Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2022 Exécuté par ADIS ENTREPOT (administrateur) sur LAPTOP-QI5S3F82 (Acer Aspire E5-523) (15-11-2022 11:33:01) Exécuté depuis C:\Users\ADIS ENTREPOT\Downloads Profils chargés: ADIS ENTREPOT Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2251 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe <2> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_7\mcapexe.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16695816 2016-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1462792 2016-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-10-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-2042571925-4048414094-4052737326-1001\...\Run: [MicrosoftEdgeAutoLaunch_EDBDBEE846DD2FA3A4CB24B49307B15A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2042571925-4048414094-4052737326-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38789456 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-14] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0503226E-3ECC-48B9-BE5B-24444579A33D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.) Task: {176DA326-6711-4AB0-9C54-1EFFC081F4A8} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "ecfb7f53-56da-4500-abc3-1d3f4bc80d99" --version "6.05.10110" --silent Task: {5C057FB1-7B77-42DF-8D98-34CE4D3F2B0B} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-storagesense => C:\Program Files\rempl\remsh.exe /RunStorageSenseTaskOnly (Pas de fichier) Task: {6FD3F42F-1DAB-427A-88D6-8B5BB78E5C70} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {7CFFBCE4-CD86-482A-98CE-3A538CE23DDC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.) Task: {7ED12C32-38A2-4785-9964-B129C50CD3DC} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier) Task: {A9108A1C-C1FA-4E88-B348-36AA95DEE762} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {ADC69E17-93F6-4003-A054-7B500DCED529} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-11-13] (Avast Software s.r.o. -> Avast Software) Task: {B74DF794-6B63-4857-A72B-7FD50950CACB} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-sih => C:\Program Files\rempl\remsh.exe /RunSihScanOnly (Pas de fichier) Task: {BD78136D-610B-4924-A28B-94B005F1F2D9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform) Task: {BDD07D54-0CCE-4463-BCE1-25F8CD848F3C} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> ) Task: {C650A86B-A325-42B4-A2CC-CBCB14196FC7} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier) Task: {D067525D-CC54-48A2-99CF-FBDFF7A3347A} - System32\Tasks\Microsoft\Windows\rempl\shell-restore => C:\Program Files\rempl\remsh.exe /RunRestoreHealthOnly (Pas de fichier) Task: {E97FAE76-E1EE-41A3-8305-A1CD7BD5E671} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task (Pas de fichier) Task: {EE323275-C990-4F03-AD60-1A4B38257194} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472992 2016-07-29] (Acer Incorporated -> Acer Incorporated) Task: {F22E4D11-88F2-42BF-B892-9F763B8521C8} - System32\Tasks\Microsoft\Windows\rempl\shell-compact => C:\Program Files\rempl\remsh.exe /RunCompactOnly (Pas de fichier) Task: {F85F62CD-2A96-491F-986A-EB930B68238C} - System32\Tasks\CCleanerSkipUAC - ADIS ENTREPOT => C:\Program Files\CCleaner\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {FEBEC3C0-47A9-4E67-A8DB-A949F003F711} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe /default (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{78ca7def-912d-46f6-a284-ceed49a2eb8c}: [DhcpNameServer] 40.33.1.66 Tcpip\..\Interfaces\{a5add424-3231-490f-89c6-ab446eea3f70}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\ADIS ENTREPOT\Downloads Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\ADIS ENTREPOT\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-15] FireFox: ======== FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default [2022-11-14] CHR HomePage: Default -> hxxp://www.google.fr/ CHR Extension: (Slides) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-18] CHR Extension: (Docs) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-18] CHR Extension: (Google Drive) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-11-06] CHR Extension: (YouTube) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-03] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-11-06] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-11-06] CHR Extension: (Sheets) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-18] CHR Extension: (Google Docs hors connexion) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-06] CHR Extension: (Avast Online Security) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-11-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-11] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2022-11-06] CHR Extension: (Gmail) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-05-18] CHR Extension: (Chrome Media Router) - C:\Users\ADIS ENTREPOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2022-11-06] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [785408 2022-11-14] (Microsoft Windows -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8879024 2022-11-13] (Malwarebytes Inc. -> Malwarebytes) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_7\McApExe.exe [994280 2017-09-14] (McAfee, Inc. -> McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [394704 2017-06-21] (McAfee, Inc. -> McAfee, Inc.) R3 mfevtp; C:\Windows\system32\mfevtps.exe [350160 2017-06-21] (McAfee, Inc. -> McAfee, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-10] (Disc Soft Ltd -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193992 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-11-14] (Malwarebytes Inc. -> Malwarebytes) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [487408 2017-06-26] (McAfee, Inc. -> McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [355312 2017-06-26] (McAfee, Inc. -> McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [933360 2017-06-26] (McAfee, Inc. -> McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [504792 2017-06-27] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108504 2017-06-27] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116208 2017-06-26] (McAfee, Inc. -> McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [253424 2017-06-26] (McAfee, Inc. -> McAfee, Inc.) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-13] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-13] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-15 11:33 - 2022-11-15 11:52 - 000017514 _____ C:\Users\ADIS ENTREPOT\Downloads\FRST.txt 2022-11-15 11:31 - 2022-11-15 11:50 - 000000000 ____D C:\FRST 2022-11-15 11:30 - 2022-11-15 11:30 - 002375168 _____ (Farbar) C:\Users\ADIS ENTREPOT\Downloads\FRST64.exe 2022-11-15 10:56 - 2022-11-15 10:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-11-14 20:59 - 2022-11-14 20:59 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-11-14 20:58 - 2022-11-14 20:58 - 000193992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-11-14 20:58 - 2022-11-14 20:58 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-11-14 18:38 - 2022-11-14 18:38 - 000001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-11-14 18:38 - 2022-11-14 18:38 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-11-14 18:08 - 2022-11-14 18:08 - 000000000 ____D C:\Users\ADIS ENTREPOT\AppData\Roaming\com.adobe.dunamis 2022-11-14 18:08 - 2022-11-14 18:08 - 000000000 ____D C:\Users\ADIS ENTREPOT\.ms-ad 2022-11-14 18:03 - 2022-11-15 09:26 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-11-14 18:02 - 2022-11-14 18:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-11-14 17:51 - 2022-11-14 17:51 - 000000020 ___SH C:\Users\ADIS ENTREPOT\ntuser.ini 2022-11-14 17:47 - 2022-11-15 11:53 - 000004194 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{2672FB63-C8F5-4FF5-9B4A-22CC5B142C21} 2022-11-14 17:47 - 2022-11-14 20:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-14 17:47 - 2022-11-14 18:06 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2042571925-4048414094-4052737326-1001 2022-11-14 17:47 - 2022-11-14 18:06 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2042571925-4048414094-4052737326-1001 2022-11-14 17:47 - 2022-11-14 17:49 - 000002270 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - ADIS ENTREPOT 2022-11-14 17:47 - 2022-11-14 17:48 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-14 17:47 - 2022-11-14 17:48 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-11-14 17:47 - 2022-11-14 17:47 - 000004302 _____ C:\WINDOWS\system32\Tasks\Software Update Application 2022-11-14 17:47 - 2022-11-14 17:47 - 000003682 _____ C:\WINDOWS\system32\Tasks\AcerCMUpdateTask2.5.22250 2022-11-14 17:47 - 2022-11-14 17:47 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-11-14 17:47 - 2022-11-14 17:47 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-14 17:47 - 2022-11-14 17:47 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-11-14 17:47 - 2022-11-14 17:47 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-11-14 17:47 - 2022-11-14 17:47 - 000002762 _____ C:\WINDOWS\system32\Tasks\BacKGroundAgent 2022-11-14 17:47 - 2022-11-14 17:47 - 000002042 _____ C:\WINDOWS\system32\Tasks\FubToolByPLD 2022-11-14 17:47 - 2022-11-14 17:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2042571925-4048414094-4052737326-1001 