Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.04.2024 Exécuté par Mimi (administrateur) sur DESKTOP-8N74VA3 (MSI MS-7918) (12-04-2024 13:17:52) Exécuté depuis C:\Users\Mimi\Desktop\FRST64.exe Profils chargés: Mimi Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.3447 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <6> (C:\Windows\SysWOW64\cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe (services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [MicrosoftEdgeAutoLaunch_DFCE59279629A7E126EA0BB013656E3E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [Screenpresso] => C:\Users\Mimi\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20342016 2024-04-09] (Learnpulse -> Learnpulse) HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1965424 2024-04-04] (Digital Wave Ltd -> Digital Wave Ltd) HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {8dba68a6-9341-11ee-8afc-7413ea7d8a0b} - "E:\setup.EXE" /AUTORUN HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {ebbeb92d-98d5-11ee-8b03-7413ea7d8a07} - "E:\HiSuiteDownLoader.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\122.0.6261.58\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.122\Installer\chrmstp.exe [2024-04-11] (Google LLC -> Google LLC) Startup: C:\Users\Mimi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Studio-Scrap.lnk [2023-12-06] ShortcutTarget: Notifications de Studio-Scrap.lnk -> C:\Program Files (x86)\Notifications de Studio-Scrap\Notifications de Studio-Scrap.exe (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP) GroupPolicy\User: Restriction ? <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {877BA7AA-787E-4946-827C-61ECC8772393} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mirvol13@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {FFDFB56C-98F1-4520-92DE-7933C985760C} - System32\Tasks\AOMEI Mes sauvegardes 2023-12-13, 13-21-27 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited) Task: {E3270256-6F0C-4FE2-B2C6-A7B86F55FB45} - System32\Tasks\AOMEI Sauvegarde Système(1) 2023-12-13, 13-23-00 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited) Task: {EB452BC9-1909-44DD-918F-EA5A9536AA0D} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> ) Task: {796899FB-D03A-4516-9068-2B67C221B65A} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> ) Task: {462A027E-D010-47EE-A793-4029262D9494} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{D302A029-DDFA-4ABD-81B9-AED271B54125} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) Task: {59820188-08BD-401C-A055-A2311EED9110} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {BD85F540-59BE-48F6-AC2D-7736D631BB0E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {C7E6AC1E-235C-4BA6-9D1B-2CB52C792A6D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier) Task: {EBC140E7-2682-4665-9585-F4FE4DB849CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {F7A7845B-71FB-48C0-939C-FF6DA27129D3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) Task: {95572EEC-B8AC-46B6-8D0E-DE542C38A2D6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {A2252492-A939-48B9-B39E-2E6891277CE9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {14476BA9-A14C-4DD5-9F90-DF662AC33ECC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168488 2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {6CA524EB-DB5C-4034-BB39-ABC8FABCDFDC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {124615C9-B3D6-450E-B077-9ACD953ACF93} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {02CA0A1D-311D-412D-A86D-5942CB968BD4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E50D531E-2301-4C65-BF07-CB2637C70C08} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {22878BCF-2008-4C31-A6CD-3BEC8C492EF8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {16440384-4598-43DC-9E56-E9EE357F749A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {645E1595-7938-4AA9-A1F8-62DFF9BF1427} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B4D0551D-0E29-4FB6-8158-A4C5401D2822} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {175CB846-D0A7-46FD-8D37-BBCB1B917A59} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B4E88D51-FBE0-41A5-A32D-BFC9E6EB2282} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9D41CECE-5719-4C76-8016-F280A2B9483E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation) Task: {E6910591-15EA-4D05-B57D-811340C4D670} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation) Task: {BD64098E-B89B-4F57-A92C-FD96B7771EE8} - System32\Tasks\PowerDirectorStyleAgent => C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe [97544 2023-12-05] (CyberLink Corp. -> CyberLink Corp.) Task: {2DC979C2-58F5-44B9-9934-6EBF8EE6C071} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2023-11-26] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{36c75890-0df5-42b0-8ced-a97f01111896}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpDomain] home Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\356425F583339303F5537484A5: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-11] Edge HomePage: Default -> hxxps://google.com/ Edge DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=U501DF&PC=U501&q={searchTerms} Edge DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=U501DF&PC=U501&query={searchTerms} Edge Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-11-27] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-11] Edge Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-04-07] Edge Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-11-27] Edge Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07] Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-07] Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-04-11] Edge Extension: (Bing) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2023-11-27] Edge Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2023-11-27] Edge Extension: (Edge relevant text changes) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-19] Edge Extension: (Video DownloadHelper) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2024-04-07] Edge Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kacbklkbjmnjkhnellgciecdogkkldoj [2023-11-27] Edge Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-07] Edge Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-19] Edge HKLM-x32\...