Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Exécuté par user (administrateur) sur JOHANNE (Gateway NE-522) (31-12-2020 14:29:59)
Exécuté depuis C:\Users\user\Downloads
Profils chargés: user
Platform: Windows 10 Home Version 2004 19041.685 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMSvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMTray.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <33>
(Joyent, Inc) [Fichier non signé] C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\SBWDKService.exe
(Kovid Goyal -> ) C:\Program Files\Calibre2\calibre.exe
(Kovid Goyal -> ) C:\Program Files\Calibre2\calibre-parallel.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2011.11613.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Plex, Inc -> Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(Plex, Inc -> Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\Common Files\SMART Technologies\SMART Crash Reporter 1.2\crashpad_handler2.exe <3>
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\Office\SMARTInk-SBSDKProxy.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInkPrivilegedAccess.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [198040 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2619800 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [661400 2017-08-09] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [67488 2017-05-22] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [288152 2017-09-15] (SMART Technologies Ulc -> SMART Technologies)
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-1212179061-1370240442-2350391888-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [17786856 2018-04-12] (Plex, Inc -> Plex, Inc.)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [388792 2016-02-23] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\SMART Local Port: C:\WINDOWS\system32\smrtlocalmon.dll [37776 2010-07-12] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-07] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé]
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2018-05-09]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0052543A-58E1-40ED-9B64-A5FB773BC2D5} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4227672 2017-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {23E26EE5-BC88-447C-86A7-E8337EB468A4} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {33315E31-36A7-4D2E-A2C8-56BF76AA9A74} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {40BED573-AF3C-49A3-B437-CCBA9DC3B4CE} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1212179061-1370240442-2350391888-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-11] (Microsoft Windows -> )
Task: {4B567E2A-A4BD-44A4-BE7E-D1AD297EE29B} - System32\Tasks\Launch Manager => C:\Program Files\Gateway\Gateway Launch Manager\LMLauncher.exe [415272 2013-06-17] (Acer Incorporated -> Acer Incorporate)
Task: {6214BA80-F829-49AD-A16D-C07AFC46886F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {64964768-692D-4074-BAD6-050341269DA7} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
Task: {6B7E710B-C443-44D4-9FE2-D7845AF4DB1A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {724BB341-A0C3-4ADA-8E5C-3EF00EC57252} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Gateway\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> )
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {853A5C59-C4A9-4F7F-806C-0452827D9367} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {87387E51-5083-4B7B-A2D0-78300F372A4F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-16] (Google Inc -> Google Inc.)
Task: {8E6F4000-2D09-41D0-AAC5-F9A1DE8A6262} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {9BA41A31-8DAF-45CA-9E74-004EF1CCCBB0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.)
Task: {AB5FD59F-7D2B-417A-B298-CFDA31D5FF97} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {C4F45895-B18D-464A-99E1-158F8008B8DE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6CE464D-BBDC-4DBB-991E-D87375159170} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-16] (Google Inc -> Google Inc.)
