cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-07-2022
Exécuté par Acer (administrateur) sur DESKTOP-D5AN34F (Acer Aspire ES1-711G) (04-07-2022 14:34:30)
Exécuté depuis C:\Users\Acer\Desktop
Profils chargés: Acer
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1766 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe <2>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (TimoCom Soft- und Hardware GmbH) [Fichier non signé] C:\TCCARGO\tccargo.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Acer\AppData\Local\Microsoft\OneDrive\22.121.0605.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-06] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [I16A] => C:\WINDOWS\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [86528 2016-08-22] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2888704 2017-02-09] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [GloboFleet] => C:\Program Files (x86)\Buyond GmbH\GloboFleet CC Plus\GloboFleet_CC_Plus.exe [317296 2021-02-04] (Buyond GmbH -> Buyond GmbH)
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10517160 2021-03-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\Run: [TC Login] => c:\tccargo\tccargo.exe [1215488 2021-07-12] (TimoCom Soft- und Hardware GmbH) [Fichier non signé]
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Acer\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\Run: [MicrosoftEdgeAutoLaunch_0E856574C4D091667B5858ACF047C466] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-06-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3632448690-1939220957-255932001-1001\...\MountPoints2: {9e5cd7e9-dce6-11ec-a604-bc307d6b7151} - "D:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-29] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {09530B22-B06A-4FD6-9264-244B0F8A4DDD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1E62B34C-F4BA-435C-94B3-0412F5B79395} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EF5EFFC-0CCF-464C-B34F-A13F819D7DB0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-23] (Google Inc -> Google Inc.)
Task: {50B8061B-8378-4848-A5D6-CF66DBB26AA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-23] (Google Inc -> Google Inc.)
Task: {6BF2DA8F-2930-4CDC-977D-01F56E5C920C} - System32\Tasks\CCleanerSkipUAC - Acer => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7951AC8A-B003-4106-9DD4-C5BBBD37C664} - System32\Tasks\Teamviewer-QS-updater-469q7uw => C:\Users\Acer\AppData\Local\TeamViewer\CustomConfigs\469q7uw\TeamViewer.exe [33995560 2021-04-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
Task: {95F3E5B3-C137-4E41-9E2F-8A7B61AD66CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A6554DD9-E5CB-4258-836C-7E8594884BD5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2022-06-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B7037FA5-8C36-449D-90B0-E388C5A15120} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Teamviewer-QS-updater-469q7uw.job => C:\Users\Acer\AppData\Local\TeamViewer\CustomConfigs\469q7uw\TeamViewer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{21394c46-54e0-48e5-b1dc-d49f49573422}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{310acf0d-08ee-492f-8368-62c7c2bd52d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4dca2ecc-ff1b-420a-957c-cd3d17b19334}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{587c7f92-0960-4d1e-b0c2-3b941e2b3372}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-04]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @calps.plugin -> C:\Program Files (x86)\calps\npCalps.dll [2011-05-23] (CEGID -> CEGID) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3632448690-1939220957-255932001-1001: SkypeForBusinessPlugin-15.8 -> C:\Users\Acer\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3632448690-1939220957-255932001-1001: SkypeForBusinessPlugin64-15.8 -> C:\Users\Acer\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi-x64.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default [2022-07-04]
CHR Extension: (uBlock Origin) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-06-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-06-26]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-06-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-29]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\System Profile [2022-06-26]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [295424 2017-02-09] (Brother Industries, Ltd.) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> )
