 08:45 - 176693471 _____ C:\Users\cyrie\Downloads\Animal.Kingdom.rar
2024-04-02 16:57 - 2024-04-02 16:57 - 000026196 _____ C:\Users\cyrie\Downloads\Extrait de comptes au 2024-04-01.pdf
2024-04-02 14:02 - 2024-04-02 14:02 - 000171591 _____ C:\Users\cyrie\Downloads\RemboursementSoins27112023.pdf
2024-04-01 22:44 - 2024-04-01 22:44 - 000011344 _____ C:\Users\cyrie\Downloads\Vinted-S1221475578.pdf
2024-03-27 19:11 - 2024-03-27 19:11 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-03-27 12:26 - 2024-03-27 12:27 - 088556396 _____ C:\Users\cyrie\Downloads\VID_20240327_094813.mp4
2024-03-27 10:55 - 2024-03-27 10:55 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-27 10:54 - 2024-03-27 10:54 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-22 17:21 - 2024-03-22 17:21 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Network
2024-03-22 17:20 - 2024-03-22 17:20 - 000000020 ___SH C:\Users\defaultuser100000\ntuser.ini
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\Menu Démarrer
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Historique
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 __SHD C:\Users\defaultuser100000\IntelGraphicsProfiles
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Protect
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Credentials
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Vault
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\GlarySoft
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\LocalLow\Intel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\VirtualStore
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA Corporation
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Intel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ConnectedDevicesPlatform
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\ansel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000
2024-03-22 17:20 - 2020-06-03 19:06 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Host App Service
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-07 17:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-07 17:01 - 2020-12-14 17:05 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-07 16:54 - 2022-10-05 18:59 - 001805842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-07 16:54 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-07 16:47 - 2022-10-05 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-07 16:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-07 16:47 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-07 16:47 - 2021-03-13 07:20 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-07 16:47 - 2020-12-14 16:58 - 000000000 __SHD C:\Users\cyrie\IntelGraphicsProfiles
2024-04-07 16:47 - 2020-06-03 18:46 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-07 16:47 - 2020-06-03 18:20 - 000000000 ___HD C:\Intel
2024-04-07 16:46 - 2022-05-07 07:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-04-07 16:46 - 2021-06-09 10:25 - 000000000 ____D C:\ProgramData\Intego
2024-04-07 14:41 - 2022-10-05 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-07 14:21 - 2020-12-14 19:51 - 000000000 ____D C:\ProgramData\GlarySoft
2024-04-07 10:56 - 2020-12-14 17:44 - 000000000 ____D C:\Users\cyrie\AppData\Local\CyberGhost
2024-04-07 08:35 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-07 07:57 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-07 07:54 - 2020-12-14 16:46 - 000000000 ____D C:\Users\cyrie\AppData\Local\Host App Service
2024-04-06 09:40 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-06 09:40 - 2020-06-03 19:11 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-06 06:18 - 2020-12-23 15:59 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-03 18:01 - 2023-11-04 20:08 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-03 17:58 - 2022-10-05 19:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-03 17:58 - 2022-10-05 19:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-03 11:39 - 2022-10-06 06:49 - 000000000 ____D C:\Users\cyrie\AppData\Local\D3DSCache
2024-04-01 21:19 - 2020-12-14 17:42 - 000000000 ____D C:\Users\cyrie\AppData\Local\CrashDumps
2024-03-30 18:07 - 2020-12-14 16:58 - 000000000 ____D C:\Users\cyrie\AppData\Local\Packages
2024-03-30 18:07 - 2020-12-14 16:43 - 000000000 ____D C:\ProgramData\Packages
2024-03-28 19:07 - 2022-10-05 18:57 - 000000000 ____D C:\Users\cyrie
2024-03-28 09:20 - 2021-10-20 08:54 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\Excel
2024-03-28 07:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-28 07:09 - 2022-12-04 09:35 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-03-27 19:12 - 2022-10-05 18:55 - 000495496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-27 17:04 - 2022-04-23 17:37 - 000000000 ____D C:\Program Files\CyberGhost 8
2024-03-27 11:07 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-27 10:59 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-03-27 10:55 - 2022-10-05 18:56 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-23 06:19 - 2023-02-16 09:13 - 000000000 ____D C:\Program Files\WinRAR
2024-03-23 06:19 - 2020-12-26 09:58 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-23 06:19 - 2020-12-26 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-13 19:11 - 2023-09-29 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-13 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-13 19:11 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-03-13 17:22 - 2020-12-18 19:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-13 17:19 - 2020-12-18 19:31 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-10 15:42 - 2020-12-26 10:01 - 000000000 ___RD C:\Users\cyrie\OneDrive\Documents\Jeux
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par cyrie (administrateur) sur LAPTOP-D60AEKPA (Acer Aspire A317-51G) (07-04-2024 17:20:25)
Exécuté depuis C:\Users\cyrie\Downloads\FRST64.exe
Profils chargés: cyrie
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3374 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.234.783.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Intego\IavService.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavProtection.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Plugin\AppMonitor\AppMonitorPlugIn.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <18>
(DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <52>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Intego\elam_ppl\AMSProtectedService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavService.exe
(services.exe ->) (Intego Inc -> Intego Inc) C:\Program Files (x86)\Intego\IavWebFilter.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_553b9a82ff9cf770\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2b7bcff446ea567f\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_225ceea266d51cd2\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe
(services.exe ->) (Minerva Labs Ltd -> Minerva Labs LTD) C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (276B8086-F8CA-495E-A880-D275ED83EA67 -> ) C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_9.0.12.0_x86__h6adky7gbf63m\DMK_UWP_EntryPoint_Precompiled.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-06-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138992 2020-08-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [BingWallpaperApp] => C:\Users\cyrie\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14046648 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2491025712-515002546-1273168305-1001\...\Run: [MicrosoftEdgeAutoLaunch_CE670E7C08165EDC3F23445D1673AC74] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.106\Installer\chrmstp.exe [2024-04-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {5F2944BA-3003-444A-9ABA-A1AF87DFB486} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2935088 2019-04-22] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {D40CF5D1-3C47-4CF5-B30C-BA6FB5CBA55B} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41776 2019-04-22] (Acer Incorporated -> )
Task: {0B9F7871-EB11-45B8-91B9-9826B1E39E9C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4794672 2019-04-22] (Acer Incorporated -> )
Task: {0A4F5D1B-3814-4E0D-84F0-FE4600C87517} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {15405533-D790-4F32-9BC4-8C6B9BEF9F2D} - System32\Tasks\App Explorer => C:\Users\cyrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {49D99704-D5CB-4C75-80CD-E4CB2C36CCCF} - System32\Tasks\CyberGhostAvSchedule => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
Task: {43D1F6A5-58C5-40E3-8E8E-5D2DA8B42C27} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-14] (Google LLC -> Google LLC)
Task: {A03EC7C0-9EBF-48B7-ACC7-45D6D065868C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-14] (Google LLC -> Google LLC)
Task: {05F20A7D-145D-4E60-8F8A-68A8A77F3444} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {6ED96977-B897-41C3-B655-1554A60D0F8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH03VBM17K => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH03VBM17K (Pas de fichier)
Task: {E83927A8-4A88-475C-B486-3F873633141E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {617DA2DF-7EB5-445E-AF28-272ADF3D5750} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {C605436B-4412-4920-A484-D0A1FA1E8C34} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {50205DD1-1169-4E09-A844-63667DC2921B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DE1A040-F18C-4B29-B381-B7124330DF32} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {ACB9C782-B4E9-43BA-9691-5191BD9D6DC6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {6CDFEE60-19F2-4EC2-AFE7-15140FF4C211} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {581FBAB5-0A3D-4C3A-BC0F-168B77B9CB61} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {9ABF7E83-D36F-455B-AD43-8B6E2B04FB38} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6D5DDE8E-130B-4AA6-933C-1B03ED15035E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B35CA30-A6DF-4F24-96B5-87C6A075E48C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E84F11A0-32DC-4F1C-B352-18186CF5BFF3} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-01-26] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {00A265E8-003A-421F-987D-82051EA6C985} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4E30D169-62D1-4A05-BFE9-74C8D340CA2A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C115294-9778-4D0B-8C94-CF9E9B310743} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C5AE682-BC5E-4F4F-A235-68C616944B03} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71C5A6D5-D2B2-4DB5-AE22-5127F1BC39C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5717B9-C96F-4132-BF23-FC8301374D43} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8744AEE2-B86C-40DE-8356-545DB27409F7} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {109A59AA-49BC-4596-9B0C-13448FCC9199} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2491025712-515002546-1273168305-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {DC234D41-EFC3-4BDF-8DA9-A2D28F632DD4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {6E145EB1-9F43-4A3A-A6EA-A6E90D301EDE} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C909326-57D9-41B5-8CCC-D6A1AEE73D46} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {1F365794-9942-4C2F-A913-4358022A5860} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-09] (Acer Incorporated -> Acer Incorporated)