Task: {CDA86677-F716-4C8A-9063-3C5AAD1381AA} - System32\Tasks\Power Management => C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [5306440 2013-03-15] (Acer Incorporated -> Acer Incorporated)
Task: {FECD9692-455E-40FB-9E36-770F4600D148} - System32\Tasks\ALU => C:\Program Files (x86)\Gateway\Live Updater\updater.exe [3367976 2013-02-21] (Acer Incorporated -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 207.164.234.193
Tcpip\..\Interfaces\{5661036e-2e32-4916-96ae-3d1aa0385618}: [DhcpNameServer] 192.168.2.1 207.164.234.193
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-20]
FireFox:
========
FF DefaultProfile: erdj16tp.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default [2020-01-20]
FF user.js: detected! => C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\user.js [2017-05-27]
FF Homepage: Mozilla\Firefox\Profiles\erdj16tp.default -> www.google.com
FF NewTab: Mozilla\Firefox\Profiles\erdj16tp.default -> about:newtab
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-06-16]
FF Extension: (Site Deployment Checker) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\features\{0edba4d5-a9f8-4f8d-b159-a2880f86f918}\deployment-checker@mozilla.org.xpi [2017-03-24] []
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default [2020-12-30]
CHR Notifications: Backup default -> hxxps://app.secteurpublic.quebec; hxxps://www.facebook.com; hxxps://www.ricardocuisine.com; hxxps://www.wayfair.ca
CHR HomePage: Backup default -> hxxp://www.google.com
CHR StartupUrls: Backup default -> "chrome://apps/"
CHR DefaultSearchURL: Backup default -> hxxps://clients.lecircuitelectrique.com/favicon.ico
CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-18]
CHR Extension: (Adobe Acrobat) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-15]
CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Profil | Client Web) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\gepajaaflflhenkpahdikmghlkehkbho [2020-10-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-16]
CHR Extension: (FLO) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\ilebfkfaanenncndbjgjpnmpldjminab [2020-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2020-12-31]
CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-30]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-30]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-30]
CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-30]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc. -> Apple Inc.)
S3 DeviceFastLaneService; C:\Program Files\Gateway\Gateway Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated -> Acer Incorporated)
S3 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit Information Technology -> IObit)
R2 LMSvc; C:\Program Files\Gateway\Gateway Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporated -> Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2212840 2018-04-12] (Plex, Inc -> Plex, Inc.)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [625048 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation)
R3 AthrSdSrv; C:\WINDOWS\system32\DRIVERS\athrsd.sys [48760 2012-11-30] (Atheros Communications Inc. -> Qualcomm Atheros, Inc.)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [40224 2014-12-25] (Comodo Security Solutions, Inc. -> Windows (R) Win 7 DDK provider)
S3 DrvAgent64; C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [20872 2016-01-07] (eSupport.com, Inc -> Phoenix Technologies)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-08-05] (Symantec Corporation -> Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153936 2015-07-16] (Symantec Corporation -> Symantec Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-12-30] (Malwarebytes Corporation -> Malwarebytes)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-18] (Martin Malik - REALiX -> REALiX(tm))
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [139424 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit Information Technology -> IObit)
R3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-31 14:29 - 2020-12-31 14:42 - 000025616 _____ C:\Users\user\Downloads\FRST.txt
2020-12-31 14:28 - 2020-12-31 14:28 - 002286592 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2020-12-30 21:50 - 2020-12-30 22:26 - 000019283 _____ C:\Users\user\Desktop\Mon livre de recettes.xlsx
2020-12-30 11:29 - 2020-12-30 11:29 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-12-30 11:28 - 2020-12-30 11:28 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-12-30 11:28 - 2020-12-30 11:28 - 000139424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000002048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-30 11:27 - 2020-12-30 11:25 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-12-30 11:07 - 2020-12-30 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quillevere.net
2020-12-30 11:07 - 2020-12-30 11:07 - 000000000 ____D C:\Program Files (x86)\Quillevere.net
2020-12-30 11:07 - 2004-03-08 23:00 - 000224016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Tabctl32.ocx
