Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-07-2021 Exécuté par marie (administrateur) sur LAPTOP-M1EEEHGG (HP HP Pavilion Power Laptop 15-cb0xx) (05-07-2021 20:14:08) Exécuté depuis C:\Users\marie\Downloads Profils chargés: marie Platform: Windows 10 Home Version 20H2 19042.1052 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (HP Inc. -> ) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe (HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe (HP Inc. -> HP) C:\Windows\System32\hpservice.exe (HP Inc.) [Fichier non signé] C:\Program Files\HPCommRecovery\HPCommRecovery.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.14131.20278\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\marie\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3657408 2017-06-05] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1922496 2017-08-21] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-07-05] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [1062392 2017-03-15] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324488 2016-08-02] (HP Inc. -> HP) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-4018870028-1931207711-3785038618-1001\...\Run: [HP Photosmart 6520 series (NET)] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-4018870028-1931207711-3785038618-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-4018870028-1931207711-3785038618-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-4018870028-1931207711-3785038618-1001\...\RunOnce: [Uninstall 21.109.0530.0001\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\21.109.0530.0001\amd64" HKU\S-1-5-21-4018870028-1931207711-3785038618-1001\...\RunOnce: [Uninstall 21.109.0530.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marie\AppData\Local\Microsoft\OneDrive\21.109.0530.0001" HKLM\...\Print\Monitors\HP AF11 Status Monitor: C:\windows\system32\hpinkstsAF11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 6520 series): C:\windows\system32\HPDiscoPMAF11.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\errorlog.txt [2019-01-17] () HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {113BE964-F8C1-41B9-9259-45A27ACAB7BF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24613232 2021-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {123A1778-6430-41E9-97E9-9366424D053B} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> Pas de fichier <==== ATTENTION Task: {14D6F7D0-8626-4909-944B-576BE4E821E8} - \NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {23F2F127-B951-47BB-B871-641AA6E32B87} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269296 2018-10-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {241F1C95-420B-40FF-9995-9C71EEAF6B75} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-07-04] (Dropbox, Inc -> Dropbox, Inc.) Task: {26671C37-94B1-4D3A-8A4B-0B704C9F3131} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> Pas de fichier <==== ATTENTION Task: {2C30D533-03B9-4A9F-9064-9DBEF6D9034B} - \Hewlett-Packard\HP Support Assistant\Product Configurator -> Pas de fichier <==== ATTENTION Task: {30F11F6A-DB5D-4EF6-819E-CD2F4EA72CF4} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> Pas de fichier <==== ATTENTION Task: {362EE67B-0018-4387-BFA3-2545E3F92A7A} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {3F926363-BF4C-4921-AB56-CF977CF40AA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [621600 2016-12-06] (HP Inc. -> HP Inc.) Task: {4B6926D3-D490-4D93-82CE-D109F1D1BC80} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION Task: {50A092BE-F495-4C38-97F6-8BE623BE252B} - \DropboxOEM -> Pas de fichier <==== ATTENTION Task: {5D81326C-D6EC-49A0-AAB5-D8A874E06E83} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION Task: {64102A22-299F-4106-82F4-FE6054FE9E0C} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {647C7C9C-72ED-4795-A841-9784CCC8CA7A} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> Pas de fichier <==== ATTENTION Task: {6CE08C35-8766-4C7A-8622-9A2422F12E78} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-22] (Mozilla Corporation -> Mozilla Foundation) Task: {7072963F-3763-4E9F-A1F5-DE9703BAE827} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION Task: {7B95C6A0-3FF4-4013-B384-FC4489E4D5BE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1075744 2016-12-06] (HP Inc. -> HP Inc.) Task: {7F6D0AA9-5BCA-4A18-9A10-8D4F8624BC1F} - \HP\HP CoolSense\HP CoolSense Start at Logon -> Pas de fichier <==== ATTENTION Task: {8233F9A7-6CE3-4945-A150-2425E7E635F7} - \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start -> Pas de fichier <==== ATTENTION Task: {83355A9F-A30D-442B-8A41-937043C4AADB} - \Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start -> Pas de fichier <==== ATTENTION Task: {85613787-8C1A-4D0B-8410-1151612EC390} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24613232 2021-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {88CF99CD-52DE-4E66-AC2D-0C4C22CC5604} - \Microsoft\Windows\UpdateOrchestrator\Maintenance Install -> Pas de fichier <==== ATTENTION Task: {89BEBF0A-E54A-41F0-B1A1-D33253DB2818} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-07-04] (Microsoft Corporation -> Microsoft Corporation) Task: {952F3B85-B8DE-49B1-9F9C-F4D7ADF09891} - \HPEA3JOBS -> Pas de fichier <==== ATTENTION Task: {A3479C7F-B363-432B-B861-EAEBB0A35C59} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2016-12-06] (HP Inc. -> HP Inc.) Task: {A65717D1-D9E0-4984-A9C4-0714AFBD47BC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-07-04] (Dropbox, Inc -> Dropbox, Inc.) Task: {A8D07A15-B911-4DF9-8110-040DCB7502CE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-07-05] (Avast Software s.r.o. -> Avast Software) Task: {AADDCC71-BDD7-489F-8042-556460F4C7E8} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> Pas de fichier <==== ATTENTION Task: {B80B0A8B-254E-4DC6-9C5E-BDBA39544004} - \HPAudioSwitch -> Pas de fichier <==== ATTENTION Task: {CAC841ED-2EF2-4777-9B8D-D26457A81BF9} - \NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {CCADD088-B1AD-4D9A-90E2-161DEB161909} - \Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install -> Pas de fichier <==== ATTENTION Task: {D02168BB-4C96-41B6-8B21-FB76FD3638F4} - System32\Tasks\Microsoft\Windows\SysResetDelayedCleanup => C:\WINDOWS\system32\ResetEngine.exe [20280 2021-03-13] (Microsoft Windows -> Microsoft Corporation) Task: {D5AA3CB7-253F-421B-BD25-6EA70E7889CE} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> Pas de fichier <==== ATTENTION Task: {DA44B764-EFC3-403C-B1E6-11D20C461393} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1148448 2016-12-07] (HP Inc. -> HP Inc.) Task: {E202C7F2-0F4B-480C-BF11-232D52C6EF94} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2016-12-06] (HP Inc. -> HP Inc.) Task: {E32AA450-62B0-44AE-8275-19E5F1D73CEF} - \NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {EC5A1996-8171-451D-A52C-52B76499C458} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-07-04] (Microsoft Corporation -> Microsoft Corporation) Task: {EDB3EE4E-1CBF-47B0-AF5C-ABC78527B2EC} - \NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {F1EE2948-8CA9-412B-BA14-2980AE2EC61C} - System32\Tasks\HPCustParticipation HP Photosmart 6520 series => C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Task: {F9BF1B21-6A5A-47C3-B9C3-028E2E4790AB} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4903192 2021-07-05] (Avast Software s.r.o. -> AVAST Software) Task: {FB764BB7-960B-49C7-A284-0BF7B319B333} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [106528 2016-12-07] (HP Inc. -> HP Inc.) Task: {FB96060F-07D3-43F5-BACC-3A2FCE9D2779} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {FC492BAE-7756-4F28-8521-E6B6DC463497} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {FE1D49DD-B69B-46DB-8C54-502932EE65EF} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> Pas de fichier <==== ATTENTION Task: {FEE1E039-5494-43E9-AC26-087F4981CE1C} - \HPJumpStartLaunch -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{0a5cf704-9f7d-4f3b-a4b0-dfb29dbbe7aa}: [DhcpNameServer] 40.23.1.12 Tcpip\..\Interfaces\{c7a61178-91b3-494e-832a-854fe66cb67e}: [DhcpNameServer] 212.27.40.241 212.27.40.240 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\marie\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-05] FireFox: ======== FF DefaultProfile: grliurpj.default FF ProfilePath: C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\grliurpj.default [2021-07-04] FF ProfilePath: C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\hkqg5yfw.default-release [2021-07-05] FF Session Restore: Mozilla\Firefox\Profiles\hkqg5yfw.default-release -> est activé. FF Extension: (AdBlocker Ultimate) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\hkqg5yfw.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-07-04] FF Extension: (Fairytale Of Nature) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\hkqg5yfw.default-release\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-07-04] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2016-11-23] (WildTangent Inc -> ) ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8249936 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [625432 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [373528 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056656 2021-06-28] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-07-04] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-07-04] (Dropbox, Inc -> Dropbox, Inc.) S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [350064 2016-11-23] (WildTangent Inc -> WildTangent) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1309184 2016-10-07] (HP Inc.) [Fichier non signé] R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-04-03] (HP Inc. -> HP Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP) R2 hpsrv; C:\windows\system32\Hpservice.exe [38752 2016-09-26] (HP Inc. -> HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc. -> HP Inc.) R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [630776 2017-02-06] (HP Inc. -> HP Inc.