Task: {8B50A325-05B3-436C-9EEC-552F9D0A440B} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9e2ba119-e183-4d5c-a7c4-1ace167267cb}: [DhcpDomain] home
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed719b36-a2fc-4d2b-ad71-6c3b70bc1e81}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-07]
Edge HomePage: Default -> about:blank
Edge Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\cyrie\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default [2024-04-07]
CHR HomePage: Default -> hxxp://www.sfr.fr/
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-04-04]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-20]
CHR Extension: (Alerte Bons Plans eBuyClub) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjjddemkcndmbbeeibicagaobbijjgmm [2024-02-07]
CHR Extension: (Google Docs hors connexion) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Office Online - Copier et coller) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Tabji) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfljkfghflbjebbccojlpakfcjibecb [2023-06-22]
CHR Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lelehponoadknmgbnmgkcniabpopckme [2024-04-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Signal Spam) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-09]
CHR Extension: (Facile2Soutenir) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocneihgafjlmmglcedbcfjbchihkclne [2021-07-26]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-14]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-20]
CHR Extension: (the web) - C:\Users\cyrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkofdnfadkamabkgjdjcddeopopbdjhg [2024-03-24]
CHR Extension: (Chrome Updates) - C:\Windows\InternalKernelGrid4 [2024-01-20]
CHR HKU\S-1-5-21-2491025712-515002546-1273168305-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300336 2019-04-22] (Acer Incorporated -> Acer Incorporated)
R2 AMSProtectedService; C:\Program Files (x86)\Intego\elam_ppl\amsprotectedservice.exe [639304 2020-05-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
S3 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S3 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-04-15] (HP Inc. -> HP Inc.)
R2 IntegoPreventions; C:\Program Files (x86)\Intego\Preventions\MVArmorService32.exe [5841320 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoPreventions64; C:\Program Files (x86)\Intego\Preventions\MVArmorService64.exe [4825784 2022-12-08] (Minerva Labs Ltd -> Minerva Labs LTD)
R2 IntegoService; C:\Program Files (x86)\Intego\IavService.exe [6845752 2023-03-07] (Intego Inc -> Intego Inc)
R2 IntegoWebfilter; C:\Program Files (x86)\Intego\iavwebfilter.exe [6219712 2023-03-07] (Intego Inc -> Intego Inc)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S0 AMSElamDriver; C:\WINDOWS\System32\drivers\amselam.sys [21976 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [210400 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2020-03-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 cbfilter20-0; C:\Program Files (x86)\Intego\cbfilter20.sys [434208 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbprocess20-0; C:\Program Files (x86)\Intego\cbprocess20.sys [77344 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbregistry20-0; C:\Program Files (x86)\Intego\cbregistry20.sys [112672 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
S3 iwf; C:\WINDOWS\system32\DRIVERS\iwf.sys [111288 2023-01-15] (Intego Inc -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-07 17:20 - 2024-04-07 17:21 - 000029047 _____ C:\Users\cyrie\Downloads\FRST.txt
2024-04-07 17:19 - 2024-04-07 17:20 - 000000000 ____D C:\FRST
2024-04-07 17:18 - 2024-04-07 17:18 - 002393600 _____ (Farbar) C:\Users\cyrie\Downloads\FRST64.exe
2024-04-07 16:54 - 2024-04-07 16:54 - 000809482 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-07 16:54 - 2024-04-07 16:54 - 000156934 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-06 09:39 - 2024-04-06 09:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-05 09:00 - 2024-04-05 09:00 - 000243680 _____ C:\Users\cyrie\Downloads\PDF remplissable Consentement DT.pdf
2024-04-03 11:27 - 2024-04-03 11:27 - 000011318 _____ C:\Users\cyrie\Downloads\Vinted-S1223965269.pdf
2024-04-03 08:45 - 2024-04-03 08:45 - 176693471 _____ C:\Users\cyrie\Downloads\Animal.Kingdom.rar
2024-04-02 16:57 - 2024-04-02 16:57 - 000026196 _____ C:\Users\cyrie\Downloads\Extrait de comptes au 2024-04-01.pdf
2024-04-02 14:02 - 2024-04-02 14:02 - 000171591 _____ C:\Users\cyrie\Downloads\RemboursementSoins27112023.pdf
2024-04-01 22:44 - 2024-04-01 22:44 - 000011344 _____ C:\Users\cyrie\Downloads\Vinted-S1221475578.pdf
2024-03-27 19:11 - 2024-03-27 19:11 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-03-27 12:26 - 2024-03-27 12:27 - 088556396 _____ C:\Users\cyrie\Downloads\VID_20240327_094813.mp4