2020-12-30 11:07 - 2004-03-08 23:00 - 000212240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Richtx32.ocx
2020-12-30 11:07 - 2004-03-08 23:00 - 000152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2020-12-30 11:07 - 2004-02-01 21:54 - 000569368 _____ C:\WINDOWS\SysWOW64\olelib.tlb
2020-12-30 11:07 - 2000-10-01 22:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.DLL
2020-12-30 11:03 - 2020-12-30 11:06 - 006999689 _____ ( ) C:\Users\user\Downloads\la_marmite_du_chef.exe
2020-12-28 21:18 - 2020-12-28 21:18 - 000688091 _____ C:\Users\user\Downloads\Bourbeau Lise Ecoute ton corps.epub
2020-12-27 21:20 - 2020-12-27 21:20 - 002531103 _____ C:\Users\user\Desktop\Instant-Pot-Pressure-Cooker-Recipe-Book-North-America-FRENCH-web.pdf
2020-12-27 21:02 - 2020-12-27 21:02 - 000263719 _____ C:\Users\user\Downloads\AU-DELA 01 Au-dela - Hudson, Tara (1).epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000655645 _____ C:\Users\user\Downloads\AU-DELA 02 Elevation - Hudson, Tara.epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000366543 _____ C:\Users\user\Downloads\Au-dela-Tome-3-Elegy-Tara-Hudson.epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000263719 _____ C:\Users\user\Downloads\AU-DELA 01 Au-dela - Hudson, Tara.epub
2020-12-27 20:33 - 2020-12-27 20:33 - 000353029 _____ C:\Users\user\Downloads\Gardner,Lisa - FBI profiler T1- Jusqu'à ce que la mort nous sépare.epub
2020-12-25 21:40 - 2020-12-25 21:40 - 003570492 _____ C:\Users\user\Downloads\ricardo-autocuiseur-guide-fr.pdf
2020-12-25 21:39 - 2020-12-25 21:39 - 000054267 _____ C:\Users\user\Desktop\Fichier Vierge recettes Autocuiseur.xlsx
2020-12-25 21:38 - 2020-12-25 21:38 - 000061749 _____ C:\Users\user\Downloads\Fichier Vierge recettes Autocuiseur.xlsx
2020-12-23 07:46 - 2020-12-23 07:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2020-12-22 16:42 - 2020-12-22 16:42 - 000635667 _____ C:\Users\user\Downloads\20201130_month_stat_38AHB8.pdf
2020-12-16 16:48 - 2020-12-16 16:48 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212179061-1370240442-2350391888-1001
2020-12-16 16:48 - 2020-12-16 16:48 - 000002447 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-13 12:38 - 2020-12-13 12:38 - 000008735 _____ C:\Users\user\Desktop\Ninja.xlsx
2020-12-13 12:37 - 2020-12-13 12:37 - 000000000 ___SD C:\Users\user\Documents\Mes sources de données
2020-12-13 12:29 - 2020-12-31 13:17 - 000000000 ____D C:\Users\user\AppData\Local\Deployment
2020-12-13 12:28 - 2020-12-13 12:28 - 000489239 _____ C:\Users\user\Downloads\LISTE-1-DES-PARTICIPANTS-AU-TIRAGE-AU-SORT-DE-NOËL-2020.pdf
2020-12-11 09:15 - 2020-12-11 09:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-11 09:15 - 2020-12-11 09:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-11 09:15 - 2020-12-11 09:15 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-11 09:15 - 2020-12-11 09:15 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-11 09:15 - 2020-12-11 09:15 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-11 09:14 - 2020-12-11 09:14 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-11 09:14 - 2020-12-11 09:14 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-11 09:14 - 2020-12-11 09:14 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-11 09:14 - 2020-12-11 09:14 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-11 09:14 - 2020-12-11 09:14 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-11 09:14 - 2020-12-11 09:14 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-11 09:13 - 2020-12-11 09:13 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-11 09:13 - 2020-12-11 09:13 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-10 20:35 - 2020-12-10 20:35 - 000000000 ____D C:\WINDOWS\PCHEALTH
2020-12-10 08:16 - 2020-12-10 08:16 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-09 19:24 - 2020-12-09 19:24 - 000377529 _____ C:\Users\user\Downloads\Sicard, Louis-Pier - Au nom de l'horreur.epub
2020-12-09 19:23 - 2020-12-09 19:23 - 000319384 _____ C:\Users\user\Downloads\Un roman dont vous etes la victime - Hymne a la vengeance - Sicard, L.P.epub
2020-12-09 19:21 - 2020-12-09 19:21 - 000170100 _____ C:\Users\user\Downloads\Sicard, L.P. - La belle au bois dormant.epub
2020-12-09 19:18 - 2020-12-09 19:18 - 000307872 _____ C:\Users\user\Downloads\Sky,Penelope - Fiances T9 - Cachottier.epub
2020-12-09 19:14 - 2020-12-09 19:15 - 000308976 _____ C:\Users\user\Downloads\Sky,Penelope Sky Fiances T10 - Verite.epub
2020-12-09 19:13 - 2020-12-09 19:13 - 002269289 _____ C:\Users\user\Downloads\Sicard, L.P. - Les contes interdits - Scrooge.epub
2020-12-09 19:09 - 2020-12-09 19:09 - 000512498 _____ C:\Users\user\Downloads\Bornsmith,Belinda - Pari risqué T4 - Pari Gagne.epub
2020-12-09 19:08 - 2020-12-09 19:08 - 000489643 _____ C:\Users\user\Downloads\Bornsmith,Belinda--Série Pari risqué T3 - Pari osé.epub
2020-12-09 19:06 - 2020-12-09 19:06 - 000889790 _____ C:\Users\user\Downloads\Ferland,Charles Etienne - Dévorés T2 - Metamorphoses.epub
2020-12-09 18:17 - 2020-12-09 18:17 - 000033480 _____ C:\Users\user\Desktop\produireSpecimenCheque.pdf
