Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02 Exécuté par laure (administrateur) sur DESKTOP-0A25TD2 (HP HP ENVY x360 Convertible 15-cn0xxx) (29-09-2021 10:33:31) Exécuté depuis C:\Users\laure\Desktop Profils chargés: laure Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ELAN) [Fichier non signé] C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_35df954651b1f88f\x64\TouchpointAnalyticsClientService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\BridgeCommunication.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\DiagsCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\SysInfoCap.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_167a1a0325242e3d\aesm_service.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <24> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [970528 2019-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-07-30] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [214528 2018-05-17] (ELAN) [Fichier non signé] HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [165928 2021-08-15] (ESET, spol. s r.o. -> ESET) HKU\S-1-5-21-767375977-2891970839-172957574-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2344832 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-767375977-2891970839-172957574-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114017640 2021-08-10] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-767375977-2891970839-172957574-1001\...\Run: [MicrosoftEdgeAutoLaunch_B7C8B5C106AFC246B825A1ED4AA8DAE3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-767375977-2891970839-172957574-1001\...\RunOnce: [Application Restart #1] => C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe [383488 2021-02-24] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.61\Installer\chrmstp.exe [2021-09-29] (Google LLC -> Google LLC) Startup: C:\Users\laure\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2020-10-18] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {027CE055-F1C1-46E8-947D-DBA9A44F85B7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN76R4N0R2 => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-09-03] (HP Inc. -> HP Inc.) Task: {3EE47C28-C384-4F99-B083-399F1964CD3D} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.) Task: {51862DA6-D328-4EDB-AAE7-AA789FCFD4D1} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3977088 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Task: {79F07A46-BFF4-4D99-86F1-25A89309212E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-07-10] (HP Inc. -> HP Inc.) Task: {8B9555AD-D4E5-46E9-A7F4-F0F9F63D775E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-03] (HP Inc. -> HP Inc.) Task: {98F119F9-B287-405A-B580-E670946040C7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-09-03] (HP Inc. -> HP Inc.) Task: {B14242D4-B130-4EC2-9D1F-B418D4A91F3C} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.) Task: {D65E2CE8-C0CA-4D68-B50B-C8DFAC25B8F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {DF33FA6F-2EEE-4A1A-A48F-AE2CE10FCA06} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [462696 2018-06-01] (HP Inc. -> HP Inc.) Task: {EBE6CDFE-F34C-4EB2-AFE5-DC0982D73FB7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-09-03] (HP Inc. -> HP Inc.) Task: {EDFECE65-62CF-4E11-AE0B-30EFB1645138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-31] (Google Inc -> Google LLC) Task: {FF0022AA-07FD-43EE-961F-7736EFC32EB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-31] (Google Inc -> Google LLC) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{35ed3fc7-5074-4d32-aa9b-4977f468f2ba}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{73c39bd9-1a8b-4df7-8060-b65e327fd569}: [DhcpNameServer] 172.168.0.7 Edge: ======= Edge Notifications: HKU\S-1-5-21-767375977-2891970839-172957574-1001 -> hxxps://www.facebook.com; hxxps://www.newchic.com; hxxps://www.justfab.fr; hxxps://www.youtube.com; hxxps://www.floryday.com; hxxps://www.weareknitters.fr Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\laure\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-29] Edge Notifications: Default -> hxxps://allowsuccess.org; hxxps://chefsimon.com; hxxps://fr.aliexpress.com; hxxps://fr.allsearchsite.com; hxxps://hobbii.fr; hxxps://lagrenouilletricote.com; hxxps://plaisir-doffrir.com; hxxps://pushwelcome.com; hxxps://usineclub.os.tc; hxxps://www.750g.com; hxxps://www.ador.com; hxxps://www.argentdubeurre.com; hxxps://www.bonial.fr; hxxps://www.decomundo.fr; hxxps://www.e.leclerc; hxxps://www.facebook.com; hxxps://www.femmeactuelle.fr; hxxps://www.floryday.com; hxxps://www.floryday.net; hxxps://www.fnac.com; hxxps://www.galerieslafayette.com; hxxps://www.grazia.fr; hxxps://www.interflora.fr; hxxps://www.justfab.fr; hxxps://www.lightinthebox.com; hxxps://www.newchic.com; hxxps://www.oui.sncf; hxxps://www.programme-tv.net; hxxps://www.remisesenligne.fr; hxxps://www.teleshopping.fr; hxxps://www.weareknitters.fr; hxxps://www.yoursgrandestailles.fr; hxxps://www.youtube.com; hxxps://www1.news-back.best; hxxps://www1.news-back.com; hxxps://www2.news-back.best FireFox: ======== FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: 3|0|Default|0|hxxps://www.floryday.com/|p#hxxps://www.floryday.com/#010097 CHR Profile: C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default [2021-09-03] CHR Notifications: Default -> hxxps://fr.shein.com; hxxps://hobbii.fr; hxxps://www.floryday.com; hxxps://www.maison-berger.fr; hxxps://www.yoursgrandestailles.fr CHR Extension: (Slides) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-31] CHR Extension: (Docs) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-31] CHR Extension: (Google Drive) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-31] CHR Extension: (YouTube) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-31] CHR Extension: (Sheets) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-31] CHR Extension: (Google Docs hors connexion) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-06-01] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Gmail) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-31] CHR Extension: (Chrome Media Router) - C:\Users\laure\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18] CHR Profile: C:\Users\laure\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-07-17] CHR Profile: C:\Users\laure\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-17] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2020-10-18] (Adobe Systems) [Fichier non signé] S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3079464 2021-08-15] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3079464 2021-08-15] (ESET, spol. s r.o. -> ESET) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.170.0822.0002\FileSyncHelper.exe [3254656 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) S2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321608 2018-09-25] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\AppHelperCap.exe [744000 2021-08-27] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\DiagsCap.exe [742480 2021-08-27] (HP Inc. -> HP Inc.) R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [478056 2018-06-01] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\NetworkCap.exe [742488 2021-08-27] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-08] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_4ae87038c758c4f5\x64\SysInfoCap.exe [743512 2021-08-27] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_35df954651b1f88f\x64\TouchpointAnalyticsClientService.exe [489584 2021-06-18] (HP Inc. -> HP Inc.