Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2021 Exécuté par Admin.local (administrateur) sur PO-MG0-087 (HP HP EliteBook 840 G5) (14-10-2021 07:59:13) Exécuté depuis C:\Users\david.andriamitarija\Desktop Profils chargés: david.andriamitarija & Admin.local Platform: Microsoft Windows 10 Entreprise Version 1909 18363.1556 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\InsightPower Client\Power-Service.exe () [Fichier non signé] C:\Program Files (x86)\InsightPower Client\Power-Status.exe () [Fichier non signé] C:\Program Files\UPSentry 2012\UPS-Service.exe () [Fichier non signé] C:\Program Files\UPSentry 2012\UPS-Status.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Fortinet Technologies (Canada) Inc. -> FortiClient System Helper) C:\Program Files (x86)\Fortinet\FortiClient\x64\FCHelper64.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FCDBLog.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiSSLVPNdaemon.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiTray.exe (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe (GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe <2> (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\SysInfoCap.exe (Huawei Technologies Co.,Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f531ad14c8555346\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f531ad14c8555346\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_72971c728a2fc377\OneApp.IGCC.WinService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bb3678f1b2323513\IntelCpHDCPSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bb3678f1b2323513\IntelCpHeciSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (International Business Machines Corporation -> IBM Corp) C:\Program Files (x86)\IBM\Notes\nslsvice.exe (International Business Machines Corporation -> IBM Corp) C:\Program Files (x86)\IBM\Notes\ntmulti.exe (International Business Machines Corporation -> IBM Corp) C:\Program Files (x86)\IBM\Notes\SUService.exe (International Business Machines Corporation -> IBM) C:\Program Files (x86)\IBM\Notes\nsd.exe (Luis Cobian, CobianSoft) [Fichier non signé] C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe (Luis Cobian, CobianSoft) [Fichier non signé] C:\Program Files (x86)\Cobian Backup 11\cbService.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Microsoft Online Services\MSOIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Microsoft Online Services\MSOIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.18017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WerFault.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe (philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2> (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\ccSvcHst.exe <2> (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\Common Agent Framework\CAFServiceMain.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IDS\bin\SISIDSService.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IPS\bin\SISIPSService.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IPS\bin\sisipsutil.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe Impossible d'accéder au processus -> explorer.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1725408 2017-03-14] (GlavSoft LLC -> GlavSoft LLC.) HKLM\...\Run: [GlobalProtect] => C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe [10500448 2020-11-12] (Palo Alto Networks -> Palo Alto Networks) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKLM\...\Run: [UPSentry-Status] => C:\Program Files\UPSentry 2012\UPS-Status.exe [372736 2021-08-26] () [Fichier non signé] HKLM-x32\...\Run: [Cobian Backup 11 interface] => C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe [4407808 2013-03-08] (Luis Cobian, CobianSoft) [Fichier non signé] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3315280 2019-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [IBM Notes Preloader] => C:\Program Files (x86)\IBM\Notes\nntspreld.exe [33384 2013-10-15] (International Business Machines Corporation -> IBM Corp) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [103032624 2021-03-12] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-07-26] (Intel Corporation -> Intel) HKLM-x32\...\Run: [InsightPower-Status] => C:\Program Files (x86)\InsightPower Client\Power-Status.exe [210432 2013-10-03] () [Fichier non signé] HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\Run: [com.squirrel.Teams.Teams] => C:\Users\david.andriamitarija\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-09-30] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\Run: [Yammer] => C:\Users\Administrateur\AppData\Local\yammerdesktop\update.exe [1881008 2020-02-19] (Microsoft Corporation -> ) HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109961080 2021-04-23] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\MountPoints2: {0a4e4c66-c76c-11eb-b09f-5076af54da39} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\MountPoints2: {1250ee81-c297-11eb-b09a-5076af54da39} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\MountPoints2: {36c456c9-bf6f-11eb-b094-5076af54da39} - "D:\AutoRun.exe" HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\MountPoints2: {389bfd7b-bef2-11eb-b093-5076af54da39} - "D:\setup.exe" HKU\S-1-5-21-3288764182-2114777161-873262806-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrateur\AppData\Local\Microsoft\Teams\Update.exe [1777776 2020-02-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3288764182-2114777161-873262806-1001\...