2020-12-08 16:54 - 2020-12-08 16:54 - 000237324 _____ C:\Users\user\Downloads\PDF_539797275_1_2020-11-28_0000000000.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-31 14:35 - 2017-07-08 15:14 - 000000000 ____D C:\FRST
2020-12-31 14:04 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-31 13:59 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-31 13:15 - 2020-11-29 23:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-31 11:14 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-31 11:08 - 2020-11-11 19:42 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-31 08:17 - 2020-01-12 12:29 - 000000000 ____D C:\Users\user\AppData\LocalLow\IGDump
2020-12-30 22:26 - 2017-01-09 16:45 - 000000000 ____D C:\Users\user\Documents\Bibliotheque recettes
2020-12-30 14:55 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-30 11:33 - 2015-07-19 20:01 - 000000000 ____D C:\Users\user\Documents\Bibliothèque calibre
2020-12-30 11:27 - 2020-01-04 12:18 - 000002036 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-12-30 11:27 - 2019-12-07 04:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-30 11:25 - 2020-04-23 23:21 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-12-30 11:15 - 2020-01-26 13:00 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2020-12-25 21:39 - 2017-12-30 23:06 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2020-12-25 16:06 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-23 11:02 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-20 09:38 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-12-20 09:38 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-12-20 09:37 - 2016-01-06 19:40 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2020-12-20 09:37 - 2015-07-20 07:56 - 000001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-12-20 09:25 - 2020-11-29 23:52 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-20 09:25 - 2019-12-07 09:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2020-12-20 09:25 - 2019-12-07 09:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2020-12-20 09:18 - 2020-11-30 00:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-20 09:18 - 2020-11-29 23:21 - 000466672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-20 09:17 - 2020-11-29 23:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-20 08:57 - 2019-12-07 04:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-12-20 08:57 - 2017-07-03 22:17 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-12-19 08:02 - 2020-07-15 22:55 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-19 08:02 - 2020-07-15 22:55 - 000002272 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-16 16:48 - 2015-08-07 11:35 - 000000000 ___RD C:\Users\user\OneDrive
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-11 09:27 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2020-12-11 09:27 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 08:24 - 2017-06-04 08:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-12-10 20:34 - 2012-07-26 00:26 - 000000167 _____ C:\WINDOWS\win.ini
2020-12-09 15:38 - 2020-11-30 02:43 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-12-09 15:38 - 2020-11-30 02:43 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-12-04 19:33 - 2018-06-14 01:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-12-03 21:47 - 2020-11-30 00:20 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-03 21:47 - 2020-11-30 00:20 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2015-08-06 04:24 - 2015-08-06 04:24 - 000007598 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par user (administrateur) sur JOHANNE (Gateway NE-522) (31-12-2020 14:29:59)
Exécuté depuis C:\Users\user\Downloads
Profils chargés: user
Platform: Windows 10 Home Version 2004 19041.685 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMSvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Gateway\Gateway Launch Manager\LMTray.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <33>
(Joyent, Inc) [Fichier non signé] C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\SBWDKService.exe
(Kovid Goyal -> ) C:\Program Files\Calibre2\calibre.exe
(Kovid Goyal -> ) C:\Program Files\Calibre2\calibre-parallel.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2011.11613.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Plex, Inc -> Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(Plex, Inc -> Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\Common Files\SMART Technologies\SMART Crash Reporter 1.2\crashpad_handler2.exe <3>
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\Office\SMARTInk-SBSDKProxy.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInkPrivilegedAccess.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [198040 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2619800 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [661400 2017-08-09] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [67488 2017-05-22] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [288152 2017-09-15] (SMART Technologies Ulc -> SMART Technologies)
HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