2022-11-14 17:47 - 2022-11-14 17:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Oem 2022-11-14 17:47 - 2022-11-14 17:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2022-11-14 17:47 - 2022-11-14 17:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-11-14 17:46 - 2022-11-14 17:47 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2022-11-14 17:46 - 2022-11-14 17:47 - 000007623 _____ C:\WINDOWS\diagerr.xml 2022-11-14 16:54 - 2022-11-14 21:04 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-14 16:02 - 2022-11-15 11:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-14 16:02 - 2022-11-14 16:02 - 000432576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-14 16:01 - 2022-11-14 20:56 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-14 16:00 - 2022-11-14 17:49 - 000000000 ____D C:\Windows.old 2022-11-14 15:01 - 2022-11-14 16:00 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2022-11-14 14:51 - 2022-11-14 18:08 - 000000000 ____D C:\Users\ADIS ENTREPOT 2022-11-14 14:51 - 2022-11-14 18:06 - 000002494 _____ C:\Users\ADIS ENTREPOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Voisinage réseau 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Voisinage d'impression 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Modèles 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Mes documents 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Menu Démarrer 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Documents\Mes vidéos 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Documents\Mes images 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\Documents\Ma musique 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2022-11-14 14:51 - 2022-11-14 14:51 - 000000000 _SHDL C:\Users\ADIS ENTREPOT\AppData\Local\Historique 2022-11-14 14:38 - 2022-11-14 15:00 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2022-11-14 13:44 - 2022-11-14 13:44 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-11-14 13:44 - 2022-11-14 13:44 - 000000000 ____D C:\ProgramData\ssh 2022-11-14 13:17 - 2022-11-14 13:17 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2022-11-14 13:14 - 2022-11-14 13:14 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-11-14 13:14 - 2022-11-14 13:14 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2022-11-14 13:13 - 2022-11-14 13:13 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-11-14 13:12 - 2022-11-14 13:12 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-11-14 13:12 - 2022-11-14 13:12 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2022-11-14 13:12 - 2022-11-14 13:12 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-11-14 13:12 - 2022-11-14 13:12 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-11-14 13:12 - 2022-11-14 13:12 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-11-14 13:12 - 2022-11-14 13:12 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-11-14 13:11 - 2022-11-14 13:11 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2022-11-14 13:11 - 2022-11-14 13:11 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-14 13:11 - 2022-11-14 13:11 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-14 13:11 - 2022-11-14 13:11 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2022-11-14 13:09 - 2022-11-14 13:09 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-11-14 13:09 - 2022-11-14 13:09 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-11-14 13:09 - 2022-11-14 13:09 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-11-14 13:09 - 2022-11-14 13:09 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2022-11-14 13:09 - 2022-11-14 13:09 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-11-14 13:09 - 2022-11-14 13:09 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-11-14 13:09 - 2022-11-14 13:09 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-11-14 13:08 - 2022-11-14 13:08 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2022-11-14 13:08 - 2022-11-14 13:08 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2022-11-14 13:08 - 2022-11-14 13:08 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2022-11-14 13:08 - 2022-11-14 13:08 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2022-11-14 13:08 - 2022-11-14 13:08 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2022-11-14 13:08 - 2022-11-14 13:08 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-14 13:07 - 2022-11-14 13:07 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2022-11-14 13:06 - 2022-11-14 13:06 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2022-11-14 13:06 - 2022-11-14 13:06 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2022-11-14 