Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02 Exécuté par eveni (administrateur) sur LAPTOP-44Q47GQO (Acer Aspire ES1-732) (27-09-2021 10:27:40) Exécuté depuis C:\Users\eveni\OneDrive\Bureau Profils chargés: eveni Platform: Windows 10 Home Version 21H1 19043.1237 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated -> Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe (Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f531ad14c8555346\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f531ad14c8555346\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f531ad14c8555346\igfxext.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_72971c728a2fc377\OneApp.IGCC.WinService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bb3678f1b2323513\IntelCpHDCPSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bb3678f1b2323513\IntelCpHeciSvc.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\TXE Components\iCLS\SocketHeciServer.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.170.0822.0002\FileCoAuth.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsMaps_10.2104.2.0_x64__8wekyb3d8bbwe\Maps.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe (Orange -> Orange) [Fichier non signé] C:\Users\eveni\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572512 2021-03-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [CL-25-6FB82A0B-B154-4B9E-8D75-6DE2C7918FBB] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\CL-25-6FB82A0B-B154-4B9E-8D75-6DE2C7918FBB\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-25-6FB82A0B-B154-4B9E-8D75-6DE2C79 (l'élément de données a 7 caractères en plus). HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-155216535-3966385452-2106122132-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2344832 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-155216535-3966385452-2106122132-1001\...\Run: [MicrosoftEdgeAutoLaunch_9D0104C9AAFE1E6D0A85957047FD35DE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKLM\...\Print\Monitors\EPSON XP-312 313 315 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLFE.DLL [179712 2014-12-03] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {081787A8-9928-4900-B617-615CA72CD642} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> ) Task: {0951B4F5-4CE7-4617-AE6C-42A9D87A3A42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1172A377-1C19-4AB7-B15D-41D358007B73} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-12] (Acer Incorporated -> TODO: ) Task: {13234433-B943-4740-B969-982086F425F1} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated) Task: {18687F5D-ED14-43F1-BC9C-98862A4FB99E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {1CBA2D9C-C207-4D45-A49F-D91A5BE15685} - System32\Tasks\Wise Memory Optimizer Task.job => C:\Program Files (x86)\Wise\Wise Memory Optimizer\WiseMemoryOptimzer.exe Task: {22DBE41C-03DF-45F1-9E93-51D2D38DD000} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3977088 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Task: {26DFF158-76F4-4135-906C-484CCA97B214} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2845BDD9-8D73-42D2-9D5F-7031BAA6B915} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) Task: {2F467B59-16FE-4EC6-B7CE-848CBC9F6C31} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {33F3E640-7469-4A80-A771-C467466D38D8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation) Task: {6088C17E-61CA-41DE-B72D-525A1627EEE7} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2016-04-18] (Acer Incorporated -> Acer Incorporated) Task: {6E566AD9-A156-4210-A376-696DC7F66BF4} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {736F9915-D7FB-4A17-BD28-38D5A600FCEA} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\eveni\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1935064 2020-11-20] (Orange -> Orange) [Fichier non signé] Task: {89CB4BD7-1D5F-4A21-8BF0-A542CAA24F00} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) Task: {97B05C64-7D38-42D2-AF8C-193738D7E19C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {98E2AAFB-83D4-42B0-A473-91281D43E3D4} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {9AA55183-7C5B-4A8F-9A5F-4CAB5CEC89F1} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2740440 2016-05-30] (Acer Incorporated -> Acer) Task: {B91ACFF4-1C97-420D-93BD-878F9E959194} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2770736 2019-09-26] (Acer Incorporated -> Acer Incorporated) Task: {CB0CAF01-8733-497E-856A-D5A725F70199} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [446256 2019-09-26] (Acer Incorporated -> Acer Incorporated) Task: {D0545966-00FB-468A-BAC0-C4C35537C26B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {DCDE011A-92BB-4A42-A8A8-E3E33C3816D9} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"] Task: {EB1C0EB2-0322-4713-A350-AEF8B82A095C} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [855352 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {FF309C2B-8F79-4530-9856-91AE4DD2C1B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\..