\Run: [Yammer] => C:\Users\Administrateur\AppData\Local\yammerdesktop\update.exe [1881008 2020-02-19] (Microsoft Corporation -> ) HKU\S-1-5-21-3288764182-2114777161-873262806-1001\...\Run: [TranslucentTB] => C:\Program Files (x86)\TranslucentTB\TranslucentTB.exe [450768 2020-12-28] (Charles Milette -> TranslucentTB Open Source Developers) HKU\S-1-5-21-3288764182-2114777161-873262806-1001\...\MountPoints2: {1250ee81-c297-11eb-b09a-5076af54da39} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3288764182-2114777161-873262806-500\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Administrateur\AppData\Local\Microsoft\Teams\Update.exe [1777776 2020-02-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3288764182-2114777161-873262806-500\...\Run: [Yammer] => C:\Users\Administrateur\AppData\Local\yammerdesktop\update.exe [1881008 2020-02-19] (Microsoft Corporation -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-12] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{4DA7114C-DE47-43BF-A644-62876DCC2A72}] -> C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDCREDPROV.DLL [2012-05-17] (Microsoft Corporation -> Microsoft Corp.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-05-28] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0DD457FE-7C6E-4FFC-B3D8-75224BD1096A} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Autofix => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\SymErr.exe [92280 2021-05-27] (Symantec Corporation -> Symantec Corporation) "C:\Windows\System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA}" a été déverrouillé. <==== ATTENTION Task: {123DEABA-83DD-4C75-88D7-FD86C2DDB869} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\windows\system32\gpupdate.exe [30208 2021-05-28] (Microsoft Windows -> Microsoft Corporation) "C:\Windows\System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202}" a été déverrouillé. <==== ATTENTION Task: {48A7DB1D-6414-4F7E-AED8-FF252F4DF7EC} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\windows\system32\gpupdate.exe [30208 2021-05-28] (Microsoft Windows -> Microsoft Corporation) Task: {518670B2-6137-4956-82E2-B75CBD12A393} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764968 2021-05-09] (Microsoft Corporation -> Microsoft Corporation) Task: {69856DCB-072C-429D-8848-A1B19729AEA9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.) Task: {7705F40E-AB16-425C-9380-6BAB16CC79A8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Task: {7F539A05-7301-48E9-8216-870C7DB0FC7E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1283488 2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Task: {96975FD7-F73F-4E28-A005-F0FF36D2D9D1} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4164208 2021-05-09] (Microsoft Corporation -> Microsoft Corporation) Task: {9D03CB93-258B-4C33-9955-9EE6865CF54D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764968 2021-05-09] (Microsoft Corporation -> Microsoft Corporation) Task: {9D67F84C-D743-46C2-84A9-796C8C73A8FF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {9FD52DCA-1AE0-4B85-B8A4-BDEC7CA5BC7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-02-19] (Google Inc -> Google LLC) Task: {AA9B6B28-AFC1-498D-8CDF-CC76376A95B2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {C22B87BB-6EA1-43D6-873E-F332791754A6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {C4DF59E7-AF1C-4B97-B3A9-BA2C8F533FA9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-30] (Mozilla Corporation -> Mozilla Foundation) Task: {C614C1E3-45E2-4E31-89D2-7530BD610F51} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {C76B8D8C-CFAA-4E8E-825B-8BCB08728B23} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3914704 2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Task: {D6518BB0-AB82-4B1F-A524-A0F2C7B3F371} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {DAF8A517-59F2-4BDD-B793-B14A5A364838} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Analyzer => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\SymErr.exe [92280 2021-05-27] (Symantec Corporation -> Symantec Corporation) Task: {DB4213C7-624B-4BFD-865D-F69882DC317D} - System32\Tasks\Symantec Endpoint Protection\Symantec Endpoint Protection Error Processor => C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\SymErr.exe [92280 2021-05-27] (Symantec Corporation -> Symantec Corporation) Task: {E7F818E3-ABC7-4F37-9641-557E48B939DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-02-19] (Google Inc -> Google LLC) Task: {EB75C3FF-5AB2-4ED8-9626-11C9AEDA6A0B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Task: {EF0B8D94-6109-4056-A134-5673C7D6779B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3914704 2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Task: {EFAA25F2-1043-4B7B-978C-ABB8FF360AB2} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\..\Interfaces\{0ee4e1eb-539e-4dc5-b6d8-39a005921f37}: [NameServer] 192.168.254.1 Tcpip\..\Interfaces\{9df3e54a-b530-4a01-bfb8-e04ce43e0d1c}: [DhcpNameServer] 10.249.0.218 192.168.254.1 Tcpip\..\Interfaces\{be49958c-5eec-453f-ac10-43ffcafb925f}: [DhcpNameServer] 192.168.43.1 Edge: ======= Edge Profile: C:\Users\Admin.local\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-23] Edge HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx Edge HKU\S-1-5-21-3288764182-2114777161-873262806-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx FireFox: ======== FF DefaultProfile: zedreuh1.default FF ProfilePath: C:\Users\Admin.local\AppData\Roaming\Mozilla\Firefox\Profiles\zedreuh1.default [2021-06-23] FF Extension: (Français Language Pack) - C:\Users\Admin.local\AppData\Roaming\Mozilla\Firefox\Profiles\zedreuh1.default\Extensions\langpack-fr@firefox.mozilla.org [2021-06-23] FF HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\david.andriamitarija\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\david.andriamitarija\AppData\Roaming\IDM\idmmzcc5 [2021-06-10] [] [non signé] FF HKU\S-1-5-21-2226096116-4047003398-4253088992-14071\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => non trouvé(e) FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2020-02-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2020-02-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2226096116-4047003398-4253088992-14071: @zoom.us/ZoomVideoPlugin -> C:\Users\Administrateur\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-02-19] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF Plugin HKU\S-1-5-21-3288764182-2114777161-873262806-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Administrateur\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-02-19] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF Plugin HKU\S-1-5-21-3288764182-2114777161-873262806-500: @zoom.us/ZoomVideoPlugin -> C:\Users\Administrateur\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-02-19] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) Chrome: ======= CHR Profile: C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default [2021-09-17] CHR Extension: (Slides) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-19] CHR Extension: (Docs) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-19] CHR Extension: (Google Drive) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-18] CHR Extension: (YouTube) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-19] CHR Extension: (Sheets) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-19] CHR Extension: (Google Docs hors connexion) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-01] CHR Extension: (Gmail) - C:\Users\Admin.local\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-18] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743984 2021-10-06] (philandro Software GmbH -> philandro Software GmbH) S2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-08] (CobianSoft, Luis Cobian) [Fichier non signé] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8854928 2021-05-09] (Microsoft Corporation -> Microsoft Corporation) R2 CobianBackup11; C:\Program Files (x86)\Cobian Backup 11\cbService.exe [1131008 2013-03-08] (Luis Cobian, CobianSoft) [Fichier non signé] R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-07-26] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [177080 2021-07-26] (Intel Corporation -> Intel) R2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [128832 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R2 heCAF; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\Common Agent Framework\CAFServiceMain.exe [3717360 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\AppHelperCap.exe [502544 2019-11-13] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\NetworkCap.exe [501008 2019-11-13] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d6aff311efc85993\x64\SysInfoCap.exe [504592 2019-11-13] (HP Inc. -> HP Inc.) R2 IBM Notes Diagnostics; C:\Program Files (x86)\IBM\Notes\nsd.exe [5164136 2013-10-15] (International Business Machines Corporation -> IBM) R2 IBM Notes Single Logon; C:\Program Files (x86)\IBM\Notes\nslsvice.exe [57448 2013-10-15] (International Business Machines Corporation -> IBM Corp) R2 InsightPower; C:\Program Files (x86)\InsightPower Client\Power-Service.exe [142336 2013-10-03] () [Fichier non signé] R2 LNSUSvc; C:\Program Files (x86)\IBM\Notes\SUService.exe [1654376 2013-10-15] (International Business Machines Corporation -> IBM Corp) S2 MicrosoftSearchInBing; C:\Program Files (x86)\Microsoft\Microsoft Search in Bing\MicrosoftSearchInBing.exe [21376 2020-04-20] (Microsoft Corporation -> ) R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2014-11-20] (Huawei Technologies Co.,Ltd. -> ) R2 msoidsvc; C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [2079520 2012-05-17] (Microsoft Corporation -> Microsoft Corp.) R2 Multi-user Cleanup Service; C:\Program Files (x86)\IBM\Notes\ntmulti.exe [38504 2013-10-15] (International Business Machines Corporation -> IBM Corp) S3 OfficeSvcManagerAddons; C:\windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R2 PanGPS; C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe [6973792 2020-11-12] (Palo Alto Networks -> Palo Alto Networks) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6517736 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SepLpsService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\ccSvcHst.exe [157936 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 SepMasterService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin\ccSvcHst.exe [157936 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 SISIDSService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IDS\bin\SISIDSService.exe [3179248 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 SISIPSService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IPS\bin\SISIPSService.exe [101104 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 SISIPSUtil; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\SAEP\IPS\bin\SISIPSUtil.exe [273648 2021-05-27] (Symantec Corporation -> Symantec Corporation) S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin64\snac64.exe [377984 2021-05-27] (Symantec Corporation -> Symantec Corporation) R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1725408 2017-03-14] (GlavSoft LLC -> GlavSoft LLC.) R2 UPSentry; C:\Program Files\UPSentry 2012\UPS-Service.exe [1364992 2021-08-26] () [Fichier non signé] S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746688 2021-04-28] (Oracle Corporation -> Oracle Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-18] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-18] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Data\Definitions\BASHDefs\20211012.011\BHDrvx64.sys [2018776 2021-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ccSettings_{84D7855C-4DA2-407D-85DF-77EAE8EC7234}; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\ccSetx64.sys [179360 2021-05-27] (Symantec Corporation -> Symantec Corporation) S3 CH341SER_A64; C:\windows\System32\Drivers\CH341S64.SYS [59904 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-05-28] (Symantec Corporation -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-05-28] (Symantec Corporation -> Broadcom) S3 fortiapd; C:\windows\System32\drivers\fortiapd.sys [18000 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S1 FortiFW; C:\windows\System32\drivers\FortiFW2.sys [37456 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 fortisniff; C:\windows\System32\drivers\fortisniff2.sys [111184 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 ftsvnic; C:\windows\System32\drivers\ftsvnic.sys [66600 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 gpfltdrv; C:\windows\system32\DRIVERS\gpfltdrv.sys [86824 2020-11-12] (Palo Alto Networks -> Palo Alto Networks) S3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-05-02] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Data\Definitions\IPSDefs\20211013.061\IDSvia64.sys [1488976 2021-10-08] (Symantec Corporation -> Broadcom) S3 PanGpd; C:\windows\system32\DRIVERS\pangpd.sys [67744 2020-11-12] (Palo Alto Networks -> Palo Alto Networks Inc.) R3 pppop; C:\windows\System32\drivers\pppop64.sys [54344 2018-03-06] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) S3 SISIDSRegDrv; C:\windows\system32\Drivers\SISIDSRegDrv.sys [50144 2021-05-27] (Symantec Corporation -> Symantec Corporation) S3 SISIPSDeviceFilter; C:\windows\system32\Drivers\SISIPSDeviceFilter.sys [52712 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SISIPSDriver; C:\windows\System32\Drivers\SISIPSDriver.sys [319976 2021-05-27] (Symantec Corporation -> Symantec Corporation) S3 SISIPSFileFilter; C:\windows\system32\Drivers\SISIPSFileFilter.sys [84960 2021-05-27] (Symantec Corporation -> Symantec Corporation) S1 SISIPSNetFilter; C:\windows\System32\Drivers\SISIPSNetFilter.sys [64504 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SRTSP; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\SRTSP64.SYS [831064 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SRTSPX; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\SRTSPX64.SYS [49240 2021-05-27] (Symantec Corporation -> Symantec Corporation) S3 SyDvCtrl; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\14.2.770.0000.105\Bin64\SyDvCtrl64.sys [44568 2021-05-27] (Symantec Corporation -> Symantec Corporation) R0 SymEFASI; C:\windows\System32\drivers\symefasi\0603020.009\symefasi64.sys [1793104 2021-05-27] (Symantec Corporation -> Symantec Corporation) S0 SymELAM; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\SymELAM.sys [24192 2021-05-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation) R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [99920 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SymIRON; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\Ironx64.SYS [308304 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SYMNETS; C:\windows\System32\Drivers\SEP\0E020302\0000.105\x64\SYMNETS.SYS [566864 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 SysPlant; C:\windows\System32\Drivers\SysPlant.sys [222584 2021-05-27] (Symantec Corporation -> Symantec Corporation) R1 Teefer2; C:\windows\system32\DRIVERS\Teefer.sys [130976 2021-05-27] (Symantec Corporation -> Symantec Corporation) R3 VBoxNetAdp; C:\windows\system32\DRIVERS\VBoxNetAdp6.sys [239616 2021-04-28] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\windows\system32\DRIVERS\VBoxNetLwf.sys [249536 2021-04-28] (Oracle Corporation -> Oracle Corporation) S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [45664 2020-02-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [355760 2020-02-18] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-18] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2019-11-15] (HP Inc. -> HP) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-14 07:59 - 2021-10-14 07:59 - 000035740 _____ C:\Users\david.andriamitarija\Desktop\FRST.txt 2021-10-14 07:58 - 2021-10-14 07:59 - 000000000 ____D C:\FRST 2021-10-14 07:52 - 2021-10-14 07:53 - 002310656 _____ (Farbar) C:\Users\david.andriamitarija\Desktop\FRST64.exe 2021-10-13 10:39 - 2021-10-13 10:47 - 000000000 ____D C:\Program Files (x86)\InsightPower Client 2021-10-13 10:39 - 2021-10-13 10:44 - 000000000 ____D C:\Users\Admin.local\Documents\InsightPower 2021-10-13 10:39 - 2021-10-13 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InsightPower Client 2021-10-12 10:03 - 2019-12-02 15:55 - 044808610 _____ C:\Users\david.andriamitarija\Desktop\Forticlient.7z 2021-10-11 15:04 - 2021-10-14 07:48 - 000000000 ____D C:\Program Files\UPSentry 2012 2021-10-11 15:04 - 2021-10-13 10:39 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-10-11 15:04 - 2021-10-11 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UPSentry 2012 2021-10-11 15:01 - 2021-10-13 10:58 - 000000000 ____D C:\Users\david.andriamitarija\Desktop\Onduleur 2021-10-11 14:53 - 2021-10-12 17:00 - 000109221 _____ C:\Users\david.andriamitarija\Downloads\FLOTTE SOGEA - MAJ 07-2021.xlsx 2021-10-08 14:26 - 2021-10-08 14:26 - 000000000 __SHD C:\Users\gilbert.rakotorahala\IntelGraphicsProfiles 2021-10-08 14:26 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\AnyDesk 2021-10-08 14:26 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\LocalLow\Intel 2021-10-08 14:26 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Symantec 2021-10-08 14:26 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Palo Alto Networks 2021-10-08 14:24 - 2021-10-08 14:26 - 000000000 ___RD C:\Users\gilbert.rakotorahala\3D Objects 2021-10-08 14:24 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\PlaceholderTileLogoFolder 2021-10-08 14:24 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Packages 2021-10-08 14:24 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\ConnectedDevicesPlatform 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Voisinage réseau 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Voisinage d'impression 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Modèles 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Mes documents 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Menu Démarrer 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Documents\Mes vidéos 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Documents\Mes images 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\Documents\Ma musique 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-10-08 14:24 - 2021-10-08 14:24 - 000000000 _SHDL C:\Users\gilbert.rakotorahala\AppData\Local\Historique 2021-10-08 14:24 - 2020-02-19 12:51 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Yammer 2021-10-08 14:24 - 2020-02-19 12:42 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\KeePass 2021-10-08 14:24 - 2020-02-19 12:31 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Adobe 2021-10-08 14:24 - 2020-02-19 12:31 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\LocalLow\Adobe 2021-10-08 14:24 - 2020-02-19 12:31 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Adobe 2021-10-08 14:24 - 2020-02-19 12:26 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Google 2021-10-08 14:24 - 2020-02-19 12:19 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Apple Computer 2021-10-08 14:24 - 2020-02-19 11:44 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\yammerdesktop 2021-10-08 14:24 - 2020-02-19 11:43 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Zoom 2021-10-08 14:24 - 2020-02-19 11:43 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-10-08 14:24 - 2020-02-19 11:43 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\SquirrelTemp 2021-10-08 14:24 - 2020-02-19 11:42 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation 2021-10-08 14:24 - 2020-02-19 11:41 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Microsoft Teams 2021-10-08 14:24 - 2020-02-19 11:35 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\D3DSCache 2021-10-08 14:24 - 2020-02-19 11:16 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\IBM 2021-10-08 14:24 - 2020-02-19 11:15 - 000063046 _____ C:\Users\gilbert.rakotorahala\install.xml 2021-10-08 14:24 - 2020-02-19 11:13 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\VirtualStore 2021-10-08 14:24 - 2020-02-19 11:11 - 000000000 ___HD C:\Users\gilbert.rakotorahala\MicrosoftEdgeBackups 2021-10-08 14:24 - 2020-02-19 11:11 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\MicrosoftEdge 2021-10-08 14:24 - 2020-02-19 11:06 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\LocalLow\Apple Computer 2021-10-08 14:24 - 2020-02-19 11:06 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Apple 2021-10-08 14:24 - 2020-02-19 11:05 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\paint.net 2021-10-08 14:24 - 2020-02-19 11:02 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Notepad++ 2021-10-08 14:24 - 2020-02-19 11:00 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Sun 2021-10-08 14:24 - 2020-02-19 11:00 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\LocalLow\Sun 2021-10-08 14:24 - 2020-02-19 10:58 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Roaming\Autodesk 2021-10-08 14:24 - 2020-02-19 10:57 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Autodesk 2021-10-08 14:24 - 2020-02-18 19:07 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Comms 2021-10-08 14:24 - 2020-02-18 18:53 - 000000000 ___RD C:\Users\gilbert.rakotorahala\OneDrive 2021-10-08 14:24 - 2020-02-18 18:50 - 000000020 ___SH C:\Users\gilbert.rakotorahala\ntuser.ini 2021-10-08 14:24 - 2020-02-18 18:50 - 000000000 ____D C:\Users\gilbert.rakotorahala\AppData\Local\Publishers 2021-10-08 14:23 - 2021-10-08 14:26 - 000000000 ____D C:\Users\gilbert.rakotorahala 2021-10-07 15:16 - 2021-10-07 15:17 - 001446207 _____ C:\Users\david.andriamitarija\Downloads\stock-pratique-excel-windows.zip 2021-10-07 15:03 - 2021-10-07 16:38 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\EXCEL PRATIQUE 2021-10-06 11:17 - 2021-10-06 11:17 - 000000511 _____ C:\Users\david.andriamitarija\Downloads\calendar.ics 2021-10-06 08:21 - 2021-10-06 16:47 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\CITATION DE MANDELA 2021-10-04 16:59 - 2021-10-04 17:00 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\cathy 2021-10-02 07:00 - 2021-10-02 07:00 - 000000921 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2021-10-02 07:00 - 2021-10-02 07:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2021-10-02 07:00 - 2021-10-02 07:00 - 000000000 ____D C:\Program Files\CPUID 2021-10-01 08:41 - 2021-10-01 08:41 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\AnyDesk 2021-10-01 08:41 - 2021-10-01 08:41 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Wondershare 2021-10-01 08:41 - 2021-10-01 08:41 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Palo Alto Networks 2021-10-01 08:40 - 2021-10-01 08:40 - 000000000 __SHD C:\Users\faniry.randrianirina\IntelGraphicsProfiles 2021-10-01 08:40 - 2021-10-01 08:40 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\LocalLow\Intel 2021-10-01 08:40 - 2021-10-01 08:40 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Symantec 2021-10-01 08:39 - 2021-10-01 08:42 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\PlaceholderTileLogoFolder 2021-10-01 08:39 - 2021-10-01 08:41 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Packages 2021-10-01 08:39 - 2021-10-01 08:40 - 000000000 ___RD C:\Users\faniry.randrianirina\3D Objects 2021-10-01 08:39 - 2021-10-01 08:40 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\ConnectedDevicesPlatform 2021-10-01 08:39 - 2021-10-01 08:40 - 000000000 ____D C:\Users\faniry.randrianirina 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Voisinage réseau 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Voisinage d'impression 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Modèles 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Mes documents 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Menu Démarrer 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Documents\Mes vidéos 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Documents\Mes images 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\Documents\Ma musique 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-10-01 08:39 - 2021-10-01 08:39 - 000000000 _SHDL C:\Users\faniry.randrianirina\AppData\Local\Historique 2021-10-01 08:39 - 2020-02-19 12:51 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Yammer 2021-10-01 08:39 - 2020-02-19 12:42 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\KeePass 2021-10-01 08:39 - 2020-02-19 12:31 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Adobe 2021-10-01 08:39 - 2020-02-19 12:31 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\LocalLow\Adobe 2021-10-01 08:39 - 2020-02-19 12:31 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Adobe 2021-10-01 08:39 - 2020-02-19 12:26 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Google 2021-10-01 08:39 - 2020-02-19 12:19 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Apple Computer 2021-10-01 08:39 - 2020-02-19 11:44 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\yammerdesktop 2021-10-01 08:39 - 2020-02-19 11:43 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Zoom 2021-10-01 08:39 - 2020-02-19 11:43 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-10-01 08:39 - 2020-02-19 11:43 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\SquirrelTemp 2021-10-01 08:39 - 2020-02-19 11:42 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation 2021-10-01 08:39 - 2020-02-19 11:41 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Microsoft Teams 2021-10-01 08:39 - 2020-02-19 11:35 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\D3DSCache 2021-10-01 08:39 - 2020-02-19 11:16 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\IBM 2021-10-01 08:39 - 2020-02-19 11:15 - 000063046 _____ C:\Users\faniry.randrianirina\install.xml 2021-10-01 08:39 - 2020-02-19 11:13 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\VirtualStore 2021-10-01 08:39 - 2020-02-19 11:11 - 000000000 ___HD C:\Users\faniry.randrianirina\MicrosoftEdgeBackups 2021-10-01 08:39 - 2020-02-19 11:11 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\MicrosoftEdge 2021-10-01 08:39 - 2020-02-19 11:06 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\LocalLow\Apple Computer 2021-10-01 08:39 - 2020-02-19 11:06 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Apple 2021-10-01 08:39 - 2020-02-19 11:05 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\paint.net 2021-10-01 08:39 - 2020-02-19 11:02 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Notepad++ 2021-10-01 08:39 - 2020-02-19 11:00 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Sun 2021-10-01 08:39 - 2020-02-19 11:00 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\LocalLow\Sun 2021-10-01 08:39 - 2020-02-19 10:58 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Roaming\Autodesk 2021-10-01 08:39 - 2020-02-19 10:57 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Autodesk 2021-10-01 08:39 - 2020-02-18 19:07 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Comms 2021-10-01 08:39 - 2020-02-18 18:53 - 000000000 ___RD C:\Users\faniry.randrianirina\OneDrive 2021-10-01 08:39 - 2020-02-18 18:50 - 000000020 ___SH C:\Users\faniry.randrianirina\ntuser.ini 2021-10-01 08:39 - 2020-02-18 18:50 - 000000000 ____D C:\Users\faniry.randrianirina\AppData\Local\Publishers 2021-09-30 13:28 - 2021-09-30 13:28 - 000000000 ____D C:\windows\system32\Tasks\Mozilla 2021-09-30 11:38 - 2021-10-01 07:27 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-09-27 11:03 - 2021-09-27 11:03 - 000432394 _____ C:\Users\david.andriamitarija\Downloads\EVACUATION 1.pdf 2021-09-24 08:52 - 2021-09-24 08:53 - 003315544 _____ C:\Users\david.andriamitarija\Downloads\1-converti.pdf 2021-09-23 16:16 - 2021-10-01 10:42 - 000000000 ____D C:\Users\david.andriamitarija\Desktop\ordi portable bain 2021-09-22 14:20 - 2021-09-22 15:50 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\VALISOA 2021-09-18 21:31 - 2021-09-18 21:32 - 000000000 ____D C:\Users\TEMP 2021-09-17 09:45 - 2021-09-17 09:45 - 000000000 ____D C:\Users\Admin.local\AppData\Local\AHD 2021-09-17 09:44 - 2021-09-17 09:44 - 000000000 ____D C:\Users\Admin.local\Downloads\asm-5.24.7901.42251 2021-09-17 09:23 - 2021-09-17 09:40 - 026735446 _____ C:\Users\Admin.local\Downloads\asm-5.24.7901.42251.zip 2021-09-17 09:03 - 2021-09-17 09:03 - 001557680 _____ C:\Users\Admin.local\Downloads\video-converter-ultimate_setup_full905.exe 2021-09-17 08:57 - 2021-09-17 08:57 - 000000000 ____D C:\Program Files\Wondershare 2021-09-16 11:03 - 2021-09-16 11:01 - 000067878 _____ C:\Users\david.andriamitarija\Desktop\Contacts.vcf 2021-09-15 14:02 - 2021-09-15 14:26 - 000000000 ____D C:\Users\david.andriamitarija\Desktop\Tuto mail valisoa 2021-09-14 15:49 - 2021-09-14 15:49 - 000165818 _____ C:\Users\david.andriamitarija\Downloads\006311 - BUROCLEAN (1).pdf 2021-09-14 15:49 - 2021-09-14 15:49 - 000142743 _____ C:\Users\david.andriamitarija\Downloads\006311 - BUROCLEAN.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-14 07:57 - 2019-03-19 07:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-10-14 07:53 - 2021-05-27 15:57 - 000000000 ____D C:\windows\system32\Tasks\Symantec Endpoint Protection 2021-10-14 07:52 - 2020-02-18 18:54 - 001681938 _____ C:\windows\system32\PerfStringBackup.INI 2021-10-14 07:52 - 2019-03-19 15:01 - 000758242 _____ C:\windows\system32\perfh00C.dat 2021-10-14 07:52 - 2019-03-19 15:01 - 000142898 _____ C:\windows\system32\perfc00C.dat 2021-10-14 07:52 - 2019-03-19 07:50 - 000000000 ____D C:\windows\INF 2021-10-14 07:50 - 2020-02-19 10:51 - 000000000 ____D C:\Program Files (x86)\Google 2021-10-14 07:48 - 2021-05-27 14:52 - 000000000 __SHD C:\Users\david.andriamitarija\IntelGraphicsProfiles 2021-10-14 07:48 - 2021-05-27 12:21 - 000000000 ___RD C:\Users\david.andriamitarija\OneDrive - VINCI Construction 2021-10-14 07:48 - 2021-05-27 10:37 - 000001584 _____ C:\windows\system32\config\netlogon.ftl 2021-10-14 07:47 - 2021-05-27 10:08 - 000000000 ____D C:\Intel 2021-10-14 07:47 - 2020-02-18 18:48 - 000000006 ____H C:\windows\Tasks\SA.DAT 2021-10-14 07:47 - 2019-03-19 07:37 - 002097152 _____ C:\windows\system32\config\BBI 2021-10-14 07:40 - 2019-03-19 07:37 - 000000000 ____D C:\windows\CbsTemp 2021-10-14 07:35 - 2020-02-19 13:15 - 000011782 __RSH C:\ProgramData\ntuser.pol 2021-10-14 07:33 - 2021-05-27 10:40 - 000004202 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{A30B0CA1-3BAD-46DD-8C4D-B39CB4BD5893} 2021-10-13 16:46 - 2020-02-18 18:46 - 000000000 ____D C:\windows\system32\SleepStudy 2021-10-13 07:41 - 2021-06-02 08:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-12 12:32 - 2019-03-19 07:52 - 000000000 ____D C:\windows\system32\FxsTmp 2021-10-12 12:11 - 2021-05-27 10:37 - 000000000 ____D C:\Users\david.andriamitarija\AppData\Local\CrashDumps 2021-10-12 12:08 - 2021-09-11 16:30 - 000000000 ____D C:\Symantec 2021-10-12 09:50 - 2021-05-28 08:01 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2021-10-12 07:52 - 2021-05-27 16:25 - 000000000 ____D C:\Users\david.andriamitarija\Desktop\PERSO 2021-10-11 15:40 - 2019-03-19 07:37 - 000032768 _____ C:\windows\system32\config\ELAM 2021-10-11 07:34 - 2021-06-02 08:27 - 000003634 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-11 07:34 - 2021-06-02 08:27 - 000003510 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-10-08 15:26 - 2021-05-27 12:06 - 000000000 ____D C:\Users\david.andriamitarija\AppData\Roaming\vlc 2021-10-08 14:31 - 2019-03-19 07:52 - 000000000 ____D C:\windows\AppReadiness 2021-10-08 14:26 - 2020-02-18 18:50 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-10-08 13:33 - 2021-05-27 11:23 - 000000000 ___HD C:\Users\david.andriamitarija\Downloads\yyyy 2021-10-07 15:21 - 2021-05-27 10:30 - 000000000 ____D C:\Users\david.andriamitarija\AppData\Local\Packages 2021-10-06 11:42 - 2021-05-28 11:31 - 000000000 ____D C:\Users\david.andriamitarija\AppData\LocalLow\Mozilla 2021-10-06 11:38 - 2021-07-24 10:23 - 000000000 ____D C:\ProgramData\Mozilla 2021-10-04 08:01 - 2021-05-27 10:30 - 000000000 ____D C:\Users\david.andriamitarija\AppData\Local\PlaceholderTileLogoFolder 2021-10-01 08:21 - 2020-02-19 10:51 - 000003590 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-01 08:21 - 2020-02-19 10:51 - 000003466 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-10-01 08:11 - 2021-05-27 10:30 - 000000000 ____D C:\Users\david.andriamitarija 2021-10-01 07:27 - 2021-07-29 16:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-09-30 16:33 - 2021-05-27 12:02 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\KOTRANA 2021-09-30 16:13 - 2020-02-19 11:08 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-09-30 13:28 - 2021-07-29 16:51 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-09-30 10:16 - 2021-05-27 11:03 - 000002450 _____ C:\Users\david.andriamitarija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-09-30 10:16 - 2021-05-27 11:03 - 000002442 _____ C:\Users\david.andriamitarija\Desktop\Microsoft Teams.lnk 2021-09-29 16:14 - 2021-05-27 12:02 - 000000000 ____D C:\Users\david.andriamitarija\Downloads\KANDRA + CV 2021-09-29 14:48 - 2019-03-19 07:52 - 000000000 ____D C:\windows\system32\NDF 2021-09-28 07:27 - 2021-05-27 15:53 - 000000000 __SHD C:\Users\Admin.local\IntelGraphicsProfiles 2021-09-18 11:59 - 2020-02-19 11:08 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2021-09-17 11:40 - 2021-05-28 07:56 - 000000000 ____D C:\ProgramData\AnyDesk 2021-09-17 11:36 - 2021-08-01 11:39 - 000000000 ____D C:\Users\Admin.local\AppData\Local\CrashDumps 2021-09-17 10:19 - 2021-05-27 15:56 - 000000000 ____D C:\ProgramData\Symantec 2021-09-17 09:06 - 2021-06-23 16:01 - 000000000 ____D C:\Users\Admin.local\Documents\Any Video Converter 2021-09-17 09:04 - 2021-08-18 17:10 - 000000000 ____D C:\Users\Admin.local\AppData\Roaming\vlc 2021-09-17 09:04 - 2021-05-28 11:19 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2021-09-17 09:03 - 2021-06-23 15:57 - 000000000 ____D C:\Users\Admin.local\AppData\Roaming\Any Video Converter 2021-09-17 09:02 - 2021-05-28 12:11 - 000000000 ____D C:\ProgramData\Wondershare Filmora 2021-09-17 08:57 - 2021-05-28 12:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2021-09-17 08:57 - 2021-05-27 13:52 - 000000000 ____D C:\Users\Admin.local\AppData\Local\D3DSCache ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================