Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2022 Exécuté par Laksman (administrateur) sur KRANG (Dell Inc. Latitude E5470) (19-11-2022 11:37:32) Exécuté depuis C:\Users\Laksman\Desktop Profils chargés: Laksman Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2251 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ELECTRIC CO., LTD. -> ALPSALPINE CO., LTD.) C:\Program Files\DellTPad\hidfind.exe (C:\Program Files\DellTPad\HidMonitorSvc.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4> (C:\Users\Laksman\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Laksman\AppData\Local\Programs\Opera\92.0.4561.43\opera_crashreporter.exe (DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxEM.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIYVE.EXE (explorer.exe ->) (Signal Messenger, LLC -> Signal Messenger, LLC) C:\Users\Laksman\AppData\Local\Programs\signal-desktop\Signal.exe <5> (explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Opera Norway AS -> Opera Software) C:\Users\Laksman\AppData\Local\Programs\Opera\opera.exe <26> (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (services.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_141eb88527011137\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (PreSonus Audio Electronics, Inc. -> PreSonus) C:\Program Files\PreSonus\Universal Control\PreSonusHardwareAccessService.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) C:\Program Files\PDFsam Enhanced 7\activation-service.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2013-03-07] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230176 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489280 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489280 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [779152 2019-12-12] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" (Pas de fichier) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier) HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\UniConverter\WSVCUUpdateHelper.exe (Pas de fichier) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319760 2021-05-21] (Intel Corporation -> Intel Corporation) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [Fichier non signé] HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626480 2022-11-12] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\Run: [Universal Control] => [X] HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\Run: [org.whispersystems.signal-desktop] => C:\Users\Laksman\AppData\Local\Programs\signal-desktop\Signal.exe [151940472 2022-09-29] (Signal Messenger, LLC -> Signal Messenger, LLC) HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIYVE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\Run: [MicrosoftEdgeAutoLaunch_D6FEA4C84BAA1E216C34CF7C969D8AC7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892168 2022-11-17] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2984917379-3788311636-203427866-1008\...\MountPoints2: {7d0b3537-e477-11eb-a79c-e4b3182f8bd5} - "E:\HiSuiteDownLoader.exe" HKLM\...\Print\Monitors\EPSON ET-2810 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBYVE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\PDFsam Enhanced 7 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.11.0.7.dll [960120 2022-06-16] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com)) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {06D8B653-9A4F-4C4B-93EA-92B707870E4E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0EE714A9-6BD0-4DA5-8319-71EC361FDF1C} - System32\Tasks\Andrea Vacondio\PDFsam Enhanced 7\App Notification Logon => C:\Program Files\PDFsam Enhanced 7\sam-launcher.exe [1868696 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) Task: {1BE4F83D-A348-4C25-8BAB-A78DBBD0ACD7} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {1CC64F8A-A050-418C-A7FE-7D2ABED10AFC} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {1EF4C72E-3B1A-4F96-9629-08159A2EA904} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {289267F0-16C9-428C-81F4-9E16093AA74D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2984917379-3788311636-203427866-1008 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2022-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {297BAA57-4EE5-4076-8685-E2A469CDF1CF} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Maintenance Schedule created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {324983BF-91FE-4E0B-A15F-2FBA674E96D9} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-NSHUDFC-Laksman => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled (Pas de fichier) Task: {36EAD076-8CA4-4D33-9236-366EB5AACBFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {36F86858-01CD-4B4E-87A0-3EFCC244155E} - System32\Tasks\Opera scheduled Autoupdate 1659546342 => C:\Users\Laksman\AppData\Local\Programs\Opera\launcher.exe [2569160 2022-11-03] (Opera Norway AS -> Opera Software) Task: {37045798-5D31-4CDF-A3D5-30C04AC60D94} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [445440 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {3BB14F51-0F82-4B6E-8D4B-74EA25D9B8ED} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {3D5FF8DB-D513-4ECB-8509-B5B3946D4CB8} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [445440 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {444BD0E6-288D-4893-B1CB-4710C704943F} - System32\Tasks\Andrea Vacondio\PDFsam Enhanced 7\Update => C:\Program Files\PDFsam Enhanced 7\sam.exe [3418520 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) Task: {47A888B4-A244-4C2D-A95D-35B49F1DB8BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {488BC7C0-6922-41D8-988E-6C14C50003CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC) Task: {5051EF04-667A-41CF-82ED-F902B98255DD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {65D5F267-3133-4257-8D5E-7A3E4EC15539} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {6D1AABB9-804F-4A0E-A331-91DA61F10EF7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {6FB2B820-6FAD-477A-83A4-FB6214653722} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {7BE64883-74AF-403A-81C8-39EF4DBC46FF} - System32\Tasks\EPSON ET-2810 Series Update {3CD630AC-B67D-4D60-A05F-642800ADC76A} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSYVE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {8A05664E-0939-4E8E-8FB8-F81551396EA2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {8F6BE7F9-CA80-442F-85D1-AA35E3E181D3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {9B91CCD6-A2EB-4989-A427-6E55452BF88C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2022-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {A312B037-D643-4302-A619-FDE2055C2DE2} - System32\Tasks\Andrea Vacondio\PDFsam Enhanced 7\App Notification => C:\Program Files\PDFsam Enhanced 7\sam-launcher.exe [1868696 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) Task: {A6C32C84-C1E9-4BED-8731-0690D94E3BF6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {A74A7777-EC72-4455-98A1-470DAE4BB262} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) Task: {AA59E7DA-621D-4618-9D66-0D8016EAFC32} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC) Task: {AF87F6C8-AEF9-435A-9AE9-314AF396917D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {B2B038E8-7D6C-471B-BE03-8E94113F321D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C1639A6F-282F-4DA5-817B-F9C9F544D4A5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {F4B42A55-9051-4A35-BDB0-51B67126285E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {F8A68EF3-25D0-44CE-BA6F-EC7027F62EEE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\AFD2A1C8-8555-4A2C-8E1D-FB0E571E3E22\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [464896 2022-11-09] (Microsoft Windows -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON ET-2810 Series Update {3CD630AC-B67D-4D60-A05F-642800ADC76A}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSYVE.EXE:/EXE:{3CD630AC-B67D-4D60-A05F-642800ADC76A} /F:UpdateWORKGROUP\KRANG$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 178.255.160.92 178.255.160.94 Tcpip\..\Interfaces\{3dc13337-75ce-43e2-b548-e94c0a36fddd}: [DhcpNameServer] 178.255.160.92 178.255.160.94 Tcpip\..\Interfaces\{bb038ab9-5c93-4b13-8a4a-747ba711f888}: [DhcpNameServer] 192.168.1.2 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Laksman\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-19] Edge Notifications: Default -> hxxps://www.facebook.com FireFox: ======== FF DefaultProfile: x0qhvrrl.default FF ProfilePath: C:\Users\Laksman\AppData\Roaming\Mozilla\Firefox\Profiles\x0qhvrrl.default [2022-01-29] FF Homepage: Mozilla\Firefox\Profiles\x0qhvrrl.default -> hxxps://segoonow.com/homepage?hp=1&bitmask=9996&pId=BT171001&iDate=2022-01-29 07:16:36&bName= FF NewTab: Mozilla\Firefox\Profiles\x0qhvrrl.default -> hxxps://segoonow.com/homepage?hp=1&bitmask=9996&pId=BT171001&iDate=2022-01-29 07:16:36&bName= FF