Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Exécuté par METBAM (administrateur) sur LAPTOP-K1DJMNSR (Acer Swift SF314-54) (13-02-2020 10:18:08)
Exécuté depuis C:\Users\METBAM\Downloads
Profils chargés: METBAM (Profils disponibles: METBAM)
Platform: Windows 10 Home Version 1903 18362.592 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5867322e4f33d1d8\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5867322e4f33d1d8\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20136.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Opera Software AS -> Opera Software) C:\Users\METBAM\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Opera Software AS -> Opera Software) C:\Users\METBAM\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388928 2018-05-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505736 2018-05-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-3276498460-3524850337-2917148006-1001\...\Run: [Opera Browser Assistant] => C:\Users\METBAM\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2785304 2020-02-05] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-29] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {139C7B84-86AC-4043-AF78-38811407456A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {1C4C5A3F-603D-481A-9F98-4DE39C84BE55} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26B193BB-BAA6-4F47-B622-E5F9BD6FD252} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-03-13] (Apple Inc. -> Apple Inc.)
Task: {83A8232D-62B5-4CCD-9E0B-6583B3CE6CBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-19] (Google Inc -> Google Inc.)
Task: {C063E529-7181-4D61-9B1C-EFAB78974D3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C82A5819-6F6B-4649-AA28-A3011E661944} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-19] (Google Inc -> Google Inc.)
Task: {CF25972D-FE5C-42DD-8E1A-F975D4D2871F} - System32\Tasks\Opera scheduled assistant Autoupdate 1548849947 => C:\Users\METBAM\AppData\Local\Programs\Opera\launcher.exe [1532952 2020-02-05] (Opera Software AS -> Opera Software)
Task: {EDD6305F-BEE9-4D0A-BC4B-DC42DC1BCFA8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FAF3A838-DB59-44B2-9313-FDF0943078D7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FFACCF68-B343-4A26-98BC-587C2FD3D34D} - System32\Tasks\Opera scheduled Autoupdate 1548849518 => C:\Users\METBAM\AppData\Local\Programs\Opera\launcher.exe [1532952 2020-02-05] (Opera Software AS -> Opera Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{14003716-b846-452d-a7a3-3b1da501c973}: [DhcpNameServer] 172.19.128.24
Tcpip\..\Interfaces\{b34fc2c6-9393-4f09-86ce-b51043e01d78}: [DhcpNameServer] 212.27.40.241 212.27.40.240

Internet Explorer:
==================
HKU\S-1-5-21-3276498460-3524850337-2917148006-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-3276498460-3524850337-2917148006-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3276498460-3524850337-2917148006-1001 -> DefaultScope {257137AD-D31F-47C9-966A-F0FB0E6F9B32} URL =
SearchScopes: HKU\S-1-5-21-3276498460-3524850337-2917148006-1001 -> {257137AD-D31F-47C9-966A-F0FB0E6F9B32} URL =