\Interfaces\{5d085e7f-bde6-49a8-9ccd-cabb1d9fcfee}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{60f12fc5-1568-4125-9cee-8c9c3ad146af}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-27] Edge Notifications: Default -> hxxps://forums.commentcamarche.net Edge HomePage: Default -> hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT Edge StartupUrls: Default -> "hxxps://www.creditmutuel.fr/cmmabn/fr/accueil.html","hxxps://www.fortuneo.fr/","hxxps://www.fdj.fr/","hxxps://www.orange.fr/portail","hxxps://www.meteo-covid.com/","hxxps://www.msn.com/fr-fr/" Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} Edge DefaultSearchKeyword: Default -> duckduckgo.com Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list Edge Extension: (Kaspersky Protection) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-09-20] Edge Extension: (DuckDuckGo) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-09-19] Edge Extension: (Barre de Confiance CM-CIC) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2020-10-17] Edge Extension: (Norton Password Manager) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lcccdlklhahfmobgpnilndimkankpnkg [2021-09-19] Edge Extension: (Norton Home Page) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2021-09-19] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-09-19] Edge Extension: (Signal Spam) - C:\Users\eveni\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2021-06-05] Edge HKU\S-1-5-21-155216535-3966385452-2106122132-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF DefaultProfile: egnodqgq.default FF ProfilePath: C:\Users\eveni\AppData\Roaming\Mozilla\Firefox\Profiles\egnodqgq.default [2021-08-17] FF ProfilePath: C:\Users\eveni\AppData\Roaming\Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096 [2021-09-20] FF Homepage: Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096 -> hxxps://r.orange.fr/r/Oodc_oiextfm_v1_sp FF HomepageOverride: Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096 -> Enabled: orange_page_accueil_et_moteur@orange.fr FF NewTabOverride: Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096 -> Enabled: orange_page_accueil_et_moteur@orange.fr FF NewTabOverride: Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096 -> Disabled: orange_page_accueil_et_moteur@orange.fr FF Extension: (Dictionnaire français) - C:\Users\eveni\AppData\Roaming\Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2021-07-17] FF Extension: (Français Language Pack) - C:\Users\eveni\AppData\Roaming\Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-07-17] FF Extension: (Orange page d'accueil et moteur de recherche) - C:\Users\eveni\AppData\Roaming\Mozilla\Firefox\Profiles\1g7rxipq.default-release-1626530079096\Extensions\orange_page_accueil_et_moteur@orange.fr.xpi [2021-07-17] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2021-09-21] [] [non signé] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-04] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-09-20] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2860760 2016-04-18] (Acer Incorporated -> Acer Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2016-08-04] (Dashlane -> Dashlane, Inc.) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.170.0822.0002\FileSyncHelper.exe [3254656 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-09-20] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.170.0822.0002\OneDriveUpdaterService.exe [3716992 2021-09-18] (Microsoft Corporation -> Microsoft Corporation) S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [466224 2019-09-26] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [508208 2019-09-26] (Acer Incorporated -> Acer Incorporated) S2 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [301872 2018-01-10] (Acer Incorporated -> acer) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-19] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 hswultpep; C:\WINDOWS\System32\drivers\hswultpep.sys [62968 2013-02-08] (Intel Corporation - Software and Firmware Products -> Intel Corporation) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [674128 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1457464 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-09-20] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [265176 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [315032 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [113952 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [225648 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31032 2017-10-20] (Acer Incorporated -> Acer Incorporated) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25400 2017-10-20] (Acer Incorporated -> Acer Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43368 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43368 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-19] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-19] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-27 10:24 - 2021-09-27 10:29 - 000000000 ____D C:\FRST 2021-09-26 19:37 - 2021-09-26 19:38 - 000061655 _____ C:\Users\eveni\Downloads\RIB_yri2.pdf 2021-09-25 10:12 - 2021-09-25 10:12 - 000433433 _____ C:\Users\eveni\Downloads\Microsoft Word - Annonce de course - CO pédestre - champ ligue Sprint ASCO 26 09 21.docx.pdf 2021-09-24 15:07 - 2021-09-24 15:07 - 000000000 ____D C:\Users\eveni\AppData\Local\VirtualStore 2021-09-24 10:03 - 2021-09-24 10:03 - 000001435 _____ C:\WINDOWS\system32\default_error_stack-000012-000000.txt 2021-09-23 12:56 - 2021-09-24 10:05 - 000000290 __RSH C:\ProgramData\ntuser.pol 2021-09-22 21:38 - 2021-09-22 21:38 - 000000000 ____D C:\Users\eveni\AppData\Local\OneDrive 2021-09-22 15:24 - 2021-09-22 15:24 - 000000000 ____D C:\ProgramData\VS Revo Group 2021-09-21 18:55 - 2021-09-21 18:55 - 000000000 ____D C:\ProgramData\UDL 2021-09-21 18:54 - 2021-09-21 18:54 - 000000000 ____D C:\ProgramData\Sony Corporation 2021-09-21 18:48 - 2012-07-24 00:00 - 000466432 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2021-09-21 18:48 - 2012-05-17 00:00 - 000144560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe 2021-09-21 18:44 - 2021-09-21 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2021-09-21 18:43 - 2021-09-21 18:48 - 000000000 ____D C:\Program Files (x86)\EPSON 2021-09-21 18:43 - 2021-09-21 18:43 - 000000000 ____D C:\Users\eveni\AppData\Roaming\Epson 2021-09-21 09:30 - 2021-09-21 09:30 - 000000000 ____D C:\Users\eveni\OneDrive\captures du 2019.06.26\Documents\Modèles Office personnalisés 2021-09-21 09:23 - 2021-09-21 09:23 - 000315032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2021-09-21 09:22 - 2021-09-21 18:36 - 000225648 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2021-09-21 09:22 - 2021-09-21 09:22 - 000265176 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2021-09-21 09:22 - 2021-09-21 09:22 - 000113952 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2021-09-21 09:15 - 2021-09-21 09:15 - 000104940 _____ C:\ProgramData\vpn.uninstall.1632208431.bdinstall.v2.bin 2021-09-21 09:15 - 2021-09-21 09:15 - 000090024 _____ C:\ProgramData\agent.uninstall.1632208524.bdinstall.v2.bin 2021-09-21 09:04 - 2021-09-21 09:04 - 000000000 ____D C:\Users\eveni\AppData\Roaming\Wise Memory Optimzer 2021-09-20 15:13 - 2021-09-20 15:13 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2021-09-20 14:57 - 2021-09-20 14:57 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab 2021-09-20 14:55 - 2021-09-20 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager 2021-09-20 14:54 - 2021-09-20 14:54 - 000000000 ____D C:\Program Files\Common Files\AV 2021-09-20 14:53 - 2021-09-20 14:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN 2021-09-20 14:52 - 2021-09-20 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2021-09-20 14:51 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2021-09-20 14:50 - 2021-09-20 14:55 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-09-20 14:50 - 2021-09-20 14:55 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2021-09-20 14:50 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2021-09-20 14:50 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2021-09-20 14:42 - 2021-09-20 14:42 - 000001435 _____ C:\WINDOWS\system32\default_error_stack-000011-000000.txt 2021-09-20 14:41 - 2021-09-20 14:41 - 000406584 _____ C:\ProgramData\cl.uninstall.1632141390.bdinstall.v2.bin 2021-09-19 13:50 - 2021-09-19 13:50 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-09-19 13:48 - 2021-09-19 13:48 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-09-19 13:47 - 2021-09-19 13:47 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-09-19 13:47 - 2021-09-19 13:47 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-09-19 13:47 - 2021-09-19 13:47 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx 2021-09-19 13:47 - 2021-09-19 13:47 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-09-19 13:45 - 2021-09-19 13:45 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-09-19 13:45 - 2021-09-19 13:45 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-09-19 13:45 - 2021-09-19 13:45 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-09-19 13:45 - 2021-09-19 13:45 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-09-19 13:45 - 2021-09-19 13:45 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-09-19 13:45 - 2021-09-19 13:45 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2021-09-19 13:44 - 2021-09-19 13:44 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-09-19 13:44 - 2021-09-19 13:44 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-09-19 13:43 - 2021-09-19 13:43 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-09-19 13:43 - 2021-09-19 13:43 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-09-19 13:43 - 2021-09-19 13:43 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-09-19 13:43 - 2021-09-19 13:43 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-09-19 13:43 - 2021-09-19 13:43 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-09-19 13:42 - 2021-09-19 13:42 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-09-19 12:02 - 2021-09-19 12:02 - 000000000 ___HD C:\$WinREAgent 2021-09-18 18:34 - 2021-09-19 10:11 - 000000000 ____D C:\WINDOWS\Minidump 