ProfilePath: C:\Users\Laksman\AppData\Roaming\Mozilla\Firefox\Profiles\a3do9zv3.default-release [2022-10-17] FF Homepage: Mozilla\Firefox\Profiles\a3do9zv3.default-release -> hxxps://segoonow.com/homepage?hp=1&bitmask=9996&pId=BT171001&iDate=2022-01-29 07:16:36&bName= FF NewTab: Mozilla\Firefox\Profiles\a3do9zv3.default-release -> hxxps://segoonow.com/homepage?hp=1&bitmask=9996&pId=BT171001&iDate=2022-01-29 07:16:36&bName= FF SearchPlugin: C:\Users\Laksman\AppData\Roaming\Mozilla\Firefox\Profiles\a3do9zv3.default-release\searchplugins\Search Now.xml [2022-01-29] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default [2022-11-18] CHR HomePage: Default -> hxxps://? CHR StartupUrls: Default -> "hxxps://?" CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=opensearch CHR DefaultSearchKeyword: Default -> ecosia.org CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list CHR Extension: (uBlock Origin) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-09-27] CHR Extension: (Google Docs hors connexion) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-01] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-10-23] CHR Extension: (Hedgehog in the fog) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg [2021-07-14] CHR Extension: (Boomerang for Gmail) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll [2022-10-16] CHR Extension: (Vérificateur de messages Google) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2021-07-14] CHR Extension: (Google Play Books) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmimngoggfoobjdlefbcabngfnmieonb [2021-07-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-14] CHR Profile: C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-10-27] CHR Profile: C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-11-18] CHR Extension: (Google Docs hors connexion) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-03] CHR Profile: C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-08-31] CHR Extension: (Google Docs hors connexion) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-31] CHR Profile: C:\Users\Laksman\AppData\Local\Google\Chrome\User Data\System Profile [2022-10-27] Opera: ======= OPR Profile: C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable [2022-11-19] OPR Notifications: Opera Stable -> hxxps://business.facebook.com; hxxps://mail.google.com; hxxps://mikeleloconte.ru; hxxps://stopovirus.clicforum.fr; hxxps://web.whatsapp.com; hxxps://www.castorama.fr; hxxps://www.facebook.com; hxxps://www.greenweez.com; hxxps://www.instagram.com; hxxps://www.laredoute.fr; hxxps://www.photo.leclerc; hxxps://www.tiktok.com OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-10-30] OPR Extension: (Opera Wallet) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-11-03] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-08-03] OPR Extension: (Installer des extensions Chrome) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2022-08-15] OPR Extension: (Google Traduction) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2022-09-30] OPR Extension: (Spotify Player) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\mcmbpdielcjigijcipihhihdpbjemibd [2022-08-25] OPR Extension: (Amazon Assistant pour Opera) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2022-08-28] OPR Extension: (YouTube NonStop) - C:\Users\Laksman\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2022-08-15] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [114960 2019-12-12] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-15] (Microsoft Corporation -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [45784 2022-08-17] (Dell Inc -> ) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2021-06-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncHelper.exe [3476368 2022-11-12] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8879024 2022-11-18] (Malwarebytes Inc. -> Malwarebytes) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.225.1026.0001\OneDriveUpdaterService.exe [3842480 2022-11-12] (Microsoft Corporation -> Microsoft Corporation) R3 PDFsam Enhanced 7; C:\Program Files\PDFsam Enhanced 7\activation-service.exe [3210648 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) S3 PDFsam Enhanced 7 Creator; C:\Program Files\PDFsam Enhanced 7\creator-ws.exe [514456 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) S3 PDFsam Enhanced 7 Update Service; C:\Program Files\PDFsam Enhanced 