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.170.0822.0002\OneDriveUpdaterService.exe [3716992 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [169424 2021-08-04] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [123472 2021-08-04] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [194776 2021-08-04] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43904 2021-08-04] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70232 2021-08-04] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-08-04] (ESET, spol. s r.o. -> ESET) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [23960 2018-07-06] (HP Inc. -> HP Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-29 10:33 - 2021-09-29 10:34 - 000018397 _____ C:\Users\laure\Desktop\FRST.txt 2021-09-29 10:33 - 2021-09-29 10:33 - 000000000 ____D C:\Users\laure\Desktop\FRST-OlderVersion 2021-09-29 10:33 - 2021-09-29 10:33 - 000000000 ____D C:\FRST 2021-09-29 10:32 - 2021-09-29 10:32 - 002016256 _____ (Farbar) C:\Users\laure\Downloads\Non confirmé 549035.crdownload 2021-09-29 10:30 - 2021-09-29 10:33 - 002304512 _____ (Farbar) C:\Users\laure\Desktop\FRST64-2.1.exe 2021-09-29 10:25 - 2021-09-29 10:25 - 000000659 _____ C:\Users\laure\Downloads\Installation_gpedit_msc_en_ligne_de_commande.zip 2021-09-29 10:09 - 2021-09-29 10:11 - 000000000 ____D C:\ProgramData\F-Secure 2021-09-29 10:09 - 2021-09-29 10:09 - 012401864 _____ (F-Secure Corporation) C:\Users\laure\Downloads\F-SecureOnlineScanner (1).exe 2021-09-29 10:08 - 2021-09-29 10:11 - 000000000 ____D C:\Users\laure\AppData\Local\FSDART 2021-09-29 10:08 - 2021-09-29 10:08 - 012401864 _____ (F-Secure Corporation) C:\Users\laure\Downloads\F-SecureOnlineScanner.exe 2021-09-29 10:08 - 2021-09-29 10:08 - 000000000 ____D C:\Users\laure\AppData\Local\F-Secure 2021-09-29 10:07 - 2021-09-29 10:18 - 000000000 ____D C:\AdwCleaner 2021-09-29 10:07 - 2021-09-29 10:07 - 008553680 _____ (Malwarebytes) C:\Users\laure\Downloads\adwcleaner_8.3.0.exe 2021-09-29 10:07 - 2021-09-29 10:07 - 008553680 _____ (Malwarebytes) C:\Users\laure\Downloads\adwcleaner_8.3.0 (1).exe 2021-09-29 10:04 - 2021-09-06 02:49 - 000286312 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcAudioBus.sys 2021-09-22 17:13 - 2021-09-22 17:12 - 015752602 _____ C:\Users\laure\Documents\video-1632318107.mp4 2021-09-22 17:13 - 2021-09-22 17:12 - 008546130 _____ C:\Users\laure\Documents\video-1632319935.mp4 2021-09-22 17:12 - 2021-09-22 17:12 - 015752602 _____ C:\Users\laure\Downloads\video-1632318107.mp4 2021-09-22 17:12 - 2021-09-22 17:12 - 008546130 _____ C:\Users\laure\Downloads\video-1632319935.mp4 2021-09-22 17:12 - 2021-09-22 17:06 - 009917803 _____ C:\Users\laure\Documents\video-1632305942.mp4 2021-09-22 17:06 - 2021-09-22 17:06 - 009917803 _____ C:\Users\laure\Downloads\video-1632305942.mp4 2021-09-22 15:01 - 2021-09-22 15:02 - 000000000 ____D C:\WINDOWS\Minidump 2021-09-22 15:01 - 2021-09-22 15:01 - 1042264434 _____ C:\WINDOWS\MEMORY.DMP 2021-09-22 15:01 - 2021-09-22 15:01 - 002236700 _____ C:\WINDOWS\Minidump\092221-8375-01.dmp 2021-09-21 20:14 - 2021-09-21 20:12 - 005568960 _____ C:\Users\laure\Documents\video-1632128912.mp4 2021-09-21 20:13 - 2021-09-21 20:12 - 007912035 _____ C:\Users\laure\Documents\video-1631812835.mp4 2021-09-21 20:13 - 2021-09-21 20:12 - 002378793 _____ C:\Users\laure\Documents\video-1631959193.mp4 2021-09-21 20:12 - 2021-09-21 20:12 - 007912035 _____ C:\Users\laure\Downloads\video-1631812835.mp4 2021-09-21 20:12 - 2021-09-21 20:12 - 005568960 _____ C:\Users\laure\Downloads\video-1632128912.mp4 2021-09-21 20:12 - 2021-09-21 20:12 - 002378793 _____ C:\Users\laure\Downloads\video-1631959193.mp4 2021-09-21 18:30 - 2021-09-21 18:30 