cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-06-2021
Exécuté par adrie (administrateur) sur LAPTOP-UK29JPFN (LENOVO 80E3) (08-06-2021 23:15:44)
Exécuté depuis C:\Users\adrie\Downloads
Profils chargés: adrie
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskService.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskServiceTray.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\dglvrsvc.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(Google LLC -> Google) C:\Users\adrie\AppData\Local\Google\Chrome\User Data\SwReporter\91.263.200\software_reporter_tool.exe <4>
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.90.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\logman.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MRT.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\Shelblock.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\ShelblockSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029064 2016-12-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2138448 2021-04-08] (Wargaming.net Limited -> Wargaming.net)
HKLM\...\Windows x64\Print Processors\Canon MG5300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAT.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-08] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06ED3A65-0173-4E15-80E1-D878A578EED1} - System32\Tasks\KpRm-quarantines\KpRm-quarantines-20210608224509 => C:\KPRM\tasks-quarantines\kprm-quarantines.exe [2811112 2021-06-08] (kernel-panik -> kernel-panik) [Fichier non signé]
Task: {12862EB8-4A66-4639-AADF-73BFBD1262C9} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe
Task: {1544CB9B-CDEF-4E4D-BD6B-82A13CA8E015} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {25AAB4AE-500B-49B2-987B-FC2F081F59F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30429249-24B1-414D-8BD7-F6124F8222FA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-06] (LENOVO -> Lenovo)
Task: {9A18B694-7679-48AE-8A54-D7C78F58B7FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9CE897C6-3F94-4CBB-BC4A-543BC33A629F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-05-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {A5B64C86-6056-42FC-AE70-9A8176E54047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A8894E0C-2BEC-4576-B22B-CF6D1D10D6E8} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {B9BC5353-B84A-4844-B77B-1F163919B636} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {D6833818-7385-4940-92C4-C49352A5B0D3} - System32\Tasks\Microsoft\Windows\PLA\spacedesk_log => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F4F6E937-FABD-471C-8B95-B1A5B3250BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe
Task: {F976638A-208D-4090-B6D3-338CA460F908} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy est activé.
ProxyEnable: [HKLM-x32] => Proxy est activé.
ProxyServer: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyServer: [HKLM-x32] => http=127.0.0.1:48080;https=127.0.0.1:48080
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{84346582-3a2f-4cd9-b208-9f43c3f95ccf}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d4580938-9c82-4840-9d72-4e7775d5b311}: [DhcpNameServer] 150.210.1.2
ManualProxies: 1http=127.0.0.1:48080;https=127.0.0.1:48080

Edge:
=======
DownloadDir: C:\Users\adrie\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\adrie\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-08]

FireFox:
========
FF DefaultProfile: 3sdejf72.default
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\3sdejf72.default [2021-06-08]
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\cf2ehd8r.default-release [2021-06-08]
FF user.js: detected! => C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\cf2ehd8r.default-release\user.js [2021-06-08]
FF NetworkProxy: Mozilla\Firefox\Profiles\cf2ehd8r.default-release -> type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )

Chrome:
=======
CHR Profile: C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default [2021-06-08]
CHR Extension: (Google Drive) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-08]
CHR Extension: (Chrome Media Router) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-08]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [117976 2015-06-02] (Realtek Semiconductor Corp -> )
R2 dglvrsvc; C:\WINDOWS\dglvrsvc.exe [40928 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ShelblockSvc; C:\Program Files\Shelblock\ShelblockSvc.exe [4097736 2021-06-03] (SHELBLOCK -> Shelblock)