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [974168 2021-07-05] (McAfee, LLC -> McAfee, LLC) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-07-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-07-05] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-07-05] (Avast Software s.r.o. -> AVAST Software) S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [26560 2017-08-21] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP) U3 aspnet_state; pas de ImagePath U1 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-05 20:14 - 2021-07-05 20:14 - 000025844 _____ C:\Users\marie\Downloads\FRST.txt 2021-07-05 20:14 - 2021-07-05 20:14 - 000000276 _____ C:\NvContainerRecoveryNVDisplay.ContainerLocalSystem.reg 2021-07-05 20:12 - 2021-07-05 20:12 - 002301440 _____ (Farbar) C:\Users\marie\Downloads\FRST64(4).exe 2021-07-05 20:11 - 2021-07-05 20:11 - 002301440 _____ (Farbar) C:\Users\marie\Downloads\FRST64(3).exe 2021-07-05 20:10 - 2021-07-05 20:10 - 002301440 _____ (Farbar) C:\Users\marie\Downloads\FRST64(2).exe 2021-07-05 20:08 - 2021-07-05 20:08 - 002301440 _____ (Farbar) C:\Users\marie\Downloads\FRST64(1).exe 2021-07-05 20:07 - 2021-07-05 20:07 - 002301440 _____ (Farbar) C:\Users\marie\Downloads\FRST64.exe 2021-07-05 18:04 - 2021-07-05 18:04 - 000198639 _____ C:\Users\marie\Desktop\Inscriptions 2021-22 Lons.odg 2021-07-05 17:57 - 2021-07-05 17:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-07-05 17:52 - 2021-07-05 17:57 - 328892416 _____ C:\Users\marie\Downloads\LibreOffice_7.1.4_Win_x64(2).msi 2021-07-05 17:38 - 2021-07-05 17:41 - 095682560 _____ C:\Users\marie\Downloads\LibreOffice_7.1.4_Win_x64(1).msi.part 2021-07-05 17:38 - 2021-07-05 17:38 - 000000000 _____ C:\Users\marie\Downloads\LibreOffice_7.1.4_Win_x64(1).msi 2021-07-05 17:35 - 2021-07-05 17:35 - 000000000 ____D C:\Users\marie\AppData\Roaming\NVIDIA 2021-07-05 17:35 - 2021-07-05 17:35 - 000000000 ____D C:\Users\marie\AppData\Roaming\LibreOffice 2021-07-05 17:35 - 2021-07-05 17:35 - 000000000 ____D C:\Users\marie\AppData\Local\NVIDIA 2021-07-05 17:33 - 2021-07-05 17:33 - 000001197 _____ C:\Users\Public\Desktop\LibreOffice 7.1.lnk 2021-07-05 17:33 - 2021-07-05 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1 2021-07-05 17:32 - 2021-07-05 17:33 - 000000000 ____D C:\Program Files\LibreOffice 2021-07-05 17:20 - 2021-07-05 17:30 - 328892416 _____ C:\Users\marie\Downloads\LibreOffice_7.1.4_Win_x64.msi 2021-07-05 16:26 - 2021-07-05 16:26 - 000001086 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2021-07-05 16:26 - 2021-07-05 16:26 - 000000000 ____D C:\Program Files\VS Revo Group 2021-07-05 16:25 - 2021-07-05 16:25 - 007510656 _____ (VS Revo Group ) C:\Users\marie\Downloads\revosetup(1).exe 2021-07-05 16:15 - 2021-07-05 16:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard 2021-07-05 16:15 - 2021-07-05 16:15 - 000000000 ____D C:\Users\marie\AppData\Roaming\Hewlett-Packard 2021-07-05 16:14 - 2021-07-05 20:12 - 000000000 ____D C:\Users\marie\AppData\Local\Avast Software 2021-07-05 16:14 - 2021-07-05 16:15 - 000000000 ____D C:\Users\marie\AppData\Local\NVIDIA Corporation 2021-07-05 16:14 - 2021-07-05 16:14 - 000000000 ____D C:\Users\marie\AppData\Local\RegistrationDataHandler 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Roaming\hpqLog 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Roaming\HP 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Roaming\DropboxOEM 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Local\HP JumpStart Apps 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Local\Hewlett-Packard 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Local\DropboxOEM 2021-07-05 16:13 - 2021-07-05 16:13 - 000000000 ____D C:\Users\marie\AppData\Local\Crashpad 2021-07-05 14:21 - 2021-07-05 14:21 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk 2021-07-05 14:21 - 2021-07-05 14:21 - 000002159 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2021-07-05 14:21 - 2021-07-05 14:21 - 000000000 ____D C:\Users\marie\AppData\Roaming\Avast Software 2021-07-05 14:21 - 2021-07-05 14:21 - 000000000 ____D C:\Users\marie\AppData\Local\CEF 2021-07-05 14:19 - 2021-07-05 14:19 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2021-07-05 14:19 - 2021-07-05 14:19 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000017328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2021-07-05 14:19 - 2021-07-05 14:19 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-07-05 14:19 - 2021-07-05 14:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2021-07-05 14:19 - 2021-07-05 14:19 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2021-07-05 14:17 - 2021-07-05 14:17 - 000000000 ____D C:\Program Files\Avast Software 2021-07-05 14:16 - 2021-07-05 17:34 - 000000000 ____D C:\ProgramData\Avast Software 2021-07-05 14:16 - 2021-07-05 14:16 - 000232168 _____ (AVAST Software) C:\Users\marie\Downloads\avast_free_antivirus_setup_online.exe 2021-07-05 14:11 - 2021-07-05 14:13 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-07-05 09:15 - 2021-07-05 09:15 - 000348435 _____ C:\Users\marie\Downloads\Inscriptions 2021-22 Lons[8783].pdf 2021-07-04 23:10 - 2021-07-04 23:10 - 029353264 _____ C:\Users\marie\Downloads\PS6520_Basicx64_1315.exe 2021-07-04 20:48 - 2021-07-04 20:49 - 072558696 _____ C:\Users\marie\Downloads\PS6520_1315-1(3).exe 2021-07-04 19:39 - 2021-07-04 20:25 - 000000000 ____D C:\Users\marie\AppData\Roaming\HpUpdate 2021-07-04 19:39 - 2021-07-04 19:39 - 000003792 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Photosmart 6520 series 2021-07-04 19:39 - 2021-07-04 19:39 - 000002332 _____ C:\Users\Public\Desktop\HP Photosmart 6520 series.lnk 2021-07-04 19:39 - 2021-07-04 19:39 - 000000000 ____D C:\ProgramData\Visan 2021-07-04 19:39 - 2021-07-04 19:39 - 000000000 ____D C:\ProgramData\HP Photo Creations 2021-07-04 19:39 - 2021-07-04 19:39 - 000000000 ____D C:\Program Files (x86)\HP Photo Creations 2021-07-04 19:39 - 2012-10-17 04:31 - 000741480 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMAF11.dll 2021-07-04 19:38 - 2021-07-04 19:38 - 000000057 _____ C:\ProgramData\Ament.ini 2021-07-04 19:36 - 2021-07-04 19:37 - 072558696 _____ C:\Users\marie\Downloads\PS6520_1315-1(2).exe 2021-07-04 19:27 - 2021-07-04 19:40 - 000000000 ____D C:\Users\marie\AppData\Local\HP 2021-07-04 19:05 - 2021-07-04 19:13 - 000000000 ____D C:\Users\marie\AppData\Local\Comms 2021-07-04 19:02 - 2021-07-05 19:43 - 000000000 ____D C:\ProgramData\Mozilla 2021-07-04 19:02 - 2021-07-04 19:02 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-07-04 19:02 - 2021-07-04 19:02 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk 2021-07-04 19:02 - 2021-07-04 19:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-07-04 19:02 - 2021-07-04 19:02 - 000000000 ____D C:\Users\marie\AppData\Roaming\Mozilla 2021-07-04 19:02 - 2021-07-04 19:02 - 000000000 ____D C:\Users\marie\AppData\Local\Mozilla 2021-07-04 19:02 - 2021-07-04 19:02 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-07-04 19:02 - 2021-07-04 19:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-07-04 19:00 - 2021-07-04 19:00 - 000333192 _____ (Mozilla) C:\Users\marie\Downloads\Firefox Installer.exe 2021-07-04 18:57 - 2021-07-05 19:42 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4018870028-1931207711-3785038618-1001 2021-07-04 18:57 - 2021-07-04 18:57 - 000000000 ____D C:\Users\marie\AppData\Local\PlaceholderTileLogoFolder 2021-07-04 18:56 - 2021-07-04 18:56 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-07-04 18:55 - 2021-07-04 19:13 - 000000000 ____D C:\Users\marie\AppData\Local\Publishers 2021-07-04 18:55 - 2021-07-04 19:12 - 000000000 ____D C:\ProgramData\Packages 2021-07-04 18:54 - 2021-07-04 23:03 - 000000000 ____D C:\Users\marie\AppData\Local\ConnectedDevicesPlatform 2021-07-04 18:54 - 2021-07-04 19:41 - 000000000 ____D C:\Users\marie\AppData\Local\VirtualStore 2021-07-04 18:54 - 2021-07-04 19:13 - 000000000 ____D C:\Users\marie\AppData\Local\Packages 2021-07-04 18:54 - 2021-07-04 18:55 - 000000000 ____D C:\Users\marie\AppData\Local\Intel 2021-07-04 18:54 - 2021-07-04 18:54 - 000000020 ___SH C:\Users\marie\ntuser.ini 2021-07-04 18:54 - 2021-07-04 18:54 - 000000000 ____D C:\Users\marie\AppData\Roaming\Adobe 2021-07-04 17:44 - 2021-07-04 17:30 - 000000000 ____D C:\WINDOWS\Panther 2021-07-04 17:41 - 2021-07-04 17:41 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-07-04 17:41 - 2021-07-04 17:30 - 000000000 ____D C:\Windows.old 2021-07-04 17:39 - 2021-07-04 17:39 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2021-07-04 17:39 - 2021-07-04 16:55 - 000000000 ____D C:\Program Files\Elantech 2021-07-04 17:39 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\IAStorAfsService 2021-07-04 17:38 - 2021-07-04 17:38 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\Setup 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\addins 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\ProgramData\ssh 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\Program Files\MSBuild 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-07-04 17:37 - 2021-07-04 17:37 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-07-04 17:37 - 2021-07-04 17:30 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2021-07-04 17:37 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\OCR 2021-07-04 17:36 - 2021-07-05 17:41 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat 2021-07-04 17:36 - 2021-07-05 17:41 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat 2021-07-04 17:36 - 2021-07-04 17:36 - 000351124 _____ C:\WINDOWS\system32\perfi00C.dat 2021-07-04 17:36 - 2021-07-04 17:36 - 000040694 _____ C:\WINDOWS\system32\perfd00C.dat 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\fr 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\0409 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\fr 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\0409 2021-07-04 17:36 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\DigitalLocker 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\winrm 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\slmgr 2021-07-04 17:36 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2021-07-04 17:34 - 2021-07-04 17:43 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-07-04 17:34 - 2021-07-04 17:32 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat 2021-07-04 17:34 - 2021-07-04 17:32 - 000215943 _____ C:\WINDOWS\system32\dssec.dat 2021-07-04 17:34 - 2021-07-04 17:32 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-07-04 17:34 - 2021-07-04 17:32 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam 2021-07-04 17:34 - 2021-07-04 17:32 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config 2021-07-04 17:34 - 2021-07-04 17:32 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config 2021-07-04 17:34 - 2021-07-04 17:32 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json 2021-07-04 17:34 - 2021-07-04 17:32 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT 2021-07-04 17:34 - 2021-07-04 17:32 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT 2021-07-04 17:33 - 2021-07-05 20:15 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-04 17:33 - 2021-07-05 17:34 - 000000000 ____D C:\WINDOWS\ServiceState 2021-07-04 17:33 - 2021-07-05 16:32 - 000000000 ___RD C:\Program Files (x86) 2021-07-04 17:33 - 2021-07-05 16:31 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-07-04 17:33 - 2021-07-05 14:13 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-04 17:33 - 2021-07-05 14:13 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-07-04 17:33 - 2021-07-04 19:11 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-07-04 17:33 - 2021-07-04 18:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-07-04 17:33 - 2021-07-04 17:43 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-07-04 17:33 - 2021-07-04 17:41 - 000000000 __RHD C:\Users\Public\Libraries 2021-07-04 17:33 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2021-07-04 17:33 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\SystemResources 2021-07-04 17:33 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\system32\setup 2021-07-04 17:33 - 2021-07-04 17:37 - 000000000 ____D C:\WINDOWS\system32\MUI 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\WINDOWS\system32\Com 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\Program Files\Windows Defender 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\Program Files (x86)\Windows NT 2021-07-04 17:33 - 2021-07-04 17:36 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 __RSD C:\WINDOWS\Media 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ___SD C:\WINDOWS\system32\Nui 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ___RD C:\WINDOWS\Offline Web Pages 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ti-et 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ta-lk 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ta-in 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\si-lk 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\my-mm 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\icsxml 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ias 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\downlevel 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\Bthprops 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\am-et 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\Provisioning 2021-07-04 17:33 - 2021-07-04 17:34 - 000000000 ____D C:\WINDOWS\L2Schemas 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 __SHD C:\Program Files\Windows Sidebar 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ___SD C:\WINDOWS\system32\Configuration 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Web 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\WaaS 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Vss 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\tracing 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\TAPI 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\ras 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SystemApps 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\winevt 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\ras 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\ProximityToast 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\PointOfService 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\Ipmi 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\IME 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\Hydrogen 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\DriverState 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\config\TxR 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\config\RegBack 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\config\Journal 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\System 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SKB 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\security 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\schemas 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\SchCache 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\rescache 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\PLA 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Performance 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\ModemLogs 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\InputMethod 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\IdentityCRL 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Globalization 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Cursors 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Containers 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\Branding 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\ProgramData\USOShared 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files\Windows Security 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files\Windows Portable Devices 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files\Windows Multimedia Platform 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files\ModifiableWindowsApps 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files\Common Files\Services 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices 2021-07-04 17:33 - 2021-07-04 17:33 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2021-07-04 17:33 - 2021-07-04 17:31 - 000000000 ____D C:\ProgramData\USOPrivate 2021-07-04 17:33 - 2021-07-04 17:30 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-07-04 17:33 - 2021-07-04 17:19 - 000000000 ____D C:\Program Files\Windows NT 2021-07-04 17:33 - 2021-07-04 17:17 - 000000000 ____D C:\WINDOWS\Registration 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ___SD C:\WINDOWS\system32\dsc 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\system32\spool 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\Resources 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\IME 2021-07-04 17:33 - 2021-07-04 17:08 - 000000000 ____D C:\WINDOWS\Help 2021-07-04 17:33 - 2021-07-04 17:01 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-07-04 17:33 - 2021-07-04 16:57 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-07-04 17:33 - 2021-07-04 16:55 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-04 17:33 - 2021-07-04 16:55 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-07-04 17:33 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\appcompat 2021-07-04 17:32 - 2021-07-05 17:41 - 000000000 ____D C:\WINDOWS\INF 2021-07-04 17:29 - 2021-07-05 18:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-07-04 17:28 - 2021-07-05 18:03 - 000000000 ____D C:\WINDOWS\servicing 2021-07-04 17:28 - 2021-07-05 17:34 - 102498304 _____ C:\WINDOWS\system32\config\SOFTWARE 2021-07-04 17:28 - 2021-07-05 17:34 - 028311552 _____ C:\WINDOWS\system32\config\SYSTEM 2021-07-04 17:28 - 2021-07-05 17:34 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT 2021-07-04 17:28 - 2021-07-05 17:34 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-07-04 17:28 - 2021-07-05 17:34 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY 2021-07-04 17:28 - 2021-07-05 17:34 - 000065536 _____ C:\WINDOWS\system32\config\SAM 2021-07-04 17:28 - 2021-07-05 16:31 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-07-04 17:28 - 2021-07-04 17:33 - 000000000 ____D C:\WINDOWS\system32\SMI 2021-07-04 17:20 - 2021-07-04 17:20 - 000004286 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2021-07-04 17:20 - 2021-07-04 17:20 - 000004054 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\Users\Default User 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\Users\All Users 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\ProgramData\Modèles 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\ProgramData\Bureau 2021-07-04 17:19 - 2021-07-04 17:19 - 000000000 _SHDL C:\Program Files\Fichiers communs 2021-07-04 17:17 - 2021-07-05 17:41 - 001841164 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-07-04 17:17 - 2021-07-04 17:17 - 000017928 _____ C:\Users\marie\Desktop\Applications supprimées.html 2021-07-04 17:14 - 2021-07-04 17:14 - 000023108 _____ C:\WINDOWS\system32\emptyregdb.dat 2021-07-04 17:11 - 2021-07-05 19:42 - 000002428 _____ C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-04 17:11 - 2021-07-04 18:54 - 000000000 ____D C:\Users\marie 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Voisinage réseau 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Voisinage d'impression 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Modèles 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Mes documents 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Menu Démarrer 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Documents\Mes vidéos 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Documents\Mes images 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\Documents\Ma musique 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-07-04 17:11 - 2021-07-04 17:11 - 000000000 _SHDL C:\Users\marie\AppData\Local\Historique 2021-07-04 16:54 - 2021-07-04 16:54 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-07-04 16:49 - 2021-07-04 16:49 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk 2021-07-04 16:49 - 2021-07-04 16:49 - 000000026 _____ C:\WINDOWS\system32\Drivers\RtkR0Log.dat 2021-07-04 16:49 - 2021-07-04 16:49 - 000000000 ____D C:\ProgramData\SoundResearch 2021-07-04 16:48 - 2021-07-04 16:48 - 003536410 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2021-07-04 16:48 - 2021-07-04 16:48 - 000003194 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2021-07-04 16:48 - 2021-07-04 16:48 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETD_01011.Wdf 2021-07-04 16:48 - 2021-07-04 16:48 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2021-07-04 16:48 - 2021-07-04 16:48 - 000000000 ____D C:\WINDOWS\system32\SRSLabs 2021-07-04 16:48 - 2021-07-04 16:48 - 000000000 ____D C:\Program Files\Realtek 2021-07-04 16:48 - 2021-04-05 21:32 - 005627760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-07-04 16:48 - 2021-04-05 21:32 - 002635632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2021-07-04 