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-09-21 18:30 - 2021-09-21 18:30 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-09-21 18:30 - 2021-09-21 18:30 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-09-21 18:30 - 2021-09-21 18:30 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-09-21 18:30 - 2021-09-21 18:30 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-09-21 18:30 - 2021-09-21 18:30 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-09-21 18:30 - 2021-09-21 18:30 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-09-21 18:30 - 2021-09-21 18:30 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-09-21 18:30 - 2021-09-21 18:30 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-09-21 18:30 - 2021-09-21 18:30 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-09-21 18:30 - 2021-09-21 18:30 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-09-21 18:30 - 2021-09-21 18:30 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-09-21 18:30 - 2021-09-21 18:30 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-09-21 18:30 - 2021-09-21 18:30 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-09-21 18:30 - 2021-09-21 18:30 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-09-21 18:30 - 2021-09-21 18:30 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-09-21 18:30 - 2021-09-21 18:30 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2021-09-21 18:30 - 2021-09-21 18:30 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx 2021-09-21 18:30 - 2021-09-21 18:30 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-09-21 18:30 - 2021-09-21 18:30 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-09-21 17:39 - 2021-09-21 17:39 - 000000000 ___HD C:\$WinREAgent 2021-09-21 16:17 - 2021-09-21 16:17 - 000020120 _____ C:\Users\laure\Documents\rappel vaccination.odt 2021-09-21 16:05 - 2021-09-21 12:32 - 012486787 _____ C:\Users\laure\Documents\video-1631955343.mp4 2021-09-21 16:05 - 2021-09-21 12:31 - 011525462 _____ C:\Users\laure\Documents\video-1631959457.mp4 2021-09-21 16:05 - 2021-09-21 12:31 - 008447005 _____ C:\Users\laure\Documents\video-1631975190.mp4 2021-09-21 16:05 - 2021-09-21 12:31 - 007054675 _____ C:\Users\laure\Documents\video-1631959421.mp4 2021-09-21 16:05 - 2021-09-21 12:31 - 001419429 _____ C:\Users\laure\Documents\video-1631975203.mp4 2021-09-21 16:05 - 2021-09-21 12:30 - 013663300 _____ C:\Users\laure\Documents\video-1632153536.mp4 2021-09-21 16:05 - 2021-09-21 12:30 - 013076872 _____ C:\Users\laure\Documents\video-1632058454.mp4 2021-09-21 12:32 - 2021-09-21 12:32 - 012486787 _____ C:\Users\laure\Downloads\video-1631955343.mp4 2021-09-21 12:31 - 2021-09-21 12:31 - 011525462 _____ C:\Users\laure\Downloads\video-1631959457.mp4 2021-09-21 12:31 - 2021-09-21 12:31 - 008447005 _____ C:\Users\laure\Downloads\video-1631975190.mp4 2021-09-21 12:31 - 2021-09-21 12:31 - 007054675 _____ C:\Users\laure\Downloads\video-1631959421.mp4 2021-09-21 12:31 - 2021-09-21 12:31 - 001419429 _____ C:\Users\laure\Downloads\video-1631975203.mp4 2021-09-21 12:30 - 2021-09-21 12:30 - 013663300 _____ C:\Users\laure\Downloads\video-1632153536.mp4 2021-09-21 12:30 - 2021-09-21 12:30 - 013076872 _____ C:\Users\laure\Downloads\video-1632058454.mp4 2021-09-14 11:53 - 2021-09-14 11:53 - 008648204 _____ C:\Users\laure\Downloads\video-1631606405.mp4 2021-09-14 09:11 - 2021-09-14 08:38 - 006749697 _____ C:\Users\laure\Documents\video-1631557235.mp4 2021-09-14 09:11 - 2021-09-14 08:38 - 005765174 _____ C:\Users\laure\Documents\video-1631557454.mp4 2021-09-14 08:38 - 2021-09-14 08:38 - 006749697 _____ C:\Users\laure\Downloads\video-1631557235.mp4 2021-09-14 08:38 - 2021-09-14 08:38 - 005765174 _____ C:\Users\laure\Downloads\video-1631557454.mp4 2021-09-13 