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-05-14] (HP Inc. -> HP Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8677120 2022-06-26] (Malwarebytes Inc. -> Malwarebytes)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MpKsl13c6fc21; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EF4492FC-0C4F-4FE1-8AB1-94E4248E07B0}\MpKslDrv.sys [141568 2022-07-01] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-01] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-04 14:34 - 2022-07-04 14:36 - 000016971 _____ C:\Users\Acer\Desktop\FRST.txt
2022-07-04 14:33 - 2022-07-04 14:35 - 000000000 ____D C:\FRST
2022-07-04 14:31 - 2022-07-04 14:31 - 002369024 _____ (Farbar) C:\Users\Acer\Desktop\FRST64.exe
2022-07-04 13:56 - 2022-07-04 13:56 - 000060410 _____ C:\Users\Acer\Downloads\9130351192392716_Invoice_215011076614_2022_07_2022-07-04T04-54-53.PDF
2022-07-01 21:33 - 2022-07-01 21:33 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-07-01 21:32 - 2022-07-01 21:32 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-01 21:31 - 2022-07-01 21:31 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-07-01 21:29 - 2022-07-01 21:29 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-01 21:29 - 2022-07-01 21:29 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-07-01 18:42 - 2022-07-01 18:42 - 000000000 ___HD C:\$WinREAgent
2022-06-30 15:01 - 2022-06-30 15:01 - 000005354 _____ C:\Users\Acer\Desktop\go.xlsx
2022-06-26 19:45 - 2022-06-26 19:45 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-06-26 19:45 - 2022-06-26 19:45 - 000000000 ____D C:\Users\Acer\AppData\Local\mbam
2022-06-26 19:44 - 2022-06-26 19:44 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-06-26 19:44 - 2022-06-26 19:43 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-06-26 19:44 - 2022-06-26 19:43 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-06-26 19:42 - 2022-06-26 19:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-06-26 19:42 - 2022-06-26 19:42 - 000000000 ____D C:\Program Files\Malwarebytes
2022-06-26 19:40 - 2022-06-26 19:40 - 002549096 _____ (Malwarebytes) C:\Users\Acer\Downloads\MBSetup.exe
2022-06-26 19:26 - 2022-06-26 19:26 - 003292400 _____ (Nicolas Coolman) C:\Users\Acer\Downloads\ZHPDiag3.exe
2022-06-26 19:00 - 2022-06-26 19:00 - 000000000 ____D C:\Program Files\Google
2022-06-26 18:28 - 2022-06-26 18:28 - 003301104 _____ (Nicolas Coolman) C:\Users\Acer\Downloads\ZHPCleaner.exe
2022-06-26 18:20 - 2022-06-26 18:20 - 000000000 ____D C:\ProgramData\Piriform
2022-06-26 17:47 - 2022-06-26 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-06-26 17:47 - 2022-06-26 17:47 - 000000000 ____D C:\Program Files\VS Revo Group
2022-06-26 17:45 - 2022-06-26 17:46 - 007513880 _____ (VS Revo Group ) C:\Users\Acer\Downloads\revosetup.exe
2022-06-23 16:02 - 2022-06-23 16:02 - 000259575 _____ C:\Users\Acer\Documents\2022 06 23 - courrier GODIN Nicolas licenciement.pdf
2022-06-20 16:27 - 2022-06-20 16:27 - 000101956 _____ C:\Users\Acer\Downloads\invoice62aca65ff99bf2000422d102.pdf
2022-06-09 13:13 - 2022-06-09 13:13 - 000119400 _____ C:\Users\Acer\Downloads\20331__ECHEANCIER_CLIENT20220403_000001 (1).PDF
2022-06-09 13:12 - 2022-06-09 13:12 - 000156390 _____ C:\Users\Acer\Downloads\20331__AVIS_ECHEANCE20220403_000006 (1).PDF
2022-06-09 13:11 - 2022-06-09 13:11 - 001496464 _____ C:\Users\Acer\Downloads\20331__ECHEANCIER_CLIENT20220605_000008.PDF
2022-06-09 13:10 - 2022-06-09 13:10 - 001539924 _____ C:\Users\Acer\Downloads\20331__AVIS_ECHEANCE20220605_000008.PDF
2022-06-08 16:40 - 2022-06-08 16:40 - 000049439 _____ C:\Users\Acer\Downloads\279245_6430.pdf
2022-06-07 17:47 - 2022-06-07 17:47 - 000060405 _____ C:\Users\Acer\Downloads\9130351192392716_Invoice_215011041531_2022_06_2022-06-04T04-52-00.PDF
2022-06-06 08:53 - 2022-06-06 08:53 - 000008822 _____ C:\Users\Acer\Downloads\Export_de_transports (1).xlsx
2022-06-06 08:47 - 2022-06-06 08:47 - 000009205 _____ C:\Users\Acer\Downloads\Export_de_transports.xlsx