2021-09-18 18:34 - 2021-09-19 10:09 - 001379820 _____ C:\WINDOWS\Minidump\091821-143734-01.dmp 2021-09-18 18:34 - 2021-09-18 18:34 - 797457192 ____N C:\WINDOWS\MEMORY.DMP ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-27 10:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-09-27 10:01 - 2021-05-21 23:42 - 000003510 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck 2021-09-27 09:56 - 2021-05-22 14:14 - 000000000 ____D C:\Users\eveni\AppData\Roaming\BankPerfect 2021-09-27 09:00 - 2020-10-17 09:36 - 000000000 ___RD C:\Users\eveni\OneDrive 2021-09-27 08:59 - 2020-10-17 09:29 - 000000000 __SHD C:\Users\eveni\IntelGraphicsProfiles 2021-09-26 20:23 - 2021-05-21 23:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-09-26 19:53 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-09-26 19:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-09-26 19:40 - 2020-11-14 16:29 - 000000000 ____D C:\Users\eveni\OneDrive\captures du 2019.06.26\Documents\Course d'Orientation 2021-09-26 19:38 - 2020-10-17 08:46 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-09-26 19:20 - 2021-07-18 12:39 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{15D17E71-FBFA-438C-8A1B-BADA6ABF3B2B} 2021-09-25 11:33 - 2020-10-17 09:29 - 000000000 ____D C:\Users\eveni\AppData\Local\Packages 2021-09-24 10:05 - 2021-05-21 23:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-09-24 10:05 - 2020-11-04 23:50 - 000008192 ___SH C:\DumpStack.log.tmp 2021-09-24 10:05 - 2020-10-17 08:34 - 000000000 ___HD C:\Intel 2021-09-24 10:04 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-09-23 14:24 - 2020-10-17 09:31 - 000000000 ____D C:\Users\eveni\AppData\Local\PlaceholderTileLogoFolder 2021-09-23 14:12 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2021-09-23 12:56 - 2020-10-17 01:12 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-09-23 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-09-22 18:40 - 2021-05-21 17:29 - 000000000 ____D C:\Users\eveni\AppData\Local\D3DSCache 2021-09-22 13:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-09-22 13:44 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-09-22 13:34 - 2021-05-21 22:07 - 000000000 ____D C:\Users\eveni 2021-09-22 13:24 - 2021-07-16 19:13 - 000000000 ____D C:\Program Files\Bitdefender 2021-09-21 18:55 - 2021-07-30 13:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2021-09-21 18:55 - 2021-07-30 11:09 - 000000000 ____D C:\ProgramData\EPSON 2021-09-21 18:54 - 2021-07-30 13:44 - 000000000 ____D C:\Program Files (x86)\EPSON Software 2021-09-21 18:54 - 2017-06-01 05:15 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-09-21 12:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-09-21 10:47 - 2020-11-14 18:32 - 000000000 ____D C:\Users\eveni\AppData\Local\ElevatedDiagnostics 2021-09-21 10:34 - 2021-07-26 14:19 - 000007615 _____ C:\Users\eveni\AppData\Local\Resmon.ResmonCfg 2021-09-20 15:10 - 2021-02-19 21:09 - 000096008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys 2021-09-20 14:51 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2021-09-20 14:50 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-09-20 14:39 - 2021-08-13 18:03 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2021-09-20 14:39 - 2021-07-17 15:45 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-09-20 09:43 - 2017-06-01 04:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-09-19 14:39 - 2021-05-21 23:19 - 001770970 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-09-19 14:39 - 2019-12-07 16:49 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat 2021-09-19 14:39 - 2019-12-07 16:49 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat 2021-09-19 14:34 - 2021-05-21 23:01 - 000439128 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-09-19 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-09-19 14:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-09-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-09-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-09-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-09-19 14:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-09-19 14:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-09-19 12:20 - 2020-10-17 09:04 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-09-19 11:57 - 2021-08-14 15:36 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2021-09-19 11:27 - 2020-10-17 16:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-09-19 11:26 - 2020-10-17 16:39 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-09-19 11:20 - 2020-10-17 16:38 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-09-18 20:29 - 2021-08-14 15:38 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2021-09-18 20:28 - 2021-08-14 15:38 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-09-18 20:27 - 2020-10-17 12:41 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe ==================== Fichiers à la racine de certains dossiers ======== 2021-07-26 14:19 - 2021-09-21 10:34 - 000007615 _____ () C:\Users\eveni\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================