08:38 - 2021-09-13 08:34 - 010295200 _____ C:\Users\laure\Documents\video-1631513651.mp4 2021-09-13 08:34 - 2021-09-13 08:34 - 010295200 _____ C:\Users\laure\Downloads\video-1631513651.mp4 2021-09-12 17:59 - 2021-09-12 17:57 - 016537341 _____ C:\Users\laure\Documents\video-1631456848.mp4 2021-09-12 17:59 - 2021-09-12 17:57 - 003731500 _____ C:\Users\laure\Documents\video-1631459328.mp4 2021-09-12 17:57 - 2021-09-12 17:57 - 016537341 _____ C:\Users\laure\Downloads\video-1631456848.mp4 2021-09-12 17:57 - 2021-09-12 17:57 - 003731500 _____ C:\Users\laure\Downloads\video-1631459328.mp4 2021-09-12 09:34 - 2021-09-12 09:34 - 000187843 _____ C:\Users\laure\Documents\ATTESTATION EDF 2021.pdf 2021-09-12 09:28 - 2021-09-12 09:27 - 005762146 _____ C:\Users\laure\Documents\video-1631431494.mp4 2021-09-12 09:27 - 2021-09-12 09:27 - 005762146 _____ C:\Users\laure\Downloads\video-1631431494.mp4 2021-09-10 14:09 - 2021-09-10 14:08 - 015174618 _____ C:\Users\laure\Documents\video-1631206949.mp4 2021-09-10 14:08 - 2021-09-10 14:08 - 015174618 _____ C:\Users\laure\Downloads\video-1631206949.mp4 2021-09-10 10:08 - 2021-09-19 17:29 - 000000000 ____D C:\Users\laure\Documents\AXEL_files 2021-09-10 10:08 - 2021-09-10 10:08 - 001383903 _____ C:\Users\laure\Documents\AXEL.html 2021-09-09 11:38 - 2021-09-09 11:38 - 000137798 _____ C:\Users\laure\Documents\carte identite.pdf 2021-09-08 08:31 - 2021-09-08 08:29 - 017806683 _____ C:\Users\laure\Documents\video-1631082555.mp4 2021-09-08 08:31 - 2021-09-08 08:22 - 009629955 _____ C:\Users\laure\Documents\video-1631082038.mp4 2021-09-08 08:29 - 2021-09-08 08:29 - 017806683 _____ C:\Users\laure\Downloads\video-1631082555.mp4 2021-09-08 08:22 - 2021-09-08 08:22 - 009629955 _____ C:\Users\laure\Downloads\video-1631082038.mp4 2021-09-08 08:20 - 2021-09-08 07:19 - 004605080 _____ C:\Users\laure\Documents\video-1630862308.mp4 2021-09-08 07:19 - 2021-09-08 07:19 - 004605080 _____ C:\Users\laure\Downloads\video-1630862308.mp4 2021-09-06 20:25 - 2021-09-06 20:24 - 012961439 _____ C:\Users\laure\Documents\video-1630952600.mp4 2021-09-06 20:24 - 2021-09-06 20:24 - 012961439 _____ C:\Users\laure\Downloads\video-1630952600.mp4 2021-09-06 11:44 - 2021-09-06 08:47 - 019798493 _____ C:\Users\laure\Documents\video-1630908473.mp4 2021-09-06 08:47 - 2021-09-06 08:47 - 019798493 _____ C:\Users\laure\Downloads\video-1630908473.mp4 2021-09-04 18:32 - 2021-09-04 18:32 - 000000000 ____D C:\Users\laure\AppData\Local\D3DSCache 2021-09-04 14:55 - 2021-09-04 13:57 - 014449318 _____ C:\Users\laure\Documents\video-1630752607.mp4 2021-09-04 14:03 - 2021-09-04 14:03 - 000002088 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk 2021-09-04 13:57 - 2021-09-04 13:57 - 014449318 _____ C:\Users\laure\Downloads\video-1630752607.mp4 2021-09-04 09:24 - 2021-09-04 09:23 - 007712174 _____ C:\Users\laure\Documents\video-1630739873.mp4 2021-09-04 09:23 - 2021-09-04 09:23 - 007712174 _____ C:\Users\laure\Downloads\video-1630739873.mp4 2021-09-04 08:20 - 2021-09-21 22:37 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2021-09-03 20:44 - 2021-09-03 20:43 - 014055989 _____ C:\Users\laure\Documents\video-1630693569.mp4 2021-09-03 20:43 - 2021-09-03 20:43 - 014055989 _____ C:\Users\laure\Downloads\video-1630693569.mp4 2021-09-03 20:43 - 2021-09-03 20:43 - 000569610 _____ C:\Users\laure\Documents\BRISE-BISE-AU-CROCHET-coeurs-et-pompons-1 (2).pdf 2021-09-02 21:46 - 2021-09-02 21:44 - 004974362 _____ C:\Users\laure\Documents\video-1630608486.mp4 2021-09-02 21:46 - 2021-09-02 21:43 - 006605252 _____ C:\Users\laure\Documents\video-1630608708.mp4 2021-09-02 21:44 - 2021-09-02 21:44 - 004974362 _____ C:\Users\laure\Downloads\video-1630608486.mp4 2021-09-02 21:43 - 2021-09-02 21:43 - 006605252 _____ C:\Users\laure\Downloads\video-1630608708.mp4 2021-09-02 14:14 - 2021-09-02 14:13 - 020620407 _____ C:\Users\laure\Documents\video-1630576963.mp4 2021-09-02 14:13 - 2021-09-02 14:13 - 020620407 _____ C:\Users\laure\Downloads\video-1630576963.mp4 2021-08-31 17:29 - 2021-08-31 16:17 - 012956981 _____ C:\Users\laure\Documents\video-1630348192.mp4 2021-08-31 16:17 - 2021-08-31 16:17 - 012956981 _____ C:\Users\laure\Downloads\video-1630348192.mp4 ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-29 10:18 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-09-29 10:11 - 2019-05-31 20:33 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-29 10:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-09-29 10:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-09-29 10:02 - 2021-02-24 13:37 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{EF970985-3555-422E-9613-C4A423A9192B} 2021-09-29 10:00 - 2020-10-06 20:11 - 000000000 ____D C:\Users\laure\AppData\Roaming\Messenger 2021-09-29 09:59 - 2019-05-19 15:45 - 000000000 ___RD C:\Users\laure\OneDrive 2021-09-29 09:59 - 2019-05-19 15:43 - 000000000 __SHD C:\Users\laure\IntelGraphicsProfiles 2021-09-28 07:49 - 2019-08-30 17:08 - 000819200 _____ C:\Users\laure\Documents\AGENDA (2).XLS 2021-09-28 07:39 - 2021-02-24 13:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-09-27 09:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-09-26 21:50 - 2020-03-18 19:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-09-26 21:50 - 2020-03-18 19:36 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-09-26 10:30 - 2021-02-24 13:31 - 000000000 ____D C:\Users\laure 2021-09-26 10:28 - 2021-02-24 13:38 - 001791436 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-09-26 10:28 - 2019-12-07 16:49 - 000797844 _____ C:\WINDOWS\system32\perfh00C.dat 2021-09-26 10:28 - 2019-12-07 16:49 - 000160198 _____ C:\WINDOWS\system32\perfc00C.dat 2021-09-26 10:23 - 2021-02-24 13:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-09-26 10:23 - 2021-02-24 13:30 - 000008192 ___SH C:\DumpStack.log.tmp 2021-09-26 10:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-09-26 09:44 - 2019-06-16 11:50 - 000366592 _____ C:\Users\laure\Documents\COMPTES FIXE.XLS 2021-09-23 15:41 - 2020-03-04 12:05 - 000000000 ____D C:\Users\laure\Documents\100APPLE 2021-09-21 22:38 - 2019-12-07 11:03 - 002359296 _____ C:\WINDOWS\system32\config\BBI 2021-09-21 22:37 - 2021-02-24 13:30 - 000574664 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-09-21 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-09-21 22:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-09-21 18:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-09-19 20:13 - 2021-02-24 13:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-09-19 20:13 - 2020-04-16 16:18 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-09-19 17:49 - 2020-04-01 16:24 - 000000000 ____D C:\Users\laure\Documents\115APPLE 2021-09-19 17:44 - 2020-03-04 12:06 - 000000000 ____D C:\Users\laure\Documents\102APPLE 2021-09-18 13:23 - 2021-02-24 13:37 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2021-09-18 13:23 - 2020-01-03 13:13 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-09-18 10:54 - 2019-05-27 19:09 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-09-17 13:08 - 2019-05-27 19:09 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-09-14 09:40 - 2019-06-16 11:16 - 000054784 _____ C:\Users\laure\Documents\répertoire.XLS 2021-09-11 12:03 - 2020-09-30 09:43 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-09-04 14:03 - 2018-10-30 00:59 - 000000000 ___HD C:\hp 2021-09-02 16:04 - 2020-03-04 12:22 - 000000000 ____D C:\Users\laure\Documents\114APPLE ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================