7\update-service.exe [267672 2021-11-03] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) R2 PreSonus Hardware Access Service; C:\Program Files\PreSonus\Universal Control\PreSonusHardwareAccessService.exe [491960 2022-05-05] (PreSonus Audio Electronics, Inc. -> PreSonus) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2022-01-29] (Bitdefender SRL -> Bitdefender) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287232 2022-06-15] (Microsoft Corporation) [Fichier non signé] R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [29160 2018-07-27] (Dell Inc -> OSR Open Systems Resources, Inc.) R3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [33616 2016-06-02] (FPT USA Corp. -> ) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-11-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-09-09] (WDKTestCert builder,132743893872553407 -> Logitech) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-11-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193992 2022-11-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-11-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-11-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-11-18] (Malwarebytes Inc. -> Malwarebytes) S3 PaeDSPUSB; C:\WINDOWS\System32\drivers\PaeDSPUSB.sys [413840 2022-05-05] (PreSonus Audio Electronics, Inc. -> ) S3 PaeDSPUSBks; C:\WINDOWS\System32\drivers\PaeDSPUSBks.sys [62576 2022-05-05] (PreSonus Audio Electronics, Inc. -> ) R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [30352 2016-10-07] (STMICROELECTRONICS S.R.L. -> ST Microelectronics) R3 teVirtualMIDI64; C:\WINDOWS\System32\drivers\teVirtualMIDI64.sys [53120 2019-12-07] (Tobias Erichsen -> Tobias Erichsen) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation) S4 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-19 11:37 - 2022-11-19 11:38 - 000035089 _____ C:\Users\Laksman\Desktop\FRST.txt 2022-11-19 11:36 - 2022-11-19 11:37 - 000000000 ____D C:\FRST 2022-11-19 11:36 - 2022-11-19 11:36 - 002375680 _____ (Farbar) C:\Users\Laksman\Desktop\FRST64.exe 2022-11-18 21:33 - 2022-11-18 21:33 - 000067617 _____ C:\Users\Laksman\Desktop\Rapports.zip 2022-11-18 21:29 - 2022-11-18 21:29 - 000193992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-11-18 21:29 - 2022-11-18 21:29 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-11-18 21:29 - 2022-11-18 21:29 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-11-18 21:15 - 2022-11-18 21:15 - 009043971 _____ C:\Users\Laksman\Downloads\wetransfer_photos-skins-france_2022-11-18_1913.zip 2022-11-18 19:11 - 2022-11-18 19:11 - 000000874 _____ C:\Users\Laksman\Desktop\ZHPDiag.lnk 2022-11-18 19:09 - 2022-11-18 21:18 - 000420650 _____ C:\Users\Laksman\Desktop\ZHPDiag.html 2022-11-18 19:03 - 2022-11-18 19:03 - 003311304 _____ (Nicolas Coolman) C:\Users\Laksman\Desktop\ZHPDiag3.exe 2022-11-18 19:01 - 2022-11-18 19:01 - 000001527 _____ C:\Users\Laksman\Desktop\03 - Malwarebytes Anti-Malware.txt 2022-11-18 18:52 - 2022-11-18 18:52 - 000000000 ____D C:\Users\Laksman\AppData\Local\mbam 2022-11-18 18:51 - 2022-11-18 18:51 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-11-18 18:51 - 2022-11-18 18:51 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-11-18 18:51 - 2022-11-18 18:51 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-11-18 18:51 - 2022-11-18 18:51 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-11-18 18:51 - 2022-11-18 18:50 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-11-18 18:51 - 2022-11-18 18:50 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-11-18 18:49 - 2022-11-18 18:49 - 002632256 _____ (Malwarebytes) C:\Users\Laksman\Desktop\MBSetup.exe 2022-11-18 18:49 - 2022-11-18 18:49 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-11-18 18:49 - 2022-11-18 18:49 - 000000000 ____D C:\Program Files\Malwarebytes 2022-11-18 18:48 - 2022-11-18 18:47 - 000002225 _____ C:\Users\Laksman\Desktop\02 - AdwCleaner[C00].txt 2022-11-18 18:46 - 2022-11-18 18:47 - 000000000 ____D C:\AdwCleaner 2022-11-18 18:45 - 2022-11-18 18:45 - 008791352 _____ (Malwarebytes) C:\Users\Laksman\Desktop\adwcleaner_8.4.0.exe 2022-11-18 18:43 - 2022-11-18 18:43 - 000006885 _____ C:\Users\Laksman\Desktop\ZHPCleaner bureau demarrage.txt 2022-11-18 18:37 - 2022-11-18 18:37 - 000015155 _____ C:\Users\Laksman\Desktop\ZHPCleaner (R).html 2022-11-18 18:37 - 2022-11-18 18:37 - 000006885 _____ C:\Users\Laksman\Desktop\01 - ZHPCleaner (R).txt 2022-11-18 18:30 - 2022-11-18 18:30 - 003305160 _____ (Nicolas Coolman) C:\Users\Laksman\Desktop\ZHPCleaner (1).exe 2022-11-18 18:30 - 2022-11-18 18:30 - 000018888 _____ C:\Users\Laksman\Desktop\ZHPCleaner (S).html 2022-11-18 18:30 - 2022-11-18 18:30 - 000009570 _____ C:\Users\Laksman\Desktop\ZHPCleaner (S).txt 2022-11-18 18:13 - 2022-11-18 18:15 - 000000884 _____ C:\Users\Laksman\Desktop\ZHPCleaner.lnk 2022-11-18 18:12 - 2022-11-18 18:13 - 000676709 _____ C:\Users\Laksman\Desktop\stopovirus __ Clavier qui ne répond plus.pdf 2022-11-18 18:12 - 2022-11-18 18:12 - 003305160 _____ (Nicolas Coolman) C:\Users\Laksman\Desktop\ZHPCleaner.exe 2022-11-18 17:53 - 2022-11-18 18:08 - 000000000 ____D C:\Users\Laksman\Desktop\HR - 2019 - Give thanks 2022-11-17 22:13 - 2022-11-17 22:13 - 000042418 _____ C:\Users\Laksman\Downloads\Joel novembre (2).pdf 2022-11-17 21:34 - 2022-11-17 21:34 - 000047157 _____ C:\Users\Laksman\Downloads\Joel novembre (1).pdf 2022-11-17 16:36 - 2022-11-18 17:30 - 1870987264 _____ C:\Users\Laksman\Desktop\ahimsa podcast radio 5.aup3 2022-11-17 12:52 - 2022-11-18 21:26 - 000335939 _____ C:\Users\Laksman\Desktop\04 - ZHPDiag.txt 2022-11-17 12:43 - 2022-11-18 21:26 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\ZHP 2022-11-17 12:43 - 2022-11-18 21:21 - 000000874 _____ C:\Users\Laksman\Desktop\ZHPSuite.lnk 2022-11-17 12:43 - 2022-11-18 19:11 - 000000000 ____D C:\Users\Laksman\AppData\Local\ZHP 2022-11-17 12:42 - 2022-11-17 12:42 - 003509960 _____ (Nicolas Coolman) C:\Users\Laksman\Desktop\ZHPSuite.exe 2022-11-17 10:58 - 2022-11-17 10:58 - 000937781 _____ C:\Users\Laksman\Downloads\MAINTENANCE DES TELEVISION DU GITE.pdf 2022-11-17 10:58 - 2022-11-17 10:58 - 000937781 _____ C:\Users\Laksman\Downloads\MAINTENANCE DES TELEVISION DU GITE (1).pdf 2022-11-16 20:53 - 2022-11-16 20:53 - 000000000 ___HD C:\$WinREAgent 2022-11-16 12:07 - 2022-11-16 12:07 - 000000000 ____D C:\Program Files\Dell 2022-11-16 12:01 - 2022-11-18 21:28 - 108003328 _____ C:\WINDOWS\system32\config\SOFTWARE 2022-11-16 11:57 - 2022-11-16 12:01 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2022-11-16 08:52 - 2022-11-16 08:52 - 000380067 _____ C:\Users\Laksman\Desktop\Your Shopping Cart – HOUSE OF DEVARISHI.pdf 2022-11-16 07:31 - 2022-11-16 12:01 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-11-14 19:17 - 2022-11-14 19:17 - 005124431 _____ C:\Users\Laksman\Downloads\BRO22040900.pdf 2022-11-14 19:17 - 2022-11-14 19:17 - 001565845 _____ C:\Users\Laksman\Downloads\BRO22021014.pdf 2022-11-13 12:34 - 2022-11-13 12:34 - 000287303 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-13 at 08.54.18.jpeg 2022-11-13 08:55 - 2022-11-13 08:55 - 000360955 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-13 at 08.54.17.jpeg 2022-11-13 08:54 - 2022-11-13 08:54 - 000251669 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-13 at 08.54.16.jpeg 2022-11-12 20:48 - 2022-11-12 20:50 - 053733250 _____ C:\Users\Laksman\Desktop\Apparition de Srila Bhaktisiddhanta Sarasvati Thakur Prabhupada_21.02.2022.mp4 2022-11-12 20:36 - 2022-11-12 20:37 - 639541248 _____ C:\Users\Laksman\Desktop\corine behue reduc bruit.aup3 2022-11-12 19:57 - 2022-11-12 19:57 - 042117568 _____ C:\Users\Laksman\Downloads\WhatsApp Audio 2022-11-11 at 08.42.00.aac 2022-11-12 19:57 - 2022-11-12 19:57 - 010765566 _____ C:\Users\Laksman\Downloads\WhatsApp Audio 2022-11-11 at 08.40.07.aac 2022-11-12 19:57 - 2022-11-12 19:57 - 006209326 _____ C:\Users\Laksman\Downloads\WhatsApp Audio 2022-11-11 at 08.39.19.aac 2022-11-12 19:00 - 2022-11-12 20:43 - 1767976960 _____ C:\Users\Laksman\Desktop\david lecoeur redu bruit.aup3 2022-11-12 18:12 - 2022-11-12 20:45 - 1769734144 _____ C:\Users\Laksman\Desktop\thierry folliard.aup3 2022-11-12 15:08 - 2022-11-12 15:08 - 000078751 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-10-24 at 17.51.28.jpeg 2022-11-12 09:17 - 2022-11-12 09:17 - 000057205 _____ C:\Users\Laksman\Downloads\Formulation-and-Administration-I.pdf 2022-11-12 09:17 - 2022-11-12 09:17 - 000043798 _____ C:\Users\Laksman\Downloads\Lesson 2- The Roots of Health.pdf 2022-11-12 08:53 - 2022-11-12 08:53 - 027011117 _____ C:\Users\Laksman\Downloads\Programme de formation en herboristerie clinique _ FloraMedicina.pdf 2022-11-11 20:51 - 2022-11-11 20:51 - 000626138 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 20.51.07.jpeg 2022-11-11 20:51 - 2022-11-11 20:51 - 000364057 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 20.51.06.jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000802951 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 18.31.06 (3).jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000685943 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 18.31.06 (2).jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000620836 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 18.31.07.jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000520480 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 18.31.06 (1).jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000364057 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 10.14.49 (1).jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000331633 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 10.14.49.jpeg 2022-11-11 20:48 - 2022-11-11 20:48 - 000310162 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 10.14.50.jpeg 2022-11-11 20:47 - 2022-11-11 20:47 - 000709996 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-11-11 at 18.31.06.jpeg 2022-11-11 13:57 - 2022-11-12 20:37 - 773681152 _____ C:\Users\Laksman\Desktop\corine behue.aup3 2022-11-11 09:45 - 2022-11-12 20:45 - 1768013824 _____ C:\Users\Laksman\Desktop\david lecoeur.aup3 2022-11-11 09:31 - 2022-11-18 08:03 - 000000000 ____D C:\Users\Laksman\Desktop\bureau 2022-11-10 20:25 - 2022-11-10 20:25 - 000138700 _____ C:\Users\Laksman\Downloads\Sans titre (Affiche (format paysage)) (1).pdf 2022-11-10 20:20 - 2022-11-10 20:20 - 000138706 _____ C:\Users\Laksman\Downloads\Sans titre (Affiche (format paysage)).pdf 2022-11-09 21:38 - 2022-11-09 21:38 - 004141156 _____ C:\Users\Laksman\Downloads\Médecines traditionnelles de la Vallée Sacrée des Incas, Pérou (1).pdf 2022-11-09 21:37 - 2022-11-09 21:37 - 004141227 _____ C:\Users\Laksman\Downloads\Médecines traditionnelles de la Vallée Sacrée des Incas, Pérou.pdf 2022-11-09 09:10 - 2022-11-09 09:10 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-09 09:10 - 2022-11-09 09:10 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-09 09:10 - 2022-11-09 09:10 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-09 09:10 - 2022-11-09 09:10 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-09 09:04 - 2022-11-09 09:04 - 000000000 ____D C:\WINDOWS\Panther 2022-11-09 08:25 - 2022-11-09 08:25 - 000032700 _____ C:\Users\Laksman\Downloads\Joel novembre.pdf 2022-11-08 07:58 - 2022-11-08 07:58 - 000000000 ____D C:\ProgramData\Adobe 2022-11-07 13:02 - 2022-11-07 13:02 - 000134263 _____ C:\Users\Laksman\Desktop\Mama_Irene_Affiche_HD.jpeg 2022-11-06 19:26 - 2022-11-06 19:26 - 000000000 ____D C:\Users\Laksman\Downloads\old_london 2022-11-04 15:38 - 2022-11-04 15:38 - 086917203 _____ C:\Users\Laksman\Downloads\TJ - IWCHWRM (2021).zip 2022-11-04 15:37 - 2022-11-04 15:37 - 031848480 _____ C:\Users\Laksman\Downloads\TJ - ES (2019).zip 2022-11-04 15:35 - 2022-11-04 15:37 - 097281858 _____ C:\Users\Laksman\Downloads\TJ - Chrmr (2014).zip 2022-11-04 14:33 - 2022-11-04 14:35 - 012186356 _____ C:\Users\Laksman\Downloads\Gmail.zip 2022-11-04 09:47 - 2022-11-04 09:47 - 000114275 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20181101.pdf 2022-11-04 09:47 - 2022-11-04 09:47 - 000096358 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20181002.pdf 2022-11-04 09:45 - 2022-11-04 09:45 - 000128214 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20210701.pdf 2022-11-04 09:45 - 2022-11-04 09:45 - 000117492 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20210802.pdf 2022-11-04 09:45 - 2022-11-04 09:45 - 000117396 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20210901.pdf 2022-11-04 09:44 - 2022-11-04 09:44 - 000156302 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20220201.pdf 2022-11-04 09:43 - 2022-11-04 09:43 - 000155344 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20211201.pdf 2022-11-04 09:43 - 2022-11-04 09:43 - 000143194 _____ C:\Users\Laksman\Downloads\RELEVES_0902363355_20220104.pdf 2022-11-03 20:46 - 2022-11-03 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2984917379-3788311636-203427866-1008 2022-11-02 17:24 - 2022-11-02 17:24 - 000000000 ____D C:\Users\Laksman\Documents\Adobe 2022-11-02 17:23 - 2022-11-02 17:23 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\Imagenomic 2022-11-02 17:23 - 2022-11-02 17:23 - 000000000 ____D C:\Users\Laksman\AppData\Local\Adobe 2022-11-02 14:08 - 2022-11-02 14:08 - 000105159 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-10-30 at 19.48.44.jpeg 2022-11-02 10:43 - 2022-11-02 10:43 - 027856821 _____ C:\Users\Laksman\Downloads\Dossier de Presse Fetepam 2022.pdf 2022-11-02 10:43 - 2022-11-02 10:43 - 000619820 _____ C:\Users\Laksman\Downloads\communiqué de presse fête 2022.pdf 2022-11-01 08:05 - 2022-11-01 08:05 - 000000000 ____D C:\Users\Laksman\AppData\Local\CEWE 2022-11-01 08:05 - 2022-11-01 08:05 - 000000000 ____D C:\Users\Laksman\AppData\Local\CEF 2022-11-01 07:54 - 2022-11-01 15:26 - 000000000 ____D C:\Program Files\PHOTO E Leclerc 2022-10-31 17:12 - 2022-10-31 17:20 - 000000000 ____D C:\Users\Laksman\Downloads\Adobe Illustrator CC 2020 - Portable 2022-10-30 14:45 - 2022-10-30 14:45 - 000025417 _____ C:\Users\Laksman\Downloads\Expedition-66324896.pdf 2022-10-30 14:38 - 2022-10-30 14:38 - 000134680 _____ C:\Users\Laksman\Downloads\MR-66324896.pdf 2022-10-30 14:38 - 2022-10-30 14:38 - 000134680 _____ C:\Users\Laksman\Downloads\MR-66324896 (1).pdf 2022-10-29 08:34 - 2022-10-29 08:34 - 000348627 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-10-29 at 09.32.49 (1).jpeg 2022-10-29 08:34 - 2022-10-29 08:34 - 000306241 _____ C:\Users\Laksman\Downloads\WhatsApp Image 2022-10-29 at 09.32.49.jpeg 2022-10-26 19:06 - 2014-09-23 15:00 - 000170160 _____ C:\Users\Laksman\Downloads\KGHAPPY.ttf 2022-10-26 19:06 - 2014-09-23 15:00 - 000121084 _____ C:\Users\Laksman\Downloads\KGHAPPYShadows.ttf 2022-10-26 19:06 - 2014-09-23 15:00 - 000068380 _____ C:\Users\Laksman\Downloads\KGHAPPYSolid.ttf 2022-10-26 18:31 - 2022-10-26 18:31 - 000000000 ____D C:\Users\Laksman\Downloads\on_the_fritz 2022-10-26 18:26 - 2022-10-26 18:26 - 000000000 ____D C:\Users\Laksman\Downloads\bimbo 2022-10-24 11:08 - 2022-10-24 17:56 - 000000000 ____D C:\Users\Laksman\Downloads\Heaven X - The Enlightenment (Full Album) 2022-10-23 11:35 - 2022-10-23 11:37 - 000000000 ____D C:\Users\Laksman\Downloads\Nada Surf-Lucky (2008) 2022-10-23 11:31 - 2022-10-23 11:35 - 000000000 ____D C:\Users\Laksman\Downloads\Nada Surf - Let Go - 2002 2022-10-21 14:15 - 2022-10-21 14:15 - 000000000 ____D C:\Users\Laksman\Downloads\Shelter - Mantra 2022-10-20 20:10 - 2022-10-20 20:10 - 010972862 _____ C:\Users\Laksman\Downloads\WhatsApp Video 2022-10-20 at 21.06.21.mp4 ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-19 11:31 - 2021-07-17 23:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-19 11:08 - 2021-07-14 08:54 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-19 11:01 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-19 11:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-19 11:01 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-19 08:42 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-11-19 08:40 - 2021-09-17 12:26 - 000000000 ____D C:\Users\Laksman\AppData\LocalLow\Mozilla 2022-11-19 08:38 - 2022-10-04 12:35 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\Signal 2022-11-19 08:38 - 2021-07-13 18:43 - 000000000 ___RD C:\Users\Laksman\OneDrive 2022-11-19 08:38 - 2021-07-08 16:40 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-19 08:37 - 2021-07-13 18:40 - 000000000 __SHD C:\Users\Laksman\IntelGraphicsProfiles 2022-11-18 23:14 - 2021-08-22 06:46 - 000000000 ____D C:\Users\Laksman\Downloads\Sol Jacobs 2022-11-18 21:36 - 2021-07-17 23:59 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-18 21:36 - 2019-12-07 15:49 - 000794330 _____ C:\WINDOWS\system32\perfh00C.dat 2022-11-18 21:36 - 2019-12-07 15:49 - 000150444 _____ C:\WINDOWS\system32\perfc00C.dat 2022-11-18 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-18 21:29 - 2021-07-17 23:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-18 21:29 - 2021-07-17 23:50 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-18 21:29 - 2020-11-24 10:12 - 000000000 ____D C:\Intel 2022-11-18 21:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-18 21:28 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-11-18 18:51 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-11-18 18:47 - 2022-01-29 08:16 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\Lavasoft 2022-11-18 18:47 - 2022-01-29 08:16 - 000000000 ____D C:\Users\Laksman\AppData\Local\Lavasoft 2022-11-18 18:47 - 2022-01-29 08:15 - 000000000 ____D C:\ProgramData\Lavasoft 2022-11-18 18:47 - 2022-01-29 08:15 - 000000000 ____D C:\Program Files (x86)\Lavasoft 2022-11-18 18:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-11-18 18:37 - 2022-01-29 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2022-11-18 18:14 - 2021-09-04 07:38 - 000000000 ____D C:\Users\Laksman\AppData\Local\D3DSCache 2022-11-18 18:07 - 2022-06-10 07:59 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\audacity 2022-11-18 17:57 - 2022-01-05 16:07 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\vlc 2022-11-18 12:46 - 2021-07-14 07:37 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-11-17 20:22 - 2020-11-24 09:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-11-17 12:47 - 2021-09-05 22:04 - 000000000 ____D C:\Users\Laksman\Desktop\La Mare Elan 2022-11-17 09:03 - 2021-07-13 18:40 - 000000000 ____D C:\Users\Laksman\AppData\Local\Packages 2022-11-17 08:26 - 2022-06-03 06:43 - 000000000 ____D C:\Users\Laksman\Desktop\Radha Kripa Caen 2022-11-17 07:33 - 2021-07-14 08:56 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-16 20:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-16 16:26 - 2022-05-29 19:50 - 000000000 ____D C:\Users\Laksman\Documents\gmail 2022-11-16 16:26 - 2021-09-17 12:26 - 000000000 ____D C:\ProgramData\Mozilla 2022-11-16 12:07 - 2020-11-24 10:13 - 000000000 ____D C:\ProgramData\Package Cache 2022-11-16 12:01 - 2021-09-17 12:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-11-16 12:01 - 2021-09-04 19:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-11-16 09:47 - 2021-09-17 12:26 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-11-16 09:47 - 2021-09-17 12:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-11-16 07:31 - 2021-07-25 14:30 - 000000000 ____D C:\Program Files\Microsoft Office 2022-11-15 21:21 - 2022-04-07 16:34 - 000000000 ____D C:\Users\Laksman\Documents\+ Administration 2022-11-12 09:36 - 2021-12-11 06:51 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2984917379-3788311636-203427866-1008 2022-11-12 09:36 - 2021-07-25 13:41 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-11-12 09:36 - 2021-07-25 13:41 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-12 08:15 - 2021-07-17 23:56 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-12 08:15 - 2021-07-17 23:56 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-11 18:22 - 2020-11-24 10:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-11 06:17 - 2021-07-17 23:52 - 000000000 ____D C:\Users\Laksman 2022-11-09 20:25 - 2022-08-03 18:05 - 000004188 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1659546342 2022-11-09 20:25 - 2022-08-03 18:05 - 000001418 _____ C:\Users\Laksman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2022-11-09 09:52 - 2022-10-15 13:04 - 000000931 _____ C:\WINDOWS\Tasks\EPSON ET-2810 Series Update {3CD630AC-B67D-4D60-A05F-642800ADC76A}.job 2022-11-09 09:52 - 2021-07-17 23:50 - 000466112 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-09 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-09 09:10 - 2021-07-17 23:55 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-09 08:23 - 2020-11-24 09:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-09 08:20 - 2020-11-24 09:49 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-08 08:08 - 2020-11-24 09:28 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-11-06 14:54 - 2022-10-15 11:54 - 000000000 ____D C:\WINDOWS\Minidump 2022-11-06 14:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-11-04 09:44 - 2022-03-26 07:56 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\uTorrent Web 2022-11-02 19:48 - 2021-09-17 19:50 - 000000000 ____D C:\Users\Laksman\AppData\Local\BitTorrentHelper 2022-10-30 18:01 - 2021-07-13 18:40 - 000000000 ____D C:\Users\Laksman\AppData\Local\ConnectedDevicesPlatform 2022-10-27 11:28 - 2021-08-13 19:56 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\discord 2022-10-27 10:19 - 2021-08-13 19:56 - 000000000 ____D C:\Users\Laksman\AppData\Local\Discord 2022-10-23 11:30 - 2021-07-13 18:40 - 000000000 ____D C:\Users\Laksman\AppData\Roaming\Adobe 2022-10-20 20:10 - 2021-07-13 18:45 - 000000000 ____D C:\Users\Laksman\AppData\Telegram Desktop ==================== Fichiers à la racine de certains dossiers ======== 2021-07-14 07:54 - 2022-10-16 15:22 - 000000034 _____ () C:\Users\Laksman\AppData\Roaming\AdobeWLCMCache.dat 2022-05-17 06:04 - 2022-05-17 06:04 - 341513725 _____ () C:\Users\Laksman\AppData\Local\ACCCx4_9_0_515.zip.aamdownload 2022-05-17 06:04 - 2022-05-17 06:04 - 000003777 _____ () C:\Users\Laksman\AppData\Local\ACCCx4_9_0_515.zip.aamdownload.aamd ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================