16:48 - 2021-04-05 21:32 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2021-07-04 16:48 - 2021-04-05 21:32 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2021-07-04 16:48 - 2021-04-05 21:32 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2021-07-04 16:48 - 2021-04-05 21:31 - 009527077 _____ C:\WINDOWS\system32\nvcoproc.bin 2021-07-04 16:48 - 2021-04-05 21:31 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2021-07-04 16:47 - 2021-07-05 20:15 - 000000000 ____D C:\ProgramData\NVIDIA 2021-07-04 16:47 - 2021-07-05 17:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-07-04 16:47 - 2021-07-04 17:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-07-04 16:47 - 2021-07-04 17:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-07-04 16:47 - 2021-07-04 17:13 - 000000000 ____D C:\ProgramData\Intel 2021-07-04 16:47 - 2021-07-04 17:01 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2021-07-04 16:47 - 2021-07-04 17:01 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-07-04 16:47 - 2021-07-04 16:57 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-07-04 16:47 - 2021-07-04 16:56 - 000000000 ____D C:\Program Files\Intel 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_esif_lf_01011.Wdf 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\system32\Intel 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-07-04 16:47 - 2021-07-04 16:47 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2021-07-04 16:47 - 2020-06-10 20:10 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2021-07-04 16:45 - 2021-07-05 17:34 - 000534360 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-07-04 16:45 - 2021-07-05 16:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-07-04 16:23 - 2021-07-04 17:45 - 000000000 ___HD C:\$SysReset 2021-07-03 09:48 - 2021-06-16 19:18 - 000348435 ____T C:\Users\marie\Desktop\Inscriptions 2021-22 Lons.pdf 2021-07-02 19:58 - 2021-07-04 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2021-07-02 19:58 - 2021-07-02 19:58 - 000000000 ____D C:\Users\marie\AppData\LocalLow\Hewlett-Packard 2021-07-02 19:55 - 2021-07-02 19:56 - 072558696 _____ C:\Users\marie\Downloads\PS6520_1315-1(1).exe 2021-07-02 19:53 - 2021-07-02 19:53 - 034963456 _____ C:\Users\marie\Downloads\PS6520_1315-1.exe.part 2021-07-02 19:53 - 2021-07-02 19:53 - 000000000 _____ C:\Users\marie\Downloads\PS6520_1315-1.exe 2021-07-02 19:03 - 2021-07-05 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2021-07-02 19:02 - 2021-07-02 19:03 - 007510656 _____ (VS Revo Group ) C:\Users\marie\Downloads\revosetup.exe 2021-07-02 15:50 - 2021-07-02 15:51 - 000000000 ___RD C:\Users\marie\Documents\Scanned Documents 2021-07-02 15:50 - 2021-07-02 15:50 - 000000000 ____D C:\Users\marie\Documents\Fax 2021-07-02 15:19 - 2021-07-02 15:19 - 000348435 _____ C:\Users\marie\Documents\Inscriptions 2021-22 Lons[8783].pdf 2021-06-30 20:01 - 2021-06-30 20:01 - 000099593 _____ C:\Users\marie\Desktop\Juillet 2021 Anne.pdf 2021-06-30 19:59 - 2021-06-30 19:59 - 000099593 _____ C:\Users\marie\Downloads\Juillet 2021.pdf 2021-06-30 19:59 - 2021-06-30 19:59 - 000099593 _____ C:\Users\marie\Downloads\Juillet 2021(1).pdf 2021-06-24 14:33 - 2021-07-04 17:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-06-24 11:30 - 2021-06-24 17:49 - 000543780 ____T C:\Users\marie\Desktop\j4AI.2.odt 2021-06-23 09:04 - 2021-06-23 08:49 - 000556812 ____T C:\Users\marie\Documents\j4AI.odt 2021-06-16 19:39 - 2021-06-16 19:39 - 000014360 _____ C:\Users\marie\Documents\Coupon réponse Lons.odt 2021-06-16 18:39 - 2021-06-16 18:39 - 000000000 ____D C:\Users\marie\Documents\Fichiers Outlook 2021-06-15 15:21 - 2021-06-16 18:29 - 000140167 _____ C:\Users\marie\Documents\AG bulletin + pouvoir 2020 pgp[8751].pdf 2021-06-13 12:48 - 2021-06-13 12:48 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-06-13 12:48 - 2021-06-13 12:48 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-06-13 12:48 - 2021-06-13 12:48 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-06-13 12:48 - 2021-06-13 12:48 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-06-13 12:48 - 2021-06-13 12:48 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-06-13 12:48 - 2021-06-13 12:48 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-06-13 12:48 - 2021-06-13 12:48 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-06-13 12:47 - 2021-06-13 12:47 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-06-13 12:47 - 2021-06-13 12:47 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-06-13 12:47 - 2021-06-13 12:47 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-06-13 12:47 - 2021-06-13 12:47 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-06-13 12:47 - 2021-06-13 12:47 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-06-13 12:47 - 2021-06-13 12:47 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-06-13 12:47 - 2021-06-13 12:47 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-06-13 12:47 - 2021-06-13 12:47 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-06-13 12:47 - 2021-06-13 12:47 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-06-13 12:47 - 2021-06-13 12:47 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-06-13 12:47 - 2021-06-13 12:47 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-06-13 12:33 - 2021-06-13 12:33 - 027563985 _____ C:\Users\marie\Documents\vaccin1.xcf 2021-06-09 12:43 - 2021-06-09 12:43 - 000425920 _____ C:\Users\marie\Documents\carte identité.