\Edge\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default [2024-04-12] CHR Notifications: Default -> hxxps://www.facebook.com CHR HomePage: Default -> hxxps://google.com/ CHR StartupUrls: Default -> "hxxps://google.com/" CHR Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-02-23] CHR Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-03-31] CHR Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2024-02-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-31] CHR Extension: (Klarna | Achetez maintenant, payez plus tard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2024-04-08] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-11] CHR Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2024-03-31] CHR Extension: (Bing) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2024-02-23] CHR Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2024-02-23] CHR Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-23] CHR Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-23] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation) S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-11-13] (Intel Corporation -> Intel) S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-11-13] (Intel Corporation -> Intel) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-09] (Microsoft Corporation -> Microsoft Corporation) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8882936 2024-04-07] (Malwarebytes Inc. -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-09] (Microsoft Corporation -> Microsoft Corporation) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [625928 2023-12-05] (CyberLink Corp. -> CyberLink) S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\RpcAgentSrv.exe [141816 2023-10-30] (SiSoftware SPC -> SiSoftware) [Fichier non signé] S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-03-31] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21047096 2024-01-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WsaService; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2311.40000.5.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe [312832 2024-01-11] (Microsoft Corporation -> ) S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-12-01] (AOMEI International Network Limited -> ) S3 ampa; C:\Windows\system32\ampa.sys [38320 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-12-01] (AOMEI International Network Limited -> ) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [Fichier non signé] S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 fse; C:\Windows\System32\drivers\fse.sys [218592 2023-11-26] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt11.sys [233704 2024-04-12] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78912 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-04-12] (Malwarebytes Inc. -> Malwarebytes) S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware) S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-26] (Microsoft Windows -> ) R3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20936 2024-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [601376 2024-04-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-04-12 13:17 - 2024-04-12 13:18 - 000029825 _____ C:\Users\Mimi\Desktop\FRST.txt 2024-04-12 13:17 - 2024-04-12 13:18 - 000000000 ____D C:\FRST 2024-04-12 13:15 - 2024-04-12 13:16 - 002394112 _____ (Farbar) C:\Users\Mimi\Desktop\FRST64.exe 2024-04-12 13:14 - 2024-04-12 13:14 - 000233704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt11.sys 2024-04-12 13:14 - 2024-04-12 13:14 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2024-04-12 13:14 - 2024-04-12 13:14 - 000000000 ____D C:\Users\Mimi\AppData\LocalLow\IGDump 2024-04-12 13:12 - 2024-04-12 13:12 - 002394112 _____ (Farbar) C:\Users\Mimi\Downloads\FRST64.exe 2024-04-12 10:22 - 2024-04-12 10:22 - 000771570 _____ C:\Windows\system32\perfh00C.dat 2024-04-12 10:22 - 2024-04-12 10:22 - 000148698 _____ C:\Windows\system32\perfc00C.dat 2024-04-11 13:33 - 2024-04-11 13:41 - 000000000 ____D C:\Users\Mimi\Desktop\Gilles Vigneault 2024-04-11 10:30 - 2024-04-11 10:30 - 076172440 _____ (The ClipGrab Project ) C:\Users\Mimi\Downloads\clipgrab-3.9.6-cgde.exe 2024-04-10 21:54 - 2024-04-09 20:36 - 000001379 _____ C:\Users\Mimi\Desktop\Free YouTube Download.lnk 2024-04-10 21:44 - 2024-04-10 21:52 - 000000000 ____D C:\Users\Mimi\Desktop\Quilapayun 2024-04-10 20:44 - 2024-04-10 20:44 - 000001412 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2024-04-10 20:42 - 2024-04-10 20:45 - 000000000 ____D C:\Users\Mimi\Desktop\DVDVideo SOFT 2024-04-10 20:42 - 2024-04-10 20:42 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYouTubeToMP3Converter 2024-04-10 18:47 - 2024-04-10 18:47 - 000001377 _____ C:\Users\Public\Desktop\Free Audio Converter.lnk 2024-04-10 18:46 - 2024-04-10 18:46 - 000000000 ____D C:\Users\Mimi\Desktop\Nouveau dossier 2024-04-10 18:45 - 2024-04-10 18:45 - 000000000 ____D C:\Users\Mimi\Desktop\A INSTALLER 2024-04-10 11:55 - 2024-04-10 11:57 - 000000000 ___HD C:\$WinREAgent 2024-04-09 21:27 - 2024-04-11 13:33 - 038239800 _____ (Digital Wave Ltd ) C:\Users\Mimi\Downloads\FreeGIFMaker_1.3.51.1103_r.exe 2024-04-09 20:46 - 2024-04-10 18:49 - 000000000 ____D C:\Users\Mimi\Documents\Appli Téléchargement 2024-04-09 20:36 - 2024-04-09 20:36 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYTVDownloader 2024-04-09 20:35 - 2024-04-10 20:44 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft 2024-04-08 15:09 - 2024-04-10 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2024-04-08 15:08 - 2024-04-10 20:44 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\DVDVideoSoft 2024-04-08 14:46 - 2024-04-08 14:46 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack 2024-04-07 20:03 - 2024-04-07 20:04 - 006970144 _____ (VS Revo Group ) C:\Users\Mimi\Downloads\revosetup.exe 2024-04-05 11:33 - 2024-04-05 11:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-03-31 21:48 - 2024-03-31 21:48 - 000675010 _____ C:\Users\Mimi\Downloads\takeout-20240331T121830Z-001.zip 2024-03-31 19:38 - 2024-03-31 19:38 - 000000347 _____ C:\Windows\PAGa4.dat 2024-03-31 19:34 - 2024-03-31 19:35 - 080714376 _____ (AOMEI International Network Limited. ) C:\Users\Mimi\Downloads\PAssist_Setup_20240401.11062258.exe 2024-03-31 19:12 - 2024-03-31 19:12 - 000000000 ____D C:\Windows\SysWOW64\DDFs 2024-03-31 19:05 - 2024-03-31 19:05 - 000024320 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-03-31 19:04 - 2024-03-31 19:04 - 000024320 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-04-12 13:16 - 2023-11-26 20:50 - 000000000 ____D C:\ProgramData\NVIDIA 2024-04-12 13:14 - 2024-01-13 15:51 - 000000000 ____D C:\Program Files\TeamViewer 2024-04-12 13:14 - 2023-12-01 11:47 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat 2024-04-12 13:14 - 2023-11-30 12:40 - 000000000 ____D C:\Users\Mimi\AppData\Local\Malwarebytes 2024-04-12 13:14 - 2023-11-29 21:55 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat 2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp 2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-04-12 13:13 - 2023-11-26 18:33 - 000000000 ____D C:\Users\Mimi 2024-04-12 13:13 - 2023-11-26 18:27 - 000012288 ___SH C:\DumpStack.log.tmp 2024-04-12 13:13 - 2023-11-26 18:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-04-12 13:13 - 2022-05-07 07:17 - 000524288 _____ C:\Windows\system32\config\BBI 2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness 2024-04-12 11:03 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-04-12 10:26 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-04-12 10:25 - 2023-11-29 19:46 - 000000000 ____D C:\Users\Mimi\AppData\Local\Adobe 2024-04-12 10:22 - 2023-11-26 18:33 - 001713522 _____ C:\Windows\system32\PerfStringBackup.INI 2024-04-12 10:22 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF 2024-04-11 13:29 - 2023-11-27 16:33 - 000000000 ____D C:\Users\Mimi\AppData\Local\CrashDumps 2024-04-11 09:36 - 2023-11-26 20:40 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-04-10 22:23 - 2023-12-06 15:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-04-10 22:23 - 2023-11-26 18:27 - 005383520 _____ C:\Windows\system32\FNTCACHE.DAT 2024-04-10 22:22 - 2023-11-26 20:16 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView 2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources 2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm 2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr 2024-04-10 12:04 - 2023-11-26 18:44 - 000000000 ____D C:\Windows\system32\MRT 2024-04-10 12:02 - 2023-11-26 18:44 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-04-10 12:02 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp 2024-04-10 12:00 - 2023-11-26 18:31 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-04-09 22:15 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\D3DSCache 2024-04-09 19:29 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AomeiBR 2024-04-09 14:07 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\Packages 2024-04-09 13:20 - 2023-12-05 15:59 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001 2024-04-09 13:20 - 2023-12-05 15:59 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-04-09 13:20 - 2023-12-05 15:59 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-04-09 13:14 - 2023-11-29 21:57 - 000001024 ____H C:\SYSTAG.BIN 2024-04-08 14:55 - 2023-12-01 14:26 - 000001183 _____ C:\Users\Public\Desktop\HiBit Uninstaller.lnk 2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiBit Uninstaller 2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\Program Files (x86)\HiBit Uninstaller 2024-04-07 21:26 - 2023-11-26 18:27 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-04-07 21:20 - 2023-12-09 22:55 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2024-04-07 20:20 - 2023-12-05 16:10 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\Microsoft\Word 2024-04-05 11:33 - 2023-12-05 15:54 - 000000000 ____D C:\Program Files\Microsoft Office 2024-04-05 11:33 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-04-05 11:18 - 2023-11-26 18:27 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-04-05 11:18 - 2023-11-26 18:27 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-03-31 19:51 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AOMEIPA 2024-03-31 19:38 - 2023-11-27 19:53 - 000000432 _____ C:\Windows\SysWOW64\Upgrade.dat 2024-03-31 19:38 - 2023-11-27 19:53 - 000000208 _____ C:\Windows\SysWOW64\PaBakConfig.dat 2024-03-31 19:38 - 2023-11-27 19:45 - 000001024 ____H C:\AMTAG.BIN 2024-03-31 19:38 - 2023-11-27 19:45 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant 2024-03-31 19:33 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-03-31 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-03-31 19:29 - 2023-11-26 18:29 - 000000000 ____D C:\ProgramData\Packages 2024-03-31 19:12 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\DDFs 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning 2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions 2024-03-31 19:12 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\servicing 2024-03-31 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================