R2 spacedeskService; C:\WINDOWS\system32\spacedeskService.exe [1079720 2020-07-30] (Datronicsoft, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe [2644760 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe [136656 2021-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 BlueStacksDrv_bgp64; C:\Program Files\BlueStacks_bgp64\BstkDrv_bgp64.sys [315976 2020-04-07] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [95248 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 dglvrbus; C:\WINDOWS\System32\drivers\dglvrbus.sys [85984 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrkdod; C:\WINDOWS\system32\DRIVERS\dglvrkdod.sys [45536 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrmflt; C:\WINDOWS\System32\drivers\dglvrmflt.sys [27104 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [60944 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-06-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425208 2021-06-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-06-08] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-08 23:15 - 2021-06-08 23:20 - 000015440 _____ C:\Users\adrie\Downloads\FRST.txt
2021-06-08 23:15 - 2021-06-08 23:15 - 000000000 ____D C:\Users\adrie\Downloads\FRST-OlderVersion
2021-06-08 23:14 - 2021-06-08 23:15 - 002300416 _____ (Farbar) C:\Users\adrie\Downloads\FRST64-2.1.exe
2021-06-08 22:50 - 2021-06-08 22:50 - 000000000 ____D C:\Users\Public\spacedesk_logs
2021-06-08 22:47 - 2021-06-08 22:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\KpRm-quarantines
2021-06-08 22:45 - 2021-06-08 22:47 - 000002285 _____ C:\Users\adrie\Desktop\kprm-20210608224509.txt
2021-06-08 22:45 - 2021-06-08 22:47 - 000000000 ____D C:\KPRM
2021-06-08 22:37 - 2021-06-08 22:43 - 000000599 _____ C:\Users\adrie\Desktop\ccleaner.ini
2021-06-08 22:36 - 2021-06-08 22:36 - 035835617 _____ C:\Users\adrie\Downloads\ccsetup581 (2).zip
2021-06-08 22:36 - 2021-06-08 22:36 - 000000000 ____D C:\Users\adrie\Desktop\x86
2021-06-08 22:36 - 2021-06-08 22:36 - 000000000 ____D C:\Users\adrie\Desktop\x64
2021-06-08 22:36 - 2021-06-08 22:36 - 000000000 ____D C:\Users\adrie\Desktop\lang
2021-06-08 22:36 - 2021-06-07 16:08 - 034612864 _____ (Piriform Software Ltd) C:\Users\adrie\Desktop\CCleaner64.exe
2021-06-08 22:36 - 2021-06-07 16:08 - 028985472 _____ (Piriform Software Ltd) C:\Users\adrie\Desktop\CCleaner.exe
2021-06-08 22:36 - 2021-06-07 16:08 - 000005535 _____ C:\Users\adrie\Desktop\License.txt
2021-06-08 22:36 - 2021-06-07 16:08 - 000000010 _____ C:\Users\adrie\Desktop\portable.dat
2021-06-08 22:29 - 2021-06-08 22:29 - 035835617 _____ C:\Users\adrie\Downloads\ccsetup581 (1).zip
2021-06-08 22:27 - 2021-06-08 22:27 - 035835617 _____ C:\Users\adrie\Downloads\ccsetup581.zip
2021-06-08 20:37 - 2021-06-08 20:37 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\AMD
2021-06-08 19:25 - 2021-06-08 19:25 - 000000000 ____D C:\WINDOWS\system32\‰êh
2021-06-08 19:25 - 2021-06-08 19:25 - 000000000 ____D C:\WINDOWS\system32\@‰êh
2021-06-08 19:20 - 2021-06-08 19:20 - 000000000 ____D C:\Users\adrie\AppData\Local\MicrosoftEdge
2021-06-08 19:14 - 2021-06-08 19:14 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-08 19:14 - 2021-06-08 19:14 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-06-08 19:14 - 2021-06-08 19:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-08 19:14 - 2021-06-08 19:14 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Mozilla
2021-06-08 19:14 - 2021-06-08 19:14 - 000000000 ____D C:\Users\adrie\AppData\Local\Mozilla
2021-06-08 19:14 - 2021-06-08 19:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-08 19:14 - 2021-06-08 19:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-08 19:12 - 2021-06-08 19:12 - 000333128 _____ (Mozilla) C:\Users\adrie\Downloads\Firefox Installer (1).exe
2021-06-08 19:02 - 2021-06-08 19:03 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-08 19:02 - 2021-06-08 19:03 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-08 19:02 - 2021-06-08 19:02 - 000000000 ____D C:\Program Files\Google
2021-06-08 19:01 - 2021-06-08 21:15 - 000000000 ____D C:\Users\adrie\AppData\Local\Google
2021-06-08 19:01 - 2021-06-08 19:01 - 001310832 _____ (Google LLC) C:\Users\adrie\Downloads\ChromeSetup (1).exe
2021-06-08 18:55 - 2021-06-08 18:55 - 000008576 _____ C:\Users\adrie\Desktop\favoris_08_06_2021.html
2021-06-08 18:27 - 2021-06-08 18:27 - 002080712 _____ (Malwarebytes) C:\Users\adrie\Downloads\MBSetup (1).exe
2021-06-07 22:47 - 2021-06-07 22:47 - 000003805 _____ C:\Users\adrie\Desktop\bookmarks-2021-06-07.json
2021-06-07 19:19 - 2021-06-07 19:19 - 000000000 ____D C:\WINDOWS\system32\‰ú
2021-06-07 19:19 - 2021-06-07 19:19 - 000000000 ____D C:\WINDOWS\system32\@‰ú
2021-06-06 19:55 - 2021-06-08 19:46 - 000346448 _____ C:\Users\adrie\Desktop\ZHPDiag.html
2021-06-06 18:37 - 2021-06-06 18:42 - 000000000 ____D C:\AdwCleaner
2021-06-06 17:07 - 2021-06-06 17:07 - 000000000 ____D C:\Users\adrie\Downloads\Wub
2021-06-06 17:01 - 2021-06-06 17:03 - 001003898 _____ C:\Users\adrie\Downloads\Wub.zip
2021-06-06 16:54 - 2021-06-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-06-06 16:49 - 2021-06-06 16:49 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-06-06 16:44 - 2021-06-06 16:33 - 000000000 ____D C:\Windows.old
2021-06-06 16:36 - 2021-06-06 16:44 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-06-06 16:35 - 2021-06-06 16:35 - 000000020 ___SH C:\Users\adrie\ntuser.ini