HKU\S-1-5-21-1212179061-1370240442-2350391888-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [17786856 2018-04-12] (Plex, Inc -> Plex, Inc.)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [388792 2016-02-23] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\SMART Local Port: C:\WINDOWS\system32\smrtlocalmon.dll [37776 2010-07-12] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-07] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé]
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2018-05-09]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0052543A-58E1-40ED-9B64-A5FB773BC2D5} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4227672 2017-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {23E26EE5-BC88-447C-86A7-E8337EB468A4} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {33315E31-36A7-4D2E-A2C8-56BF76AA9A74} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {40BED573-AF3C-49A3-B437-CCBA9DC3B4CE} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1212179061-1370240442-2350391888-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-11] (Microsoft Windows -> )
Task: {4B567E2A-A4BD-44A4-BE7E-D1AD297EE29B} - System32\Tasks\Launch Manager => C:\Program Files\Gateway\Gateway Launch Manager\LMLauncher.exe [415272 2013-06-17] (Acer Incorporated -> Acer Incorporate)
Task: {6214BA80-F829-49AD-A16D-C07AFC46886F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {64964768-692D-4074-BAD6-050341269DA7} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
Task: {6B7E710B-C443-44D4-9FE2-D7845AF4DB1A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {724BB341-A0C3-4ADA-8E5C-3EF00EC57252} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Gateway\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> )
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {853A5C59-C4A9-4F7F-806C-0452827D9367} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {87387E51-5083-4B7B-A2D0-78300F372A4F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-16] (Google Inc -> Google Inc.)
Task: {8E6F4000-2D09-41D0-AAC5-F9A1DE8A6262} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {9BA41A31-8DAF-45CA-9E74-004EF1CCCBB0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.)
Task: {AB5FD59F-7D2B-417A-B298-CFDA31D5FF97} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {C4F45895-B18D-464A-99E1-158F8008B8DE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6CE464D-BBDC-4DBB-991E-D87375159170} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-16] (Google Inc -> Google Inc.)
Task: {CDA86677-F716-4C8A-9063-3C5AAD1381AA} - System32\Tasks\Power Management => C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [5306440 2013-03-15] (Acer Incorporated -> Acer Incorporated)
Task: {FECD9692-455E-40FB-9E36-770F4600D148} - System32\Tasks\ALU => C:\Program Files (x86)\Gateway\Live Updater\updater.exe [3367976 2013-02-21] (Acer Incorporated -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 207.164.234.193
Tcpip\..\Interfaces\{5661036e-2e32-4916-96ae-3d1aa0385618}: [DhcpNameServer] 192.168.2.1 207.164.234.193
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-20]
FireFox:
========
FF DefaultProfile: erdj16tp.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default [2020-01-20]
FF user.js: detected! => C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\user.js [2017-05-27]
FF Homepage: Mozilla\Firefox\Profiles\erdj16tp.default -> www.google.com
FF NewTab: Mozilla\Firefox\Profiles\erdj16tp.default -> about:newtab
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-06-16]
FF Extension: (Site Deployment Checker) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\erdj16tp.default\features\{0edba4d5-a9f8-4f8d-b159-a2880f86f918}\deployment-checker@mozilla.org.xpi [2017-03-24] []
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default [2020-12-30]
CHR Notifications: Backup default -> hxxps://app.secteurpublic.quebec; hxxps://www.facebook.com; hxxps://www.ricardocuisine.com; hxxps://www.wayfair.ca
CHR HomePage: Backup default -> hxxp://www.google.com
CHR StartupUrls: Backup default -> "chrome://apps/"
CHR DefaultSearchURL: Backup default -> hxxps://clients.lecircuitelectrique.com/favicon.ico
CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-18]
CHR Extension: (Adobe Acrobat) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-15]
CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Profil | Client Web) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\gepajaaflflhenkpahdikmghlkehkbho [2020-10-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-16]
CHR Extension: (FLO) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\ilebfkfaanenncndbjgjpnmpldjminab [2020-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Backup default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2020-12-31]
CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-30]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-30]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-30]
CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-30]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc. -> Apple Inc.)
S3 DeviceFastLaneService; C:\Program Files\Gateway\Gateway Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated -> Acer Incorporated)
S3 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit Information Technology -> IObit)
R2 LMSvc; C:\Program Files\Gateway\Gateway Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporated -> Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2212840 2018-04-12] (Plex, Inc -> Plex, Inc.)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [625048 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation)
R3 AthrSdSrv; C:\WINDOWS\system32\DRIVERS\athrsd.sys [48760 2012-11-30] (Atheros Communications Inc. -> Qualcomm Atheros, Inc.)
R1 CFRMD; C:\WINDOWS\System32\DRIVERS\CFRMD.sys [40224 2014-12-25] (Comodo Security Solutions, Inc. -> Windows (R) Win 7 DDK provider)
S3 DrvAgent64; C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [20872 2016-01-07] (eSupport.com, Inc -> Phoenix Technologies)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-08-05] (Symantec Corporation -> Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153936 2015-07-16] (Symantec Corporation -> Symantec Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-12-30] (Malwarebytes Corporation -> Malwarebytes)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-18] (Martin Malik - REALiX -> REALiX(tm))
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [139424 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit Information Technology -> IObit)
R3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-31 14:29 - 2020-12-31 14:42 - 000025616 _____ C:\Users\user\Downloads\FRST.txt
2020-12-31 14:28 - 2020-12-31 14:28 - 002286592 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2020-12-30 21:50 - 2020-12-30 22:26 - 000019283 _____ C:\Users\user\Desktop\Mon livre de recettes.xlsx
2020-12-30 11:29 - 2020-12-30 11:29 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-12-30 11:28 - 2020-12-30 11:28 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-12-30 11:28 - 2020-12-30 11:28 - 000139424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-12-30 11:27 - 2020-12-30 11:27 - 000002048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-30 11:27 - 2020-12-30 11:25 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-12-30 11:07 - 2020-12-30 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quillevere.net
2020-12-30 11:07 - 2020-12-30 11:07 - 000000000 ____D C:\Program Files (x86)\Quillevere.net
2020-12-30 11:07 - 2004-03-08 23:00 - 000224016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Tabctl32.ocx
2020-12-30 11:07 - 2004-03-08 23:00 - 000212240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Richtx32.ocx
2020-12-30 11:07 - 2004-03-08 23:00 - 000152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2020-12-30 11:07 - 2004-02-01 21:54 - 000569368 _____ C:\WINDOWS\SysWOW64\olelib.tlb
2020-12-30 11:07 - 2000-10-01 22:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.DLL
2020-12-30 11:03 - 2020-12-30 11:06 - 006999689 _____ ( ) C:\Users\user\Downloads\la_marmite_du_chef.exe
2020-12-28 21:18 - 2020-12-28 21:18 - 000688091 _____ C:\Users\user\Downloads\Bourbeau Lise Ecoute ton corps.epub
2020-12-27 21:20 - 2020-12-27 21:20 - 002531103 _____ C:\Users\user\Desktop\Instant-Pot-Pressure-Cooker-Recipe-Book-North-America-FRENCH-web.pdf
2020-12-27 21:02 - 2020-12-27 21:02 - 000263719 _____ C:\Users\user\Downloads\AU-DELA 01 Au-dela - Hudson, Tara (1).epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000655645 _____ C:\Users\user\Downloads\AU-DELA 02 Elevation - Hudson, Tara.epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000366543 _____ C:\Users\user\Downloads\Au-dela-Tome-3-Elegy-Tara-Hudson.epub
2020-12-27 21:01 - 2020-12-27 21:01 - 000263719 _____ C:\Users\user\Downloads\AU-DELA 01 Au-dela - Hudson, Tara.epub
2020-12-27 20:33 - 2020-12-27 20:33 - 000353029 _____ C:\Users\user\Downloads\Gardner,Lisa - FBI profiler T1- Jusqu'à ce que la mort nous sépare.epub
2020-12-25 21:40 - 2020-12-25 21:40 - 003570492 _____ C:\Users\user\Downloads\ricardo-autocuiseur-guide-fr.pdf
2020-12-25 21:39 - 2020-12-25 21:39 - 000054267 _____ C:\Users\user\Desktop\Fichier Vierge recettes Autocuiseur.xlsx
2020-12-25 21:38 - 2020-12-25 21:38 - 000061749 _____ C:\Users\user\Downloads\Fichier Vierge recettes Autocuiseur.xlsx
2020-12-23 07:46 - 2020-12-23 07:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2020-12-22 16:42 - 2020-12-22 16:42 - 000635667 _____ C:\Users\user\Downloads\20201130_month_stat_38AHB8.pdf
2020-12-16 16:48 - 2020-12-16 16:48 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212179061-1370240442-2350391888-1001
2020-12-16 16:48 - 2020-12-16 16:48 - 000002447 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-13 12:38 - 2020-12-13 12:38 - 000008735 _____ C:\Users\user\Desktop\Ninja.xlsx
2020-12-13 12:37 - 2020-12-13 12:37 - 000000000 ___SD C:\Users\user\Documents\Mes sources de données
2020-12-13 12:29 - 2020-12-31 13:17 - 000000000 ____D C:\Users\user\AppData\Local\Deployment
2020-12-13 12:28 - 2020-12-13 12:28 - 000489239 _____ C:\Users\user\Downloads\LISTE-1-DES-PARTICIPANTS-AU-TIRAGE-AU-SORT-DE-NOËL-2020.pdf
2020-12-11 09:15 - 2020-12-11 09:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-11 09:15 - 2020-12-11 09:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-11 09:15 - 2020-12-11 09:15 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-11 09:15 - 2020-12-11 09:15 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-11 09:15 - 2020-12-11 09:15 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-11 09:14 - 2020-12-11 09:14 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-11 09:14 - 2020-12-11 09:14 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-11 09:14 - 2020-12-11 09:14 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-11 09:14 - 2020-12-11 09:14 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-11 09:14 - 2020-12-11 09:14 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-11 09:14 - 2020-12-11 09:14 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-11 09:14 - 2020-12-11 09:14 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-11 09:13 - 2020-12-11 09:13 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-11 09:13 - 2020-12-11 09:13 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-11 09:13 - 2020-12-11 09:13 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-10 20:35 - 2020-12-10 20:35 - 000000000 ____D C:\WINDOWS\PCHEALTH
2020-12-10 08:16 - 2020-12-10 08:16 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-09 19:24 - 2020-12-09 19:24 - 000377529 _____ C:\Users\user\Downloads\Sicard, Louis-Pier - Au nom de l'horreur.epub
2020-12-09 19:23 - 2020-12-09 19:23 - 000319384 _____ C:\Users\user\Downloads\Un roman dont vous etes la victime - Hymne a la vengeance - Sicard, L.P.epub
2020-12-09 19:21 - 2020-12-09 19:21 - 000170100 _____ C:\Users\user\Downloads\Sicard, L.P. - La belle au bois dormant.epub
2020-12-09 19:18 - 2020-12-09 19:18 - 000307872 _____ C:\Users\user\Downloads\Sky,Penelope - Fiances T9 - Cachottier.epub
2020-12-09 19:14 - 2020-12-09 19:15 - 000308976 _____ C:\Users\user\Downloads\Sky,Penelope Sky Fiances T10 - Verite.epub
2020-12-09 19:13 - 2020-12-09 19:13 - 002269289 _____ C:\Users\user\Downloads\Sicard, L.P. - Les contes interdits - Scrooge.epub
2020-12-09 19:09 - 2020-12-09 19:09 - 000512498 _____ C:\Users\user\Downloads\Bornsmith,Belinda - Pari risqué T4 - Pari Gagne.epub
2020-12-09 19:08 - 2020-12-09 19:08 - 000489643 _____ C:\Users\user\Downloads\Bornsmith,Belinda--Série Pari risqué T3 - Pari osé.epub
2020-12-09 19:06 - 2020-12-09 19:06 - 000889790 _____ C:\Users\user\Downloads\Ferland,Charles Etienne - Dévorés T2 - Metamorphoses.epub
2020-12-09 18:17 - 2020-12-09 18:17 - 000033480 _____ C:\Users\user\Desktop\produireSpecimenCheque.pdf
2020-12-08 16:54 - 2020-12-08 16:54 - 000237324 _____ C:\Users\user\Downloads\PDF_539797275_1_2020-11-28_0000000000.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-31 14:35 - 2017-07-08 15:14 - 000000000 ____D C:\FRST
2020-12-31 14:04 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-31 13:59 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-31 13:15 - 2020-11-29 23:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-31 11:14 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-31 11:08 - 2020-11-11 19:42 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-31 08:17 - 2020-01-12 12:29 - 000000000 ____D C:\Users\user\AppData\LocalLow\IGDump
2020-12-30 22:26 - 2017-01-09 16:45 - 000000000 ____D C:\Users\user\Documents\Bibliotheque recettes
2020-12-30 14:55 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-30 11:33 - 2015-07-19 20:01 - 000000000 ____D C:\Users\user\Documents\Bibliothèque calibre
2020-12-30 11:27 - 2020-01-04 12:18 - 000002036 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-12-30 11:27 - 2019-12-07 04:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-30 11:25 - 2020-04-23 23:21 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-12-30 11:15 - 2020-01-26 13:00 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2020-12-25 21:39 - 2017-12-30 23:06 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2020-12-25 16:06 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-23 11:02 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-20 09:38 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-12-20 09:38 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-12-20 09:37 - 2016-01-06 19:40 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2020-12-20 09:37 - 2015-07-20 07:56 - 000001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-12-20 09:25 - 2020-11-29 23:52 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-20 09:25 - 2019-12-07 09:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2020-12-20 09:25 - 2019-12-07 09:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2020-12-20 09:18 - 2020-11-30 00:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-20 09:18 - 2020-11-29 23:21 - 000466672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-20 09:17 - 2020-11-29 23:19 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-20 08:57 - 2019-12-07 04:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-12-20 08:57 - 2017-07-03 22:17 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-12-19 08:02 - 2020-07-15 22:55 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-19 08:02 - 2020-07-15 22:55 - 000002272 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-16 16:48 - 2015-08-07 11:35 - 000000000 ___RD C:\Users\user\OneDrive
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-11 20:20 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-11 09:27 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2020-12-11 09:27 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-11 08:24 - 2017-06-04 08:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-12-10 20:34 - 2012-07-26 00:26 - 000000167 _____ C:\WINDOWS\win.ini
2020-12-09 15:38 - 2020-11-30 02:43 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-12-09 15:38 - 2020-11-30 02:43 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-12-04 19:33 - 2018-06-14 01:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-12-03 21:47 - 2020-11-30 00:20 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-03 21:47 - 2020-11-30 00:20 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2015-08-06 04:24 - 2015-08-06 04:24 - 000007598 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================