2024-03-27 10:55 - 2024-03-27 10:55 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-27 10:54 - 2024-03-27 10:54 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-22 17:21 - 2024-03-22 17:21 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Network
2024-03-22 17:20 - 2024-03-22 17:20 - 000000020 ___SH C:\Users\defaultuser100000\ntuser.ini
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\Menu Démarrer
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Historique
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 __SHD C:\Users\defaultuser100000\IntelGraphicsProfiles
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Protect
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Credentials
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Vault
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Spelling
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\GlarySoft
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\LocalLow\Intel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\VirtualStore
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA Corporation
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Intel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ConnectedDevicesPlatform
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000\ansel
2024-03-22 17:20 - 2024-03-22 17:20 - 000000000 ____D C:\Users\defaultuser100000
2024-03-22 17:20 - 2020-06-03 19:06 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Host App Service
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-07 17:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-07 17:01 - 2020-12-14 17:05 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-07 16:54 - 2022-10-05 18:59 - 001805842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-07 16:54 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-07 16:47 - 2022-10-05 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-07 16:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-07 16:47 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-07 16:47 - 2021-03-13 07:20 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-07 16:47 - 2020-12-14 16:58 - 000000000 __SHD C:\Users\cyrie\IntelGraphicsProfiles
2024-04-07 16:47 - 2020-06-03 18:46 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-07 16:47 - 2020-06-03 18:20 - 000000000 ___HD C:\Intel
2024-04-07 16:46 - 2022-05-07 07:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-04-07 16:46 - 2021-06-09 10:25 - 000000000 ____D C:\ProgramData\Intego
2024-04-07 14:41 - 2022-10-05 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-07 14:21 - 2020-12-14 19:51 - 000000000 ____D C:\ProgramData\GlarySoft
2024-04-07 10:56 - 2020-12-14 17:44 - 000000000 ____D C:\Users\cyrie\AppData\Local\CyberGhost
2024-04-07 08:35 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-07 07:57 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-07 07:54 - 2020-12-14 16:46 - 000000000 ____D C:\Users\cyrie\AppData\Local\Host App Service
2024-04-06 09:40 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-06 09:40 - 2020-06-03 19:11 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-06 06:18 - 2020-12-23 15:59 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-03 18:01 - 2023-11-04 20:08 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-03 17:58 - 2022-10-05 19:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-03 17:58 - 2022-10-05 19:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-03 11:39 - 2022-10-06 06:49 - 000000000 ____D C:\Users\cyrie\AppData\Local\D3DSCache
2024-04-01 21:19 - 2020-12-14 17:42 - 000000000 ____D C:\Users\cyrie\AppData\Local\CrashDumps
2024-03-30 18:07 - 2020-12-14 16:58 - 000000000 ____D C:\Users\cyrie\AppData\Local\Packages
2024-03-30 18:07 - 2020-12-14 16:43 - 000000000 ____D C:\ProgramData\Packages
2024-03-28 19:07 - 2022-10-05 18:57 - 000000000 ____D C:\Users\cyrie
2024-03-28 09:20 - 2021-10-20 08:54 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\Excel
2024-03-28 07:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-28 07:09 - 2022-12-04 09:35 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-03-27 19:12 - 2022-10-05 18:55 - 000495496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-03-27 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-27 17:04 - 2022-04-23 17:37 - 000000000 ____D C:\Program Files\CyberGhost 8
2024-03-27 11:07 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-27 10:59 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-03-27 10:55 - 2022-10-05 18:56 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-23 06:19 - 2023-02-16 09:13 - 000000000 ____D C:\Program Files\WinRAR
2024-03-23 06:19 - 2020-12-26 09:58 - 000000000 ____D C:\Users\cyrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-23 06:19 - 2020-12-26 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-13 19:11 - 2023-09-29 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-13 19:11 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-13 19:11 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-03-13 17:22 - 2020-12-18 19:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-13 17:19 - 2020-12-18 19:31 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-10 15:42 - 2020-12-26 10:01 - 000000000 ___RD C:\Users\cyrie\OneDrive\Documents\Jeux
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================