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-05 20:14 - 2019-01-17 16:59 - 000000000 ____D C:\FRST 2021-07-05 20:14 - 2017-09-11 03:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-07-05 19:52 - 2018-08-18 15:48 - 000000000 ___RD C:\Users\marie\OneDrive 2021-07-05 19:42 - 2018-08-18 17:59 - 000000000 ____D C:\Users\marie\AppData\LocalLow\Mozilla 2021-07-05 19:38 - 2018-08-18 15:46 - 000000000 __SHD C:\Users\marie\IntelGraphicsProfiles 2021-07-05 17:34 - 2021-03-13 21:48 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-05 16:32 - 2017-11-18 09:00 - 000000000 ____D C:\Program Files\mcafee 2021-07-05 16:32 - 2017-11-18 08:59 - 000000000 ____D C:\ProgramData\mcafee 2021-07-05 16:16 - 2017-09-11 03:48 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2021-07-05 16:12 - 2017-09-11 03:55 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2021-07-05 16:12 - 2017-09-11 03:55 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2021-07-04 19:39 - 2017-09-11 03:47 - 000000000 ____D C:\Program Files (x86)\HP 2021-07-04 19:39 - 2017-09-11 03:47 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2021-07-04 19:38 - 2017-09-11 03:48 - 000000000 ____D C:\ProgramData\HP 2021-07-04 19:38 - 2017-09-11 03:47 - 000000000 ____D C:\Program Files\HP 2021-07-04 19:00 - 2020-06-17 21:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-04 18:59 - 2017-11-18 08:39 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-07-04 18:54 - 2017-03-18 05:53 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-07-04 17:43 - 2019-07-24 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hugin 2021-07-04 17:43 - 2019-01-26 19:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clavier+ 2021-07-04 17:43 - 2018-12-20 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater 2021-07-04 17:41 - 2020-04-20 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2021-07-04 17:41 - 2019-05-14 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG Software 2021-07-04 17:17 - 2020-04-28 19:10 - 000000000 ____D C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-07-04 17:17 - 2018-08-30 17:32 - 000000000 ____D C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center 2021-07-04 17:13 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-07-04 17:08 - 2017-11-18 08:57 - 000000000 ____D C:\WINDOWS\HP 2021-07-04 17:08 - 2017-03-19 04:32 - 000000000 ____D C:\WINDOWS\HoloShell 2021-07-04 17:08 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2021-07-04 17:08 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-07-04 17:02 - 2017-11-18 09:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2021-07-04 17:02 - 2017-11-18 09:14 - 000000000 ____D C:\ProgramData\WildTangent 2021-07-04 17:02 - 2017-11-18 08:58 - 000000000 ____D C:\ProgramData\install_clap 2021-07-04 17:02 - 2017-11-18 08:58 - 000000000 ____D C:\ProgramData\install_backup 2021-07-04 17:02 - 2017-11-18 08:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2021-07-04 17:02 - 2017-09-11 11:58 - 000000000 ____D C:\SWSetup 2021-07-04 17:02 - 2017-09-11 03:49 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2021-07-04 17:02 - 2017-09-11 03:43 - 000000000 ____D C:\ProgramData\Package Cache 2021-07-04 17:01 - 2017-11-18 09:14 - 000000000 ____D C:\Program Files (x86)\WildTangent Games 2021-07-04 17:01 - 2017-11-18 08:32 - 000000000 ____D C:\Program Files (x86)\Realtek 2021-07-04 17:01 - 2017-09-11 03:55 - 000000000 ____D C:\ProgramData\Dropbox 2021-07-04 17:01 - 2017-09-11 03:50 - 000000000 ___RD C:\Program Files (x86)\Online Services 2021-07-04 17:01 - 2017-09-11 03:50 - 000000000 ____D C:\ProgramData\Apple 2021-07-04 16:58 - 2017-11-18 08:33 - 000000000 ____D C:\Program Files (x86)\Intel 2021-07-04 16:58 - 2017-09-11 03:56 - 000000000 ____D C:\Program Files (x86)\HP Inc 2021-07-04 16:58 - 2017-09-11 03:48 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-07-04 16:57 - 2017-09-11 03:55 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-07-04 16:57 - 2017-09-11 03:50 - 000000000 ___RD C:\Program Files\Online Services 2021-07-04 16:57 - 2017-09-11 03:50 - 000000000 ____D C:\Program Files (x86)\Bonjour 2021-07-04 16:56 - 2017-09-11 03:57 - 000000000 ____D C:\Program Files\Microsoft Office 15 2021-07-04 16:55 - 2017-09-11 03:56 - 000000000 ____D C:\Program Files\HPCommRecovery 2021-07-04 16:54 - 2017-09-11 03:50 - 000000000 ____D C:\Program Files\Bonjour 2021-07-04 14:51 - 2021-01-19 17:38 - 000000000 ____D C:\Users\marie\Desktop\Blog photos.2021 2021-07-03 12:38 - 2019-01-29 17:49 - 000000000 ____D C:\Users\marie\Desktop\Anciennes données de Firefox 2021-07-02 19:43 - 2017-06-21 21:10 - 000000000 ___HD C:\hp 2021-07-02 16:29 - 2018-08-30 12:27 - 000000000 ____D C:\Users\marie\Documents\Recettes 2021-06-30 15:40 - 2021-03-09 13:52 - 000000000 ____D C:\Users\marie\Desktop\Divers 2021 2021-06-19 20:29 - 2020-11-09 19:21 - 000000000 ____D C:\Users\marie\Desktop\Sheba ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================