2021-06-06 16:32 - 2021-06-08 22:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-06 16:32 - 2021-06-08 22:40 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-06 16:32 - 2021-06-08 22:40 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-06 16:32 - 2021-06-08 22:40 - 000002914 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559716797-1808254368-773481850-1002
2021-06-06 16:32 - 2021-06-07 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-06-06 16:32 - 2021-06-07 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\CyberLink
2021-06-06 16:32 - 2021-06-06 16:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-559716797-1808254368-773481850-1002
2021-06-06 16:30 - 2021-06-06 16:32 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-06-06 16:30 - 2021-06-06 16:32 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-06-06 16:27 - 2021-06-06 16:36 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-06-06 16:27 - 2021-06-06 16:27 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-06-06 16:18 - 2021-06-06 16:18 - 000000000 ____D C:\ProgramData\ssh
2021-06-06 16:13 - 2021-06-06 17:36 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-06 16:02 - 2021-06-06 16:02 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-06 16:00 - 2021-06-06 16:00 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-06-06 16:00 - 2021-06-06 16:00 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-06-06 16:00 - 2021-06-06 16:00 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-06-06 16:00 - 2021-06-06 16:00 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-06-06 16:00 - 2021-06-06 16:00 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-06-06 16:00 - 2021-06-06 16:00 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-06-06 16:00 - 2021-06-06 16:00 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-06 15:59 - 2021-06-06 15:59 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-06 15:59 - 2021-06-06 15:59 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-06 15:59 - 2021-06-06 15:59 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-06-06 15:59 - 2021-06-06 15:59 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-06-06 15:59 - 2021-06-06 15:59 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-06-06 15:59 - 2021-06-06 15:59 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-06-06 15:59 - 2021-06-06 15:59 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-06-06 15:59 - 2021-06-06 15:59 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-06 15:59 - 2021-06-06 15:59 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-06-06 15:59 - 2021-06-06 15:59 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-06-06 15:59 - 2021-06-06 15:59 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-06-06 15:58 - 2021-06-06 16:35 - 000000000 ____D C:\Users\adrie
2021-06-06 15:58 - 2021-06-06 15:58 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-06 15:58 - 2021-06-06 15:58 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-06 15:58 - 2021-06-06 15:58 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-06-06 15:58 - 2021-06-06 15:58 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-06-06 15:58 - 2021-06-06 15:58 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-06-06 15:58 - 2021-06-06 15:58 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-06-06 15:58 - 2021-06-06 15:58 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Voisinage réseau
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Voisinage d'impression
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Modèles
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Mes documents
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Menu Démarrer
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Documents\Mes vidéos
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Documents\Mes images
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\Documents\Ma musique
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-06-06 15:58 - 2021-06-06 15:58 - 000000000 _SHDL C:\Users\adrie\AppData\Local\Historique
2021-06-06 15:58 - 2019-12-07 11:10 - 000001105 _____ C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-06 15:57 - 2021-06-06 15:57 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-06-06 15:57 - 2021-06-06 15:57 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-06-06 15:57 - 2021-06-06 15:57 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-06-06 15:57 - 2021-06-06 15:57 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-06-06 15:57 - 2021-06-06 15:57 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-06-06 15:57 - 2021-06-06 15:57 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-06-06 15:57 - 2021-06-06 15:57 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-06 15:56 - 2021-06-06 15:56 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-06 15:56 - 2021-06-06 15:56 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-06-06 15:56 - 2021-06-06 15:56 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-06-06 15:56 - 2021-06-06 15:56 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-06-06 15:56 - 2021-06-06 15:56 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-06-06 15:55 - 2021-06-06 15:55 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-06-06 15:55 - 2021-06-06 15:55 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-06-06 15:55 - 2021-06-06 15:55 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-06-06 15:55 - 2021-06-06 15:55 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-06-06 15:55 - 2021-06-06 15:55 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-06-06 15:55 - 2021-06-06 15:55 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-06-06 15:55 - 2021-06-06 15:55 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-06-06 15:55 - 2021-06-06 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2021-06-06 15:55 - 2021-06-06 15:55 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2021-06-06 15:54 - 2021-06-06 15:54 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-06-06 15:54 - 2021-06-06 15:54 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-06 15:54 - 2021-06-06 15:54 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-06 15:54 - 2021-06-06 15:54 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-06-06 15:54 - 2021-06-06 15:54 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-06-06 15:54 - 2021-06-06 15:54 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-06 15:54 - 2021-06-06 15:54 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-06-06 15:54 - 2021-06-06 15:54 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-06-06 15:53 - 2021-06-06 15:53 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-06-06 15:53 - 2021-06-06 15:53 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-06-06 15:53 - 2021-06-06 15:53 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-06-06 15:53 - 2021-06-06 15:53 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-06-06 15:53 - 2021-06-06 15:53 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-06 15:52 - 2021-06-06 15:52 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-06-06 15:52 - 2021-06-06 15:52 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-06-06 15:51 - 2021-06-06 15:51 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-06 15:51 - 2021-06-06 15:51 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-06 15:51 - 2021-06-06 15:51 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-06-06 15:51 - 2021-06-06 15:51 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-06 15:51 - 2021-06-06 15:51 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-06-06 15:50 - 2021-06-06 15:50 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-06-06 15:50 - 2021-06-06 15:50 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-06-06 15:50 - 2021-06-06 15:50 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-06 15:45 - 2021-06-08 22:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-06 15:45 - 2021-06-08 22:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-06 15:45 - 2021-06-06 15:46 - 000305880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-06 15:19 - 2021-06-06 15:19 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-06-06 15:19 - 2021-06-06 15:19 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-06-06 14:52 - 2021-06-06 14:52 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-06-06 14:52 - 2021-06-06 14:52 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-06-06 14:52 - 2021-06-06 14:52 - 000000000 ____D C:\Program Files\MSBuild
2021-06-06 14:52 - 2021-06-06 14:52 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-06-06 14:52 - 2021-06-06 14:52 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-06-06 08:28 - 2021-06-06 08:28 - 000000000 ___HD C:\$SysReset
2021-06-05 22:21 - 2021-06-08 23:18 - 000000000 ____D C:\FRST
2021-06-05 20:21 - 2021-06-08 22:43 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-05 01:06 - 2021-06-05 01:06 - 000000000 ___HD C:\$WinREAgent
2021-06-04 22:44 - 2021-06-08 20:37 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ZHP
2021-06-04 21:43 - 2021-06-04 21:43 - 000000000 ____D C:\Users\adrie\AppData\Local\mbam
2021-06-04 21:30 - 2021-06-04 21:30 - 000000000 ____D C:\Users\adrie\AppData\Local\ESET
2021-06-04 20:36 - 2021-06-04 20:36 - 000000000 ____D C:\Users\adrie\AppData\Local\D3DSCache
2021-06-04 20:26 - 2021-06-07 18:32 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-06-02 22:25 - 2021-06-02 22:28 - 000003671 _____ C:\Clean_DNS.txt
2021-06-02 21:39 - 2021-06-02 22:34 - 000000000 ____D C:\Users\adrie\AppData\Local\FSDART
2021-06-02 21:38 - 2021-06-02 21:38 - 012401864 _____ (F-Secure Corporation) C:\Users\adrie\Downloads\F-SecureOnlineScanner.exe
2021-06-02 21:28 - 2021-06-02 21:28 - 002080712 _____ (Malwarebytes) C:\Users\adrie\Downloads\MBSetup.exe
2021-06-02 21:15 - 2021-06-02 21:16 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_internet_security_live_installer.exe
2021-05-30 17:11 - 2021-05-30 17:12 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_nod32_antivirus_live_installer.exe
2021-05-30 09:25 - 2021-05-30 09:25 - 000000000 ____D C:\Users\adrie\AppData\Local\ElevatedDiagnostics
2021-05-29 19:10 - 2021-05-29 19:10 - 000000000 ____D C:\Users\adrie\AppData\Roaming\WinRAR
2021-05-29 19:09 - 2021-06-06 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-06-06 16:04 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\Program Files\WinRAR
2021-05-29 19:08 - 2021-05-29 19:08 - 077325099 _____ C:\Users\adrie\Downloads\CrackByFrizy.zip
2021-05-29 18:57 - 2021-05-29 18:57 - 003440528 _____ (Alexander Roshal) C:\Users\adrie\Downloads\winrar-x64-601fr.exe
2021-05-29 18:16 - 2021-06-06 16:04 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:17 - 000000000 ____D C:\Users\adrie\AppData\Roaming\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:16 - 000001174 _____ C:\Users\adrie\Desktop\PhotoFiltre 7.lnk
2021-05-29 18:16 - 2021-05-29 18:16 - 000000000 ____D C:\Program Files (x86)\PhotoFiltre 7
2021-05-29 18:15 - 2021-05-29 18:15 - 005239812 _____ C:\Users\adrie\Downloads\photofiltre-7-2-1-en-win.exe
2021-05-29 18:09 - 2021-05-29 18:11 - 030940926 _____ (PhotoFiltre ) C:\Users\adrie\Downloads\photofiltre-studio-11-2.exe
2021-05-29 17:56 - 2021-03-14 22:27 - 000429944 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2021-05-29 17:56 - 2021-03-14 22:27 - 000107936 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll
2021-05-29 17:56 - 2021-03-14 22:27 - 000062392 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe
2021-05-28 21:00 - 2021-05-29 18:38 - 000000000 ____D C:\Users\adrie\Desktop\ROBLOX
2021-05-28 20:59 - 2021-06-07 18:39 - 000000000 ____D C:\Users\adrie\Desktop\filmora

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-08 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-08 23:03 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-08 23:01 - 2017-01-28 23:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-08 23:00 - 2017-01-28 23:25 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-08 22:59 - 2018-03-03 14:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-08 22:58 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-08 22:57 - 2017-09-01 18:16 - 000000000 ____D C:\Program Files\UNP
2021-06-08 22:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-08 22:49 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-08 22:49 - 2017-11-05 00:28 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-06-08 22:48 - 2015-10-30 09:24 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2021-06-08 22:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-08 22:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-08 21:17 - 2019-11-27 18:03 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\Mozilla
2021-06-08 21:17 - 2019-11-27 18:03 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-08 19:24 - 2020-07-05 16:50 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-08 19:24 - 2020-07-05 16:50 - 000002359 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-08 18:58 - 2017-01-26 23:48 - 000000000 ____D C:\Program Files (x86)\Google
2021-06-08 18:53 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-07 18:39 - 2016-06-27 00:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2021-06-07 18:39 - 2016-02-23 07:31 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-06-07 18:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-06-07 18:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-06-06 18:43 - 2017-11-05 00:24 - 000000000 ____D C:\ProgramData\Lenovo
2021-06-06 18:43 - 2017-11-05 00:24 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-06-06 18:42 - 2020-03-24 16:16 - 000000000 ____D C:\WINDOWS\Lenovo
2021-06-06 18:42 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-06-06 18:42 - 2017-11-05 00:24 - 000000000 ____D C:\Program Files\Lenovo
2021-06-06 18:42 - 2017-01-26 22:52 - 000000000 ____D C:\Users\adrie\AppData\Local\Lenovo
2021-06-06 17:48 - 2020-06-25 10:23 - 000000000 ____D C:\Users\adrie\Documents\Wondershare Filmora 9
2021-06-06 17:36 - 2019-12-07 16:49 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-06 17:36 - 2019-12-07 16:49 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-06 17:08 - 2017-01-26 22:51 - 000000000 ____D C:\Users\adrie\AppData\Local\Packages
2021-06-06 17:03 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-06 16:51 - 2017-11-05 00:28 - 000000000 ____D C:\Program Files\AMD
2021-06-06 16:46 - 2019-02-09 11:53 - 000000000 ____D C:\ProgramData\Packages
2021-06-06 16:44 - 2020-08-04 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Twomon PC Program
2021-06-06 16:44 - 2020-06-14 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Video Editor
2021-06-06 16:44 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup
2021-06-06 16:44 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-06-06 16:44 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-06 16:44 - 2019-11-11 16:47 - 000000000 ____D C:\WINDOWS\system32\4_168acb
2021-06-06 16:44 - 2019-06-02 16:38 - 000000000 ____D C:\WINDOWS\system32\ ‰
2021-06-06 16:44 - 2019-02-18 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2017
2021-06-06 16:44 - 2018-12-14 22:47 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.5
2021-06-06 16:44 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-06-06 16:44 - 2017-12-06 19:39 - 000000000 ____D C:\WINDOWS\system32\0b2b9c7dee1e270c..bin
2021-06-06 16:44 - 2017-11-05 01:00 - 000000000 ____D C:\WINDOWS\system32\ÿÿo
2021-06-06 16:44 - 2017-11-05 01:00 - 000000000 ____D C:\WINDOWS\system32\07f0aabc56947f60..bin
2021-06-06 16:44 - 2017-11-05 01:00 - 000000000 ____D C:\WINDOWS\system32\
2021-06-06 16:44 - 2017-11-05 00:25 - 000000000 ____D C:\Program Files\CONEXANT
2021-06-06 16:44 - 2017-01-29 00:34 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2021-06-06 16:44 - 2017-01-26 22:47 - 000000000 ____D C:\WINDOWS\system32\LSC
2021-06-06 16:43 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-06-06 16:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-06 16:38 - 2019-04-28 17:44 - 000000000 ___RD C:\Users\adrie\3D Objects
2021-06-06 16:38 - 2015-11-03 21:24 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-06-06 16:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-06-06 16:37 - 2017-01-29 00:34 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2021-06-06 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources
2021-06-06 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2021-06-06 16:36 - 2017-11-05 00:28 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-06-06 16:36 - 2017-11-05 00:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2021-06-06 16:36 - 2017-11-05 00:24 - 000000000 ____D C:\Program Files\Synaptics
2021-06-06 16:36 - 2017-01-28 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eInstruction
2021-06-06 16:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-06 16:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT
2021-06-06 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-06-06 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-06-06 16:32 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-06 16:18 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-06-06 16:18 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-06-06 16:18 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-06-06 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-06-06 16:18 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-06-06 16:14 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-06-06 16:14 - 2019-12-07 16:53 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-06-06 16:14 - 2017-11-05 00:46 - 000023208 _____ C:\WINDOWS\system32\emptyregdb.dat
2021-06-06 16:04 - 2021-03-27 19:28 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-06-06 16:04 - 2021-02-15 15:52 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2021-06-06 16:04 - 2020-06-19 18:45 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-06-06 15:57 - 2017-11-05 00:28 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-06-06 15:54 - 2019-04-28 18:02 - 001701376 _____ (TODO: ) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2021-06-06 15:52 - 2017-11-05 00:28 - 000000000 ____D C:\AMD
2021-06-06 15:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-06 15:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-06 15:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-06-06 15:16 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-06-06 15:16 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-06-06 14:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-06-06 14:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-06-04 22:14 - 2021-03-27 19:44 - 000000000 ____D C:\ProgramData\Shelblock
2021-06-04 22:00 - 2021-03-15 16:37 - 000000000 ____D C:\Program Files\Shelblock
2021-05-30 15:23 - 2019-11-11 16:44 - 000000000 ____D C:\Users\adrie\AppData\Local\PackageStaging
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2021-05-30 10:35 - 2021-02-15 17:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-29 09:27 - 2017-01-26 22:57 - 000000000 ___RD C:\Users\adrie\OneDrive
2021-05-29 04:10 - 2021-04-09 15:26 - 000000000 ____D C:\Program Files\BlueStacks
2021-05-29 03:53 - 2021-04-09 10:49 - 000000000 ____D C:\ProgramData\ManyCam
2021-05-29 03:53 - 2021-04-09 10:49 - 000000000 ____D C:\Program Files (x86)\ManyCam
2021-05-29 03:53 - 2017-11-05 00:28 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-29 03:52 - 2021-04-09 10:49 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ManyCam
2021-05-28 20:56 - 2020-06-16 21:12 - 000000000 ____D C:\Users\adrie\Desktop\youtube

==================== Fichiers à la racine de certains dossiers ========

2017-01-28 18:24 - 2017-01-28 18:26 - 000000251 _____ () C:\Program Files (x86)\Common Files\eInstruction.ini
2021-06-07 19:16 - 2021-06-08 22:51 - 000025273 _____ () C:\Users\adrie\AppData\Local\BTServer.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité