Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-11-2021 Exécuté par ALSH AsBaMaVis (administrateur) sur PC-DIR-ALSH (LENOVO 80XM) (12-11-2021 13:25:25) Exécuté depuis C:\Users\ALSH AsBaMaVis\Downloads Profils chargés: ALSH AsBaMaVis Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1348 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11> (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHeciSvc.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> ) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3190384 2021-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM\...\Print\Monitors\C360iSeriesPCL Language Monitor: C:\WINDOWS\system32\KOAXCJ_L.dll [25488 2021-03-04] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-12] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {066D4EF9-1E20-4E24-87CF-09174BD6782C} - \RTKCPL -> Pas de fichier <==== ATTENTION Task: {18BED687-1E59-4F72-8CBD-A51487C48178} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (Pas de fichier) Task: {403095C8-C991-44F6-B661-8FB34CA93BD2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {7A377219-F70C-47ED-9091-DA31080420DE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {7D27369A-2CF3-43EF-9CB7-728F291E7F12} - \RtHDVBg_LENOVO_DOLBYDRAGON -> Pas de fichier <==== ATTENTION Task: {8915A9AA-E60D-4271-A191-6AAC852E4046} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Pas de fichier) Task: {A629CE02-0CCA-475A-86CE-5848391871CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-12] (Google LLC -> Google LLC) Task: {AC7B0C63-CED4-473E-AB9F-8D54D63CB7A9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {B4FD9E7B-B3C9-46FF-8F26-988EDBDF79A7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-12] (Google LLC -> Google LLC) Task: {B93E475C-AAC4-4B4A-A1D6-754719BC4F53} - \OneDrive Standalone Update Task-S-1-5-21-314318186-646692360-3886932415-1002 -> Pas de fichier <==== ATTENTION Task: {DABD25B3-12A7-466E-B5BC-0F0DBC1A457B} - \MicrosoftEdgeUpdateTaskMachineUA -> Pas de fichier <==== ATTENTION Task: {E37D31FB-3D8A-4FD0-B88E-27A4361FCA0F} - \MicrosoftEdgeUpdateTaskMachineCore -> Pas de fichier <==== ATTENTION Task: {E8C5C9BE-242E-4103-8CBA-CAD295717EDB} - \RtHDVBg_Dolby -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{646d506f-6ad1-4199-8677-a2b15fab0a1f}: [DhcpNameServer] 192.168.218.36 Tcpip\..\Interfaces\{e0e92501-86c1-4c78-abd4-78cb2f71d89a}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\ALSH AsBaMaVis\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-12] FireFox: ======== FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default [2021-11-12] CHR Notifications: Default -> hxxps://forums.commentcamarche.net CHR HomePage: Default -> hxxp://homepage-web.com/?s=hp&m=home CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://homepage-web.com/?s=hp&m=start","hxxps://www.bing.com/?PC=JV04","hxxps://www.google.com/" CHR Extension: (Slides) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-12] CHR Extension: (Docs) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-12] CHR Extension: (Google Drive) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-12] CHR Extension: (YouTube) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-12] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-12] CHR Extension: (KeePassHttp-Connector) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafgdjggglmmknipkhngniifhplpcldb [2021-11-12] CHR Extension: (Lilo - Page d'accueil) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dehmegeblmdipankockognekhbifghbp [2021-11-12] CHR Extension: (Sheets) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-12] CHR Extension: (Google Docs hors connexion) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-12] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-12] CHR Extension: (Gmail) - C:\Users\ALSH AsBaMaVis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-12] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-12] (Malwarebytes Inc -> Malwarebytes) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2021-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2021-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2021-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2021-11-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2021-09-02] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-12 13:25 - 2021-11-12 13:27 - 000013808 _____ C:\Users\ALSH AsBaMaVis\Downloads\FRST.txt 2021-11-12 13:24 - 2021-11-12 13:26 - 000000000 ____D C:\FRST 2021-11-12 13:15 - 2021-11-12 13:15 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-11-12 13:14 - 2021-11-12 13:14 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-11-12 13:14 - 2021-11-12 13:14 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-11-12 13:07 - 2021-11-12 13:07 - 002312192 _____ (Farbar) C:\Users\ALSH AsBaMaVis\Downloads\FRST64.exe 2021-11-12 12:36 - 2021-11-12 12:36 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-12 12:35 - 2021-11-12 12:35 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-12 12:00 - 2021-11-12 12:00 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\LocalLow\IGDump 2021-11-12 11:57 - 2021-11-12 11:57 - 000210352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-11-12 11:29 - 2021-11-12 11:29 - 000000000 ___HD C:\$WinREAgent 2021-11-12 11:20 - 2021-11-12 11:20 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\ElevatedDiagnostics 2021-11-12 11:07 - 2021-11-12 11:07 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-12 11:07 - 2021-11-12 11:07 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-11-12 11:06 - 2021-11-12 11:06 - 000000000 ____D C:\Program Files\Google 2021-11-12 11:05 - 2021-11-12 11:05 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-11-12 11:05 - 2021-11-12 11:05 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-11-12 10:52 - 2021-11-12 10:52 - 001341272 _____ (Google LLC) C:\Users\ALSH AsBaMaVis\Downloads\ChromeSetup.exe 2021-11-12 10:30 - 2021-11-12 12:35 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-12 10:30 - 2021-11-12 10:30 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-12 09:27 - 2021-11-12 09:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-11-12 09:25 - 2021-11-12 09:25 - 000000072 _____ C:\WINDOWS\system32\AdsInfoCls 2021-11-10 11:44 - 2021-11-10 11:44 - 000009216 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides (5).xls 2021-11-10 11:09 - 2021-11-10 11:40 - 000038400 _____ C:\Users\ALSH AsBaMaVis\Desktop\Synthèse des aides mercredis sept-oct 2021.xls 2021-11-10 10:37 - 2021-11-10 10:37 - 000008704 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides (4).xls 2021-11-10 10:35 - 2021-11-10 10:35 - 000008704 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides (3).xls 2021-11-10 09:18 - 2021-11-10 09:18 - 000097510 _____ C:\Users\ALSH AsBaMaVis\Downloads\Aout ROUYER.pdf 2021-11-10 09:17 - 2021-11-10 09:17 - 000097683 _____ C:\Users\ALSH AsBaMaVis\Downloads\Mercredis Septembre ROUYER.pdf 2021-11-09 16:45 - 2021-11-09 16:53 - 000025466 _____ C:\Users\ALSH AsBaMaVis\Documents\Aides CE Familles.xlsx 2021-11-09 16:17 - 2021-11-09 16:17 - 000007168 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides (2).xls 2021-11-09 11:36 - 2021-11-09 11:36 - 000097953 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (11).pdf 2021-11-09 10:42 - 2021-11-09 10:42 - 000099284 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (10).pdf 2021-11-09 09:57 - 2021-11-09 09:57 - 000098108 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture (4).pdf 2021-11-09 09:56 - 2021-11-09 09:56 - 000096853 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture (3).pdf 2021-11-09 09:56 - 2021-11-09 09:56 - 000096234 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture (2).pdf 2021-11-09 09:56 - 2021-11-09 09:56 - 000096226 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture (1).pdf 2021-11-08 11:14 - 2021-11-08 11:21 - 000037376 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides (1).xls 2021-11-08 11:08 - 2021-11-08 11:08 - 000008704 _____ C:\Users\ALSH AsBaMaVis\Downloads\Aide.xls 2021-11-08 11:04 - 2021-11-08 11:05 - 000006656 _____ C:\Users\ALSH AsBaMaVis\Downloads\Synthèse des aides.xls 2021-11-05 13:35 - 2021-11-05 13:35 - 000096833 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture.pdf 2021-11-05 13:18 - 2021-11-05 13:18 - 000097752 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (9).pdf 2021-11-05 13:02 - 2021-11-05 13:02 - 000097681 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (8).pdf 2021-11-05 12:59 - 2021-11-05 13:00 - 000093867 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (7).pdf 2021-11-05 12:58 - 2021-11-05 12:58 - 000097158 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (6).pdf 2021-11-05 12:51 - 2021-11-05 12:51 - 000095446 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (5).pdf 2021-11-04 14:03 - 2021-11-04 14:03 - 000093762 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (4).pdf 2021-11-04 12:02 - 2021-11-04 12:02 - 000096107 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (2).pdf 2021-11-04 12:02 - 2021-11-04 12:02 - 000095275 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (3).pdf 2021-11-04 11:18 - 2021-11-04 11:18 - 000098704 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4 (1).pdf 2021-11-04 11:09 - 2021-11-04 11:09 - 000102969 _____ C:\Users\ALSH AsBaMaVis\Downloads\an-facture4.pdf 2021-11-04 09:44 - 2021-11-12 10:32 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2021-11-03 11:42 - 2021-11-03 11:42 - 000001397 _____ C:\Users\ALSH AsBaMaVis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-11-03 11:41 - 2021-11-03 11:41 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\PCHealthCheck 2021-11-03 09:54 - 2021-11-03 09:54 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\mbam 2021-11-03 09:51 - 2021-11-12 12:00 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-11-03 09:51 - 2021-11-12 12:00 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-11-03 09:51 - 2021-11-03 09:49 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-11-03 09:51 - 2021-11-03 09:49 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-11-03 09:48 - 2021-11-12 11:51 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-11-03 09:47 - 2021-11-12 11:51 - 000000000 ____D C:\Program Files\Malwarebytes 2021-10-29 16:00 - 2021-10-29 16:00 - 000000000 ____D C:\Program Files (x86)\Java 2021-10-28 17:07 - 2021-10-28 17:07 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Roaming\Sun 2021-10-28 17:06 - 2021-11-02 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-10-28 17:06 - 2021-10-28 17:06 - 000000000 ____D C:\ProgramData\Oracle 2021-10-28 17:06 - 2021-10-28 17:06 - 000000000 ____D C:\Program Files\Java 2021-10-28 17:05 - 2021-10-28 17:05 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\LocalLow\Sun 2021-10-22 16:53 - 2021-08-20 16:33 - 000801164 _____ C:\Users\ALSH AsBaMaVis\Documents\fiche de renseignements individuelle 2020-2021.odt 2021-10-22 16:49 - 2021-11-03 17:27 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\LocalLow\Temp 2021-10-20 10:11 - 2021-10-20 10:11 - 000000000 ____D C:\Users\Public\Documents\sun 2021-10-20 10:04 - 2021-10-20 10:05 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.11 2021-10-15 08:50 - 2021-10-15 08:50 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-10-15 08:49 - 2021-10-15 08:49 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-10-15 08:49 - 2021-10-15 08:49 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-10-15 08:48 - 2021-10-15 08:48 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-12 13:23 - 2021-09-01 14:22 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-12 13:19 - 2021-09-01 13:04 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-12 13:19 - 2021-09-01 12:55 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat 2021-11-12 13:19 - 2021-09-01 12:55 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat 2021-11-12 13:19 - 2021-09-01 12:45 - 000000000 ____D C:\WINDOWS\INF 2021-11-12 13:16 - 2021-09-01 13:47 - 000000000 __SHD C:\Users\ALSH AsBaMaVis\IntelGraphicsProfiles 2021-11-12 13:16 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-12 13:16 - 2021-09-01 12:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-12 13:14 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-12 13:14 - 2021-09-01 12:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-12 13:14 - 2021-09-01 12:30 - 000635432 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-12 13:13 - 2021-09-01 12:30 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-12 13:13 - 2021-09-01 12:29 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\system32\setup 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-12 13:10 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-12 13:10 - 2021-09-01 12:29 - 000000000 ____D C:\WINDOWS\servicing 2021-11-12 12:51 - 2021-09-01 12:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-12 12:44 - 2021-09-01 12:47 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-12 12:43 - 2021-09-01 12:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-12 12:18 - 2021-09-01 16:08 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Roaming\KeePass 2021-11-12 11:07 - 2021-09-01 14:22 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\Google 2021-11-12 10:32 - 2021-09-01 15:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-11-12 10:03 - 2021-09-01 15:01 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\LocalLow\Mozilla 2021-11-12 09:42 - 2021-09-01 15:01 - 000000000 ____D C:\ProgramData\Mozilla 2021-11-12 09:30 - 2021-09-03 15:55 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-12 09:23 - 2021-09-03 15:54 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-10 11:44 - 2021-09-01 13:47 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\Packages 2021-11-09 16:15 - 2021-09-09 15:01 - 000000000 ____D C:\Users\ALSH AsBaMaVis\Documents\INOE 2021-11-09 09:34 - 2021-10-04 13:52 - 000000000 ____D C:\Users\ALSH AsBaMaVis\Documents\Budget 2021-11-07 18:23 - 2021-09-01 13:44 - 000002493 _____ C:\Users\ALSH AsBaMaVis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-11-07 18:19 - 2021-09-01 12:34 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-04 17:18 - 2021-09-01 13:51 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\PlaceholderTileLogoFolder 2021-11-04 16:48 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-11-04 14:56 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-11-03 17:02 - 2021-09-01 13:44 - 000000000 ____D C:\Users\ALSH AsBaMaVis 2021-11-03 10:54 - 2021-09-01 16:16 - 000022478 _____ C:\Users\ALSH AsBaMaVis\Desktop\bdd sivom asbamavis.kdbx 2021-11-03 09:51 - 2021-09-01 12:47 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-11-03 09:32 - 2021-09-01 12:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-11-02 19:06 - 2021-09-01 16:16 - 000000000 ____D C:\Users\ALSH AsBaMaVis\Documents\Relevés d'heures 2021-11-02 09:51 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\registration 2021-10-28 14:33 - 2021-09-03 13:48 - 000000000 ____D C:\Users\ALSH AsBaMaVis\Documents\Régies 2021-10-27 16:27 - 2021-09-01 13:47 - 000000000 ____D C:\Users\ALSH AsBaMaVis\AppData\Local\D3DSCache 2021-10-22 14:40 - 2021-09-02 15:00 - 000000000 ____D C:\Users\ALSH AsBaMaVis\Documents\Année 2021-2022 2021-10-20 10:05 - 2021-10-04 09:24 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4 2021-10-18 11:31 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-10-18 11:30 - 2021-09-01 12:47 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-10-18 11:30 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-10-18 11:30 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-10-18 11:30 - 2021-09-01 12:47 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-10-14 10:07 - 2021-09-10 14:36 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-10-14 10:07 - 2021-09-10 14:34 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-10-14 10:07 - 2021-09-10 14:34 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk ==================== Fichiers à la racine de certains dossiers ======== 2021-09-01 16:26 - 2019-12-07 10:10 - 000045984 ___SH (Microsoft Corporation) C:\Users\ALSH AsBaMaVis\yvwlz.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================