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-04 14:37 - 2019-03-23 12:36 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-04 14:26 - 2020-12-17 00:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-04 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-04 13:54 - 2021-03-31 14:36 - 000000021 _____ C:\Users\Acer\AppData\Local\PdfPort.ini
2022-07-04 06:38 - 2020-10-07 07:50 - 000000000 ____D C:\Program Files\CCleaner
2022-07-04 06:38 - 2019-04-03 06:48 - 000000000 ___RD C:\Users\Acer\Desktop\OneDrive
2022-07-04 06:35 - 2019-03-23 03:08 - 000000000 __SHD C:\Users\Acer\IntelGraphicsProfiles
2022-07-02 17:58 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-02 17:54 - 2020-12-17 00:43 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-02 17:54 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-02 17:54 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-02 17:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-02 17:47 - 2020-12-17 01:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-02 17:47 - 2020-12-17 00:19 - 000447488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-02 17:47 - 2019-03-22 15:31 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-02 17:46 - 2020-12-17 00:19 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-02 17:45 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-02 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-02 17:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-07-02 17:42 - 2020-12-17 00:29 - 000000000 ____D C:\Users\Acer
2022-07-02 14:52 - 2021-11-29 11:20 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-07-01 21:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-01 21:28 - 2020-12-17 00:24 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-01 20:08 - 2019-04-02 10:51 - 000000000 ____D C:\Users\Acer\AppData\Local\CrashDumps
2022-07-01 19:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-01 18:06 - 2019-04-04 06:38 - 000000000 ____D C:\ProgramData\Packages
2022-07-01 17:39 - 2019-04-03 18:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-07-01 17:37 - 2020-06-23 17:49 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-28 11:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-06-27 11:40 - 2020-10-07 08:21 - 000000000 ____D C:\Users\Acer\AppData\Roaming\ZHP
2022-06-27 10:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-06-26 19:45 - 2022-02-14 11:52 - 000000000 ____D C:\Users\Acer\Desktop\Logiciel Maintenance
2022-06-26 19:44 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-06-26 19:40 - 2018-11-11 22:20 - 000001178 _____ C:\Users\Acer\Desktop\Club.lnk
2022-06-26 19:28 - 2020-10-07 08:21 - 000000000 ____D C:\Users\Acer\AppData\Local\ZHP
2022-06-26 18:16 - 2019-12-04 07:45 - 000000000 ____D C:\Users\Acer\AppData\Local\WDSetup
2022-06-26 18:12 - 2019-10-25 13:07 - 000000000 ____D C:\Users\Acer\AppData\Roaming\Mozilla
2022-06-26 18:11 - 2022-03-29 19:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-26 18:11 - 2022-03-29 19:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-26 18:11 - 2019-10-25 13:07 - 000000000 ____D C:\Users\Acer\AppData\LocalLow\Mozilla
2022-06-26 18:09 - 2019-03-22 15:32 - 000000000 ____D C:\Users\Acer\AppData\Local\VirtualStore
2022-06-23 16:26 - 2021-12-11 15:36 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3632448690-1939220957-255932001-1001
2022-06-23 16:26 - 2020-12-17 01:12 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3632448690-1939220957-255932001-1001
2022-06-23 16:26 - 2020-12-17 00:29 - 000002418 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-20 16:40 - 2020-12-17 01:12 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-06-11 15:00 - 2022-04-04 14:39 - 000015713 _____ C:\Users\Acer\Desktop\Fete du 20 au 25 aout 2022.xlsx
2022-06-11 10:17 - 2021-01-16 08:56 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d3fc73e5b1ba
2022-06-11 10:17 - 2020-12-17 01:12 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

==================== Fichiers à la racine de certains dossiers ========

2017-11-27 08:17 - 2017-11-27 08:18 - 013667912 _____ (MSoft informatique ) C:\Users\Acer\cbsetup.exe
2017-12-29 08:58 - 2017-12-29 08:58 - 002729728 _____ (TeamViewer GmbH) C:\Users\Acer\support.exe
2021-03-31 14:29 - 2022-07-04 13:40 - 000015898 _____ () C:\Users\Acer\AppData\Roaming\LOG_calps.txt
2021-03-31 14:36 - 2022-07-04 13:54 - 000000021 _____ () C:\Users\Acer\AppData\Local\PdfPort.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité