Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-01-2020 Exécuté par guill (administrateur) sur DESKTOP-5RVFDQG (MSI MS-7996) (25-01-2020 11:31:56) Exécuté depuis C:\Users\guill\OneDrive\Desktop Profils chargés: guill (Profils disponibles: guill) Platform: Windows 10 Home Version 1909 18363.592 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\guill\AppData\Roaming\Dashlane\Dashlane.exe (Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\guill\AppData\Roaming\Dashlane\DashlanePlugin.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d03105a152ac7ed4\IntelCpHeciSvc.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\guill\AppData\Local\Microsoft\OneDrive\19.222.1110.0006\FileCoAuth.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\guill\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Ramiro Pablo Saenz -> Rambox) C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [Dashlane] => C:\Users\guill\AppData\Roaming\Dashlane\Dashlane.exe [390144 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [DashlanePlugin] => C:\Users\guill\AppData\Roaming\Dashlane\DashlanePlugin.exe [412160 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [Rambox] => C:\Users\guill\AppData\Local\Programs\Rambox\Rambox.exe [104930864 2019-12-11] (Ramiro Pablo Saenz -> Rambox) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [698328 2019-04-25] (OpenVPN Technologies, Inc. -> ) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-12-09] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-12-09] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-12-09] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-12-09] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\RunOnce: [Application Restart #3] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [1987728 2019-09-25] (Brave Software, Inc. -> Brave Software, Inc.) HKU\S-1-5-21-2300565712-1626833994-366683030-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --enable-features=dns-over-https reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-23] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\77.0.68.141\Installer\chrmstp.exe [2019-09-26] (Brave Software, Inc.) [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {2BCD1DB0-5FEC-41A6-91F4-F19E7444798B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-21] (Google Inc -> Google LLC) Task: {4441E587-468A-4A56-B738-A2CF1B0B1ABC} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {50FA2B33-1D72-435D-98AA-6F2C7684EC31} - System32\Tasks\OpenVPN autostart => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [698328 2019-04-25] (OpenVPN Technologies, Inc. -> ) Task: {70B6D529-B55E-4034-880C-2939570D981F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-21] (Google Inc -> Google LLC) Task: {722242F1-6F0D-47E2-A990-E2907367BDBD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {8DF91FE5-B074-4739-A217-F0BD4C7574E1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 213.186.33.99 Tcpip\..\Interfaces\{6449c16b-d825-4f1c-a231-3d9b320e249d}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{b610435d-88a1-4467-aae9-39450ecdbafc}: [DhcpNameServer] 213.186.33.99 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2300565712-1626833994-366683030-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2300565712-1626833994-366683030-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com FireFox: ======== FF DefaultProfile: d5wulgvm.default FF ProfilePath: C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\d5wulgvm.default [2019-06-21] FF ProfilePath: C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release [2020-01-11] FF Homepage: Mozilla\Firefox\Profiles\kvd6yajm.default-release -> hxxps://translate.google.fr/?hl=fr FF Extension: (Grammarly for Firefox) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2019-12-08] FF Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\firefox-webext@zenmate.com.xpi [2019-12-08] FF Extension: (HTTPS partout) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\https-everywhere@eff.org.xpi [2019-12-08] FF Extension: (To Google Translate) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-08-09] FF Extension: (Pushbullet) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\jid1-BYcQOfYfmBMd9A@jetpack.xpi [2019-12-08] FF Extension: (Oui) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\qwantcomforfirefox@jetpack.xpi [2019-06-21] FF Extension: (Avast Online Security) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\wrc@avast.com.xpi [2019-09-02] FF Extension: (Dark Night Mode) - C:\Users\guill\AppData\Roaming\Mozilla\Firefox\Profiles\kvd6yajm.default-release\Extensions\{27c3c9d8-95cd-44e6-ae9c-ff537348b9f3}.xpi [2019-06-21] FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-17] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-17] (Google LLC -> Google LLC) Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-01-25] CHR Notifications: Profile 2 -> hxxps://www.instagram.com CHR HomePage: Profile 2 -> hxxps://translate.google.com/?hl=fr CHR StartupUrls: Profile 2 -> "hxxps://www.google.com/" CHR DefaultSearchURL: Profile 2 -> hxxps://s.ytimg.com/yts/img/favicon-vfl8qSV2F.ico CHR Extension: (Google Traduction) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-01-24] CHR Extension: (Slides) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-22] CHR Extension: (YouTube) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\adnlfjpnmidfimlkaohpidplnoimahfh [2019-07-08] CHR Extension: (Docs) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-22] CHR Extension: (Google Drive) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-22] CHR Extension: (YouTube) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-22] CHR Extension: (Honey) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-01-10] CHR Extension: (TrafficLight) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfnpidifppmenkapgihekkeednfoenal [2019-12-04] CHR Extension: (Pushbullet) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2020-01-24] CHR Extension: (Dashlane) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2019-12-06] CHR Extension: (Sheets) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-22] CHR Extension: (ReviewMeta.com Review Analyzer) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fjifglfkcaipnmhngbigdebkoikioend [2019-12-23] CHR Extension: (Signets iCloud) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-06-22] CHR Extension: (HTTPS partout) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2019-11-08] CHR Extension: (Google Docs hors connexion) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15] CHR Extension: (Dropbox) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2019-06-22] CHR Extension: (Google Actualités) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kfgapjallbhpciobgmlhlhokknljkgho [2019-08-15] CHR Extension: (Evernote Web) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2019-06-22] CHR Extension: (Click and Clean) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mgngmngjioknlgjjaiiamcdbahombpfb [2019-08-15] CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2019-12-26] CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2019-11-25] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-11-05] CHR Extension: (Gmail) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-22] CHR Extension: (Chrome Media Router) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17] CHR Extension: (Extension Password Checkup) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pncabnpcffmalkkjpajodfhijclecjno [2019-09-01] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-21] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [799048 2018-09-06] (ICEpower a/s -> ICEpower) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-24] (Malwarebytes Inc -> Malwarebytes) S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> ) R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74712 2019-04-25] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74712 2019-04-25] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2019-12-24] (Malwarebytes Corporation -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-24] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2020-01-16] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-01-16] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [278344 2020-01-16] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116832 2020-01-16] (Malwarebytes Corporation -> Malwarebytes) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek ) R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation ) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [37360 2019-04-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) =================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-01-25 11:31 - 2020-01-25 11:32 - 000000000 ____D C:\FRST 2020-01-25 11:28 - 2020-01-25 11:30 - 000000000 ____D C:\Users\guill\AppData\Roaming\ZHP 2020-01-25 11:28 - 2020-01-25 11:28 - 000000000 ____D C:\Users\guill\AppData\Local\ZHP 2020-01-25 11:27 - 2020-01-25 11:27 - 000000000 ___HD C:\OneDriveTemp 2020-01-16 18:52 - 2020-01-16 18:52 - 000278344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-01-16 18:52 - 2020-01-16 18:52 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-01-16 18:52 - 2020-01-16 18:52 - 000116832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-01-16 18:52 - 2020-01-16 18:52 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-01-15 13:39 - 2020-01-15 13:39 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-01-15 13:39 - 2020-01-15 13:39 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-01-15 13:39 - 2020-01-15 13:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-01-15 13:39 - 2020-01-15 13:39 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-01-15 13:39 - 2020-01-15 13:39 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-01-15 13:38 - 2020-01-15 13:39 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-01-15 13:38 - 2020-01-15 13:38 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-01-15 13:38 - 2020-01-15 13:38 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-01-15 13:38 - 2020-01-15 13:38 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-01-15 13:38 - 2020-01-15 13:38 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-01-15 13:38 - 2020-01-15 13:38 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-01-15 13:38 - 2020-01-15 13:38 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-01-15 13:38 - 2020-01-15 13:38 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-01-15 13:38 - 2020-01-15 13:38 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-01-15 13:38 - 2020-01-15 13:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-01-15 13:38 - 2020-01-15 13:38 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys 2020-01-15 13:34 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-01-15 13:34 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-01-06 15:32 - 2020-01-06 19:50 - 000000000 ____D C:\Users\guill\AppData\Roaming\audacity 2020-01-06 15:32 - 2020-01-06 15:32 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2020-01-06 15:32 - 2020-01-06 15:32 - 000001076 _____ C:\Users\Public\Desktop\Audacity.lnk 2020-01-06 15:32 - 2020-01-06 15:32 - 000000000 ____D C:\Users\guill\OneDrive\Documents2\Audacity 2020-01-06 15:32 - 2020-01-06 15:32 - 000000000 ____D C:\Users\guill\AppData\Local\Audacity 2020-01-06 15:32 - 2020-01-06 15:32 - 000000000 ____D C:\Program Files (x86)\Audacity 2020-01-06 15:16 - 2020-01-06 15:17 - 000000000 ____D C:\tmp 2020-01-06 15:16 - 2020-01-06 15:16 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2020-01-05 15:13 - 2020-01-16 18:51 - 076283904 _____ C:\WINDOWS\system32\config\SOFTWARE 2020-01-05 15:02 - 2020-01-05 15:13 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-01-25 11:27 - 2019-07-26 14:18 - 000000000 ___RD C:\Users\guill\iCloudDrive 2020-01-25 11:27 - 2019-06-21 18:52 - 000000000 ____D C:\Users\guill\AppData\Roaming\Rambox 2020-01-25 11:27 - 2019-06-21 18:25 - 000000000 ___RD C:\Users\guill\OneDrive 2020-01-25 11:27 - 2019-06-21 18:23 - 000000000 __SHD C:\Users\guill\IntelGraphicsProfiles 2020-01-25 08:19 - 2019-06-21 19:08 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-01-25 08:12 - 2019-09-02 13:36 - 000000000 ____D C:\Users\guill\AppData\Roaming\eM Client 2020-01-23 13:41 - 2019-06-21 19:08 - 000000000 ___HD C:\Program Files\WindowsApps 2020-01-23 13:41 - 2019-06-21 19:08 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-01-23 13:38 - 2019-06-21 18:37 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-23 13:38 - 2019-06-21 18:37 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-01-22 16:04 - 2019-06-21 18:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-01-19 16:07 - 2019-06-21 18:44 - 000000000 ____D C:\Users\guill\AppData\Roaming\Dashlane 2020-01-17 15:40 - 2019-06-21 19:09 - 000755516 _____ C:\WINDOWS\system32\perfh00C.dat 2020-01-17 15:40 - 2019-06-21 19:09 - 000142224 _____ C:\WINDOWS\system32\perfc00C.dat 2020-01-17 15:40 - 2019-06-21 19:07 - 000000000 ____D C:\WINDOWS\INF 2020-01-17 15:40 - 2019-06-21 18:20 - 001681874 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-01-16 18:52 - 2019-06-21 19:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-01-16 18:52 - 2019-06-21 18:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-01-16 18:51 - 2019-06-21 19:04 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2020-01-16 18:51 - 2019-06-21 19:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-01-15 13:42 - 2019-12-08 10:30 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-01-15 13:42 - 2019-06-21 19:08 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-01-15 13:42 - 2019-06-21 19:08 - 000000000 ____D C:\WINDOWS\SystemResources 2020-01-15 13:42 - 2019-06-21 19:08 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-01-15 13:42 - 2019-06-21 19:08 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-01-15 13:42 - 2019-06-21 18:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-01-15 13:42 - 2019-06-21 18:14 - 000258848 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-01-15 13:41 - 2019-06-24 08:34 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-01-15 13:40 - 2019-06-24 08:34 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-01-15 13:40 - 2019-06-21 19:05 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-01-12 15:37 - 2019-06-21 18:25 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2300565712-1626833994-366683030-1001 2020-01-12 15:37 - 2019-06-21 18:19 - 000002401 _____ C:\Users\guill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-01-11 10:51 - 2019-06-21 18:42 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-01-11 10:51 - 2019-06-21 18:42 - 000000000 ____D C:\Users\guill\AppData\LocalLow\Mozilla 2020-01-11 10:49 - 2019-06-21 18:25 - 000000000 ____D C:\Users\guill\AppData\Local\PlaceholderTileLogoFolder 2020-01-10 17:54 - 2019-06-21 18:23 - 000000000 ____D C:\Users\guill\AppData\Local\Packages 2020-01-02 11:48 - 2019-07-26 13:47 - 000000000 ____D C:\Users\guill\AppData\Local\ElevatedDiagnostics 2019-12-30 18:00 - 2019-06-21 19:41 - 000000000 ____D C:\Users\guill\AppData\Roaming\Molotov ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================