Edge:
======
DownloadDir: C:\Users\METBAM\Downloads

FireFox:
========
FF DefaultProfile: v19icyk9.default
FF ProfilePath: C:\Users\METBAM\AppData\Roaming\Mozilla\Firefox\Profiles\v19icyk9.default [2020-02-13]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default [2019-10-13]
CHR Notifications: Default -> hxxps://drive.google.com
CHR DefaultSearchURL: Default -> hxxp://securedserch.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> sse
CHR DefaultSuggestURL: Default -> hxxp://securedsearch.xyz/?s={searchTerms}
CHR Extension: (Slides) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-19]
CHR Extension: (Docs) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-19]
CHR Extension: (Google Drive) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-19]
CHR Extension: (YouTube) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-19]
CHR Extension: (Sheets) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-01-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Secured Search Extension) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock [2019-10-13]
CHR Extension: (Gmail) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-17]
CHR Extension: (Chrome Media Router) - C:\Users\METBAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-13]
CHR HKLM\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock]
CHR HKU\S-1-5-21-3276498460-3524850337-2917148006-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock]
CHR HKLM-x32\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1705040 2017-11-08] (Intel Corporation -> Intel Corporation)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2413024 2018-04-25] (Intel Corporation -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [529696 2019-04-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S2 IntelAudioService; C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe [216096 2018-02-22] (Intel(R) Smart Sound Technology -> Intel)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [29912 2019-05-17] (Acer Incorporated -> Acer Incorporated)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [74144 2017-11-08] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [69536 2017-11-08] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [382880 2017-11-08] (Intel Corporation -> Intel Corporation)
R3 ETDI2C; C:\WINDOWS\System32\drivers\ETDI2C.sys [218184 2017-11-16] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98968 2017-10-15] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [906216 2018-04-25] (Intel Corporation -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [69096 2018-04-25] (Intel Corporation -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [262432 2019-04-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 IntcDMic; C:\WINDOWS\system32\DRIVERS\IntcDMic.sys [609352 2018-04-02] (Intel(R) Smart Sound Technology -> Intel(R) Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8709656 2018-06-30] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-13 10:18 - 2020-02-13 10:18 - 000015253 _____ C:\Users\METBAM\Downloads\FRST.txt
2020-02-13 10:17 - 2020-02-13 10:18 - 000000000 ____D C:\FRST
2020-02-13 10:17 - 2020-02-13 10:17 - 000000000 ____D C:\Users\METBAM\Downloads\FRST-OlderVersion
2020-02-13 08:39 - 2020-02-13 10:17 - 002279424 _____ (Farbar) C:\Users\METBAM\Downloads\FRST64-2.1.exe
2020-02-11 10:26 - 2020-02-11 10:26 - 000030074 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20191114(1).pdf
2020-02-11 10:25 - 2020-02-11 10:26 - 000030012 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20191211(1).pdf
2020-02-11 10:17 - 2020-02-11 10:17 - 000030595 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20200114.pdf
2020-02-11 10:17 - 2020-02-11 10:17 - 000030074 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20191114.pdf
2020-02-11 10:17 - 2020-02-11 10:17 - 000030012 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20191211.pdf
2020-02-11 10:17 - 2020-02-11 10:17 - 000025535 _____ C:\Users\METBAM\Downloads\RCE_2094_20200130.pdf
2020-02-11 10:16 - 2020-02-11 10:16 - 000030369 _____ C:\Users\METBAM\Downloads\RCE_00051826890_20200208.pdf
2020-02-08 10:20 - 2020-02-08 10:20 - 000216660 _____ C:\Users\METBAM\Documents\Decompte-Paiement AGIRC-ARRCO Février 2020.pdf
2020-01-30 16:25 - 2020-01-30 19:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-01-29 14:25 - 2020-01-29 20:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-17 16:36 - 2020-01-17 16:36 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys
2020-01-17 16:36 - 2020-01-17 16:36 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:22 - 2020-01-17 16:22 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:22 - 2020-01-17 16:22 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-13 10:19 - 2019-01-30 15:03 - 000000000 ____D C:\Users\METBAM\Downloads\opera autoupdate
2020-02-13 10:17 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-02-13 10:14 - 2019-01-19 17:26 - 000000000 ____D C:\Users\METBAM\AppData\LocalLow\Mozilla
2020-02-13 08:21 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-13 08:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-13 08:20 - 2019-11-09 09:27 - 000004180 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4B629AED-39F7-4936-84F5-015923B69D3D}
2020-02-11 20:41 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-11 20:25 - 2019-11-09 09:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-11 10:05 - 2019-11-09 09:27 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3276498460-3524850337-2917148006-1001
2020-02-11 10:05 - 2019-11-09 09:19 - 000002412 _____ C:\Users\METBAM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-11 10:05 - 2019-01-09 15:07 - 000000000 ___RD C:\Users\METBAM\OneDrive
2020-02-10 13:19 - 2019-12-08 19:37 - 000000000 ____D C:\Users\METBAM\AppData\Local\D3DSCache
2020-02-10 13:03 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-07 10:02 - 2019-11-09 09:27 - 000004244 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1548849518
2020-02-07 10:02 - 2019-01-30 12:58 - 000001410 _____ C:\Users\METBAM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2020-02-06 07:46 - 2019-11-09 09:27 - 000004474 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1548849947
2020-02-06 07:43 - 2019-11-09 09:27 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-06 07:43 - 2019-11-09 09:27 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-04 11:49 - 2018-09-04 10:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-31 13:37 - 2019-09-20 09:29 - 000000608 _____ C:\Users\METBAM\Desktop\LOKEA.txt
2020-01-30 19:32 - 2019-02-11 16:33 - 000001286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-01-29 20:38 - 2019-01-19 17:25 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-29 20:38 - 2019-01-19 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-29 14:02 - 2019-12-26 13:14 - 000000000 ____D C:\Users\METBAM\AppData\Local\ElevatedDiagnostics
2020-01-29 13:52 - 2019-01-19 16:38 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-29 13:52 - 2019-01-19 16:38 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-18 09:03 - 2019-11-09 09:25 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-18 09:03 - 2019-03-19 13:00 - 000794662 _____ C:\WINDOWS\system32\perfh00C.dat
2020-01-18 09:03 - 2019-03-19 13:00 - 000150678 _____ C:\WINDOWS\system32\perfc00C.dat
2020-01-17 19:50 - 2019-11-09 09:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-17 19:50 - 2019-11-09 09:17 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 17:17 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 17:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 17:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 17:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 17:17 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-17 17:05 - 2019-01-11 09:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:54 - 2019-01-11 09:21 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-15 15:49 - 2019-11-25 08:32 - 000000000 ____D C:\Users\METBAM\Documents\FACTURES

==================== Fichiers à la racine de certains dossiers ========

2019-01-31 13:37 - 2019-01-31 13:37 - 000000035 _____ () C:\Users\METBAM\AppData\Roaming\WB.CFG

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================