13:06 - 2022-11-14 13:06 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2022-11-14 13:06 - 2022-11-14 13:06 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2022-11-14 13:05 - 2022-11-14 13:05 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-11-14 13:05 - 2022-11-14 13:05 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2022-11-14 13:05 - 2022-11-14 13:05 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2022-11-14 13:04 - 2022-11-14 13:04 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2022-11-14 13:04 - 2022-11-14 13:04 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2022-11-14 13:04 - 2022-11-14 13:04 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2022-11-14 13:04 - 2022-11-14 13:04 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2022-11-14 13:04 - 2022-11-14 13:04 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2022-11-14 13:04 - 2022-11-14 13:04 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2022-11-14 13:03 - 2022-11-14 13:03 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2022-11-14 13:03 - 2022-11-14 13:03 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-11-14 13:02 - 2022-11-14 13:02 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2022-11-14 13:00 - 2022-11-14 13:00 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-11-14 12:59 - 2022-11-14 12:59 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2022-11-14 12:59 - 2022-11-14 12:59 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2022-11-14 12:59 - 2022-11-14 12:59 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2022-11-14 12:59 - 2022-11-14 12:59 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-11-14 12:58 - 2022-11-14 12:58 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll 2022-11-14 12:58 - 2022-11-14 12:58 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-11-14 12:58 - 2022-11-14 12:58 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2022-11-14 12:58 - 2022-11-14 12:58 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2022-11-14 12:57 - 2022-11-14 12:57 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2022-11-14 12:56 - 2022-11-14 12:56 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2022-11-14 12:55 - 2022-11-14 12:55 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-11-14 12:55 - 2022-11-14 12:55 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe 2022-11-14 12:55 - 2022-11-14 12:55 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-11-14 12:55 - 2022-11-14 12:55 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2022-11-14 12:54 - 2022-11-14 12:54 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-11-14 12:54 - 2022-11-14 12:54 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2022-11-14 11:45 - 2022-11-14 11:45 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml 2022-11-14 11:45 - 2022-11-14 11:45 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2022-11-14 11:34 - 2022-11-14 11:34 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2022-11-14 11:34 - 2022-11-14 11:34 - 000000000 ____D C:\Program Files\Reference Assemblies 2022-11-14 11:34 - 2022-11-14 11:34 - 000000000 ____D C:\Program Files\MSBuild 2022-11-14 11:34 - 2022-11-14 11:34 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2022-11-14 11:34 - 2022-11-14 11:34 - 000000000 ____D C:\Program Files (x86)\MSBuild 2022-11-14 11:10 - 2022-11-14 11:10 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2022-11-14 09:52 - 2022-11-14 09:52 - 000015158 _____ C:\Users\ADIS ENTREPOT\Desktop\cc_20221114_095217.reg 2022-11-14 09:48 - 2022-11-14 09:48 - 000001792 _____ C:\Users\ADIS ENTREPOT\Desktop\AdwCleaner[C01].txt 2022-11-14 09:39 - 2022-11-14 09:39 - 000101162 _____ C:\Users\ADIS ENTREPOT\Desktop\cc_20221114_093908.reg 2022-11-14 09:34 - 2022-11-15 09:26 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-11-14 09:34 - 2022-11-14 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-11-14 09:34 - 2022-11-14 09:34 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk 2022-11-14 09:33 - 2022-11-15 09:26 - 000000000 ____D C:\Program Files\CCleaner 2022-11-14 09:29 - 2022-11-14 09:33 - 052464056 _____ (Piriform Software Ltd) C:\Users\ADIS ENTREPOT\Downloads\ccsetup605.exe 2022-11-14 09:27 - 2022-11-14 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2022-11-14 09:27 - 2022-11-14 09:27 - 008995336 _____ (Piriform Software Ltd) C:\Users\ADIS ENTREPOT\Downloads\spsetup132.exe 2022-11-14 09:27 - 2022-11-14 09:27 - 000000841 _____ C:\Users\Public\Desktop\Speccy.lnk 2022-11-14 09:27 - 2022-11-14 09:27 - 000000000 ____D C:\Program Files\Speccy 2022-11-14 08:36 - 2022-11-14 17:52 - 000000000 ___DC C:\WINDOWS\Panther 2022-11-14 07:59 - 2022-11-14 07:59 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2022-11-14 07:59 - 2022-11-14 07:59 - 000002128 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk 2022-11-13 23:32 - 2022-11-13 23:32 - 000004263 _____ C:\Users\ADIS ENTREPOT\Desktop\AdwCleaner[C00].txt 2022-11-13 23:23 - 2022-11-13 23:23 - 000000000 ___HD C:\$WinREAgent 2022-11-13 22:17 - 2022-11-13 22:54 - 000000000 ____D C:\AdwCleaner 2022-11-13 22:17 - 2022-11-13 22:17 - 008791352 _____ (Malwarebytes) C:\Users\ADIS ENTREPOT\Downloads\adwcleaner_8.4.0.exe 2022-11-13 22:07 - 2022-11-13 22:07 - 000002757 _____ C:\Users\ADIS ENTREPOT\Desktop\Analyse malwarebytes.txt 2022-11-13 21:19 - 2022-11-13 21:19 - 000000000 ____D C:\Users\ADIS ENTREPOT\AppData\Local\mbam 2022-11-13 21:18 - 2022-11-13 21:18 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-11-13 21:18 - 2022-11-13 21:18 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-11-13 21:18 - 2022-11-13 21:18 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-11-13 21:18 - 2022-11-13 21:18 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-11-13 21:16 - 2022-11-13 21:13 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-11-13 21:16 - 2022-11-13 21:13 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-11-13 21:12 - 2022-11-13 21:12 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-11-13 21:11 - 2022-11-13 21:12 - 000000000 ____D C:\Program Files\Malwarebytes 2022-11-13 21:10 - 2022-11-13 21:10 - 002632256 _____ (Malwarebytes) C:\Users\ADIS ENTREPOT\Downloads\MBSetup-9220FA07-37335.37335.exe 2022-11-13 20:52 - 2022-11-13 20:52 - 000000000 ____D C:\Users\ADIS ENTREPOT\AppData\Local\D3DSCache 2022-11-13 18:18 - 2022-11-14 18:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-11-13 17:42 - 2022-11-13 20:35 - 000000000 ____D C:\Program Files\ruxim 2022-11-13 17:03 - 2022-11-13 17:03 - 000000017 _____ C:\Users\ADIS ENTREPOT\AppData\Local\resmon.resmoncfg 2022-11-06 21:53 - 2022-11-06 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-15 11:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-15 11:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-15 11:20 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-15 11:13 - 2017-10-03 08:25 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-15 10:58 - 2019-12-11 08:56 - 000000000 ____D C:\ProgramData\Packages 2022-11-15 09:50 - 2017-10-02 16:08 - 000000000 ____D C:\Users\ADIS ENTREPOT\AppData\Local\Packages 2022-11-15 09:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2022-11-14 21:07 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-14 21:04 - 2019-12-07 15:49 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat 2022-11-14 21:04 - 2019-12-07 15:49 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat 2022-11-14 20:55 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-11-14 20:54 - 2017-10-02 20:37 - 000065536 _____ C:\WINDOWS\psp_storage.bin 2022-11-14 19:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-14 18:14 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-11-14 17:56 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-14 17:54 - 2019-12-11 16:20 - 000000000 ___RD C:\Users\ADIS ENTREPOT\3D Objects 2022-11-14 17:54 - 2016-11-15 10:48 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-11-14 17:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2022-11-14 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-14 17:49 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-11-14 17:47 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2022-11-14 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2022-11-14 16:58 - 2017-10-02 21:00 - 000023208 _____ C:\WINDOWS\system32\emptyregdb.dat 2022-11-14 16:12 - 2017-10-02 20:38 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2022-11-14 16:12 - 2017-10-02 20:38 - 000000000 ____D C:\Program Files\Elantech 2022-11-14 16:11 - 2017-10-02 20:36 - 001805173 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2022-11-14 16:11 - 2017-10-02 20:36 - 000000000 ____D C:\WINDOWS\system32\DAX2 2022-11-14 16:10 - 2017-10-02 20:36 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2022-11-14 16:09 - 2020-06-23 07:55 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-14 16:09 - 2020-06-23 07:55 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-11-14 16:09 - 2017-10-02 20:36 - 000000000 ____D C:\WINDOWS\Firmware 2022-11-14 16:01 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2022-11-14 16:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2022-11-14 16:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2022-11-14 16:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-11-14 16:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2022-11-14 16:01 - 2017-10-03 07:39 - 000000000 ____D C:\WINDOWS\system32\ÿÿo 2022-11-14 16:01 - 2017-10-03 07:39 - 000000000 ____D C:\WINDOWS\system32\ 2022-11-14 16:01 - 2017-02-10 21:56 - 000000000 ____D C:\WINDOWS\system32\m32 2022-11-14 16:01 - 2017-02-10 21:43 - 000000000 ____D C:\WINDOWS\system32\ihvmanager 2022-11-14 16:00 - 2020-01-15 10:36 - 000000000 ____D C:\WINDOWS\system32\4_5404c1 2022-11-14 16:00 - 2019-12-19 08:46 - 000000000 ____D C:\WINDOWS\system32\ ‰ 2022-11-14 16:00 - 2019-12-12 10:24 - 000000000 ____D C:\Program Files\UNP 2022-11-14 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-14 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-11-14 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-11-14 16:00 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2022-11-14 16:00 - 2017-11-28 11:08 - 000000000 ____D C:\WINDOWS\system32\cb2b43ccacd878..bin 2022-11-14 16:00 - 2017-10-18 15:57 - 000000000 ____D C:\WINDOWS\system32\b1d51716dc245f..bin 2022-11-14 16:00 - 2017-10-18 15:57 - 000000000 ____D C:\WINDOWS\system32\0 2022-11-14 16:00 - 2017-10-03 07:39 - 000000000 ____D C:\WINDOWS\system32\ccb1d51716dc245f..bin 2022-11-14 16:00 - 2017-10-03 07:39 - 000000000 ____D C:\WINDOWS\system32\21497b71d0c9e576..bin 2022-11-14 16:00 - 2017-10-02 20:37 - 000000000 ____D C:\Program Files\AMD 2022-11-14 16:00 - 2017-10-02 16:07 - 000000000 ____D C:\WINDOWS\oem 2022-11-14 16:00 - 2017-02-10 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings 2022-11-14 16:00 - 2016-11-15 10:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2022-11-14 15:56 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2022-11-14 15:46 - 2017-10-03 09:45 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-14 15:28 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2022-11-14 15:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-11-14 15:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2022-11-14 15:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2022-11-14 15:02 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\OCR 2022-11-14 15:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources 2022-11-14 15:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help 2022-11-14 15:01 - 2017-10-02 20:37 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2022-11-14 15:01 - 2017-10-02 20:36 - 000000000 ____D C:\Program Files\Realtek 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2022-11-14 13:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2022-11-14 13:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-14 13:50 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-11-14 13:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-11-14 13:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2022-11-14 13:44 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2022-11-14 13:44 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-11-14 13:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2022-11-14 13:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2022-11-14 13:36 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-11-14 13:35 - 2019-12-07 15:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2022-11-14 13:35 - 2019-12-07 15:53 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2022-11-14 13:35 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-11-14 11:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2022-11-14 11:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2022-11-14 09:47 - 2016-11-15 10:51 - 000000000 ____D C:\Program Files\Acer 2022-11-14 09:37 - 2017-10-10 06:44 - 000000000 ____D C:\Users\ADIS ENTREPOT\AppData\Local\CrashDumps 2022-11-14 09:35 - 2017-10-18 10:13 - 000000000 ____D C:\temp 2022-11-13 22:54 - 2017-02-10 22:04 - 000000000 ____D C:\ProgramData\Acer 2022-11-13 22:54 - 2017-02-10 22:04 - 000000000 ____D C:\Program Files (x86)\Acer 2022-11-13 22:06 - 2017-10-10 06:40 - 000000000 ____D C:\Program Files (x86)\KMSPico 10.2.2 Final 2022-11-13 18:45 - 2019-12-11 09:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-13 18:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\TextInput 2022-11-13 18:17 - 2017-10-03 09:45 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-13 17:42 - 2018-11-26 09:49 - 000000000 ____D C:\Program Files\rempl 2022-11-06 21:50 - 2017-10-11 06:21 - 000803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe ==================== Fichiers à la racine de certains dossiers ======== 2022-11-13 17:03 - 2022-11-13 17:03 - 000000017 _____ () C:\Users\ADIS ENTREPOT\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================