Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Exécuté par ADMIN (administrateur) sur MERYEM (LENOVO 80HE) (09-01-2022 16:31:14)
Exécuté depuis C:\Users\ADMIN\Downloads
Profils chargés: ADMIN
Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1415 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\54.0.2.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe <7>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avp.exe.69b88547-0a90-46d3-8224-efcf347795ba_2553_4126.removeOnNextReboot.eaea80a2-26c6-4b44-b50e-5f0c3fab0e20.locked
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avpui.exe.69b88547-0a90-46d3-8224-efcf347795ba_2553_4126.removeOnNextReboot.b5cff5de-b121-4950-816d-6f571d0ac6d4.locked
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ADMIN\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.2101.28.0_x64__8wekyb3d8bbwe\Time.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14049536 2015-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_BYPASS_AUDIO_EFFECT_WHEN_POWERSAVING] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49952424 2021-10-19] (Google LLC -> )
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-02-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [D1722FFC2990EF46673281A0385F5910809AD75D._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ADMIN\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-14] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [MicrosoftEdgeAutoLaunch_8E32580D4032BD4E45D3D85AB6E09F85] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3830471475-794773530-4036802543-1001\...\MountPoints2: {bcbc3809-3d43-11ec-846c-acd1b8e5be92} - "D:\OnePlus_setup.exe" /s
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\54.0.2.0\GoogleDriveFS.exe [55330648 2021-12-14] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC)
Startup: C:\Users\ADMIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2017-06-18]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06AC3CBE-8D7B-45AD-8C02-3925C1CFA9F0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {09CAEB39-48D8-48CF-9DC0-A01D30C6E7CD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0B951057-93C5-41AC-9443-FD3114ED8710} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {0BE668E6-5F75-4D90-9543-E4C31C3F9B49} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {10E974DA-C7FB-45AD-BC92-110489A750B3} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {111B0D2F-71D0-4FC9-AFA9-395244D476C9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {125B891E-44F5-44E9-ABF2-7BF0399C6CE6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1A5881EC-1FE7-4C3D-BE8D-204A0FA1DBCB} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier)
Task: {1DD5AD81-3333-4ED4-A9CE-202D154392D5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {1DEC8A61-018C-4140-BD8B-6F4DC62C3229} - \WPD\SqmUpload_S-1-5-21-3830471475-794773530-4036802543-1001 -> Pas de fichier <==== ATTENTION
Task: {274559CB-8FC2-4418-90F4-0FEE68FB1A48} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B67AE24-6E13-4634-B318-1FD62DE6C4DF} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2BB944AB-2104-4060-8F89-2C1DBCD35361} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {39B5339A-23EF-4901-A55D-00A81CDB8FFE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {3A58185B-E58E-4C3C-A3E3-93CFD4DF66B2} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {414D73BE-5EB8-4D26-9AC9-8848F5C3F397} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {4D4C346C-CB34-4986-A4B7-49AA02C7F6B4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {4DE546B3-41C3-4C98-8180-48CD74AE48FF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {55445A5F-86B2-4A19-9155-5AE59484879A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {5FB2F8D9-AB53-4C5B-99D0-211C1A0F9AD4} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION
Task: {6BFA7FFB-84ED-4DCE-93EC-7DFC84C937A7} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F474E29-7B1D-483F-9F70-AD0E2DFD87E1} - \Microsoft\Windows\Setup\EOONotify -> Pas de fichier <==== ATTENTION
Task: {72A296BA-8664-4448-BAB5-5E3F52C8AC54} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {74F749A8-42F8-4226-AD1C-4B3D11E5EEEB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {767D9522-5758-48FC-A840-67DFE1E5A007} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {8297325C-E5B1-470A-B268-6F6B93704F1F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [437760 2021-12-18] (Microsoft Windows -> Microsoft Corporation)
Task: {835221E2-C766-40A7-A9F9-15D45899596E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B7932E3-47F4-424F-A7A0-DF81F8AD283B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {8BAEA078-E571-4770-AED3-0DE3C4BFB707} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {929D1DB1-992F-42EF-80E2-496944659CAB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-20] (Google Inc -> Google Inc.)
Task: {937F6056-C67D-472C-844D-E6EBED9EE87B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1DBDC40-7895-4EC6-B931-7C7C10804D3D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {B2D055CB-47DE-44AA-87BC-17F0E59E17FB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task (Pas de fichier)
Task: {B44B9215-B3AB-4D6D-8652-B66A1DCDA6B2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {BEE6025D-84C4-4BCA-A611-D78F5B391A3C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF616263-6841-49A7-8160-5B52D8F14314} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-20] (Google Inc -> Google Inc.)
Task: {D0653F3D-AC61-4C52-9DC7-40236F2D8CB6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [437760 2021-12-18] (Microsoft Windows -> Microsoft Corporation)
Task: {D4EBC0EB-C491-4F33-9C05-FCA7D416C95E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5311132-088F-4AF2-9636-7124CF40CDEA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {E669A090-7C85-454A-88CD-A3BF9C936416} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {EC01137A-299D-4EA9-B301-B90F6BA45F51} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {EE98FD24-BDC0-4A39-B465-3714F2BCB65C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\2EB6274B-497A-46B2-8AB1-D45800FFAE6C\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [458752 2021-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {F1C80CF5-2A78-4166-8DFA-1F8AF064EF79} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3DD41B4-480E-4996-A4A4-7FB2E5E1183C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1171352 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDC729B4-464D-4553-B093-27CB534DF95B} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1b9b0142-4446-4345-96b2-00ef186a3f8c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{6acc4006-7325-4bfa-8143-628fc9e6c805}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{e93bc675-b6fb-4b2b-9c35-1103b2d312b5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{fcddc6d9-a09a-4702-90a2-161e60f9ed1c}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\ADMIN\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-09]
Edge Extension: (Kaspersky Protection) - C:\Users\ADMIN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-09]
Edge HKU\S-1-5-21-3830471475-794773530-4036802543-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default [2022-01-09]
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://fr-mg42.mail.yahoo.com; hxxps://teams.microsoft.com; hxxps://www.gospeaky.com; hxxps://www.restaurants.mcdonalds.fr
CHR Extension: (Slides) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Kaspersky Protection) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-09]
CHR Extension: (Docs) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-28]
CHR Extension: (YouTube) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-20]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-14]
CHR Extension: (Sheets) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-14]
CHR Extension: (TLDR: Summarize Anything) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglnmbpmjmmnlcljhhfnijkjcebnomjk [2021-03-10]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\ADMIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-28]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKU\S-1-5-21-3830471475-794773530-4036802543-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-01-09] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375440 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-01-09] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2022-01-09] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [276064 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [314040 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [113976 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [225648 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [744928 2015-10-26] (Sunplus Innovation Technology Inc. -> Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2010-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Texas Instruments)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-09 16:31 - 2022-01-09 16:34 - 000030563 _____ C:\Users\ADMIN\Downloads\FRST.txt
2022-01-09 16:14 - 2022-01-09 16:32 - 000000000 ____D C:\FRST
2022-01-09 16:13 - 2022-01-09 16:13 - 002311168 _____ (Farbar) C:\Users\ADMIN\Downloads\FRST64.exe
2022-01-09 13:47 - 2022-01-09 13:47 - 000314040 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-01-09 13:43 - 2022-01-09 13:43 - 000001227 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2022-01-09 13:42 - 2022-01-09 13:42 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2022-01-09 13:42 - 2022-01-09 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2022-01-09 13:39 - 2022-01-09 13:39 - 000276064 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-01-09 13:39 - 2022-01-09 13:39 - 000225648 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-01-09 13:39 - 2022-01-09 13:39 - 000113976 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-01-09 13:39 - 2022-01-09 13:39 - 000002176 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk
2022-01-09 13:39 - 2022-01-09 13:39 - 000001161 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk
2022-01-09 13:39 - 2022-01-09 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2022-01-09 13:39 - 2022-01-09 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud
2022-01-09 13:39 - 2022-01-09 13:39 - 000000000 ____D C:\Program Files\Common Files\AV
2022-01-09 13:38 - 2022-01-09 13:42 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-01-09 13:38 - 2022-01-09 13:42 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2022-01-09 13:38 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2022-01-09 13:37 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2022-01-09 13:37 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2022-01-09 13:30 - 2022-01-09 13:30 - 002769744 _____ (Kaspersky) C:\Users\ADMIN\Downloads\ks4.021.3.10.391fr_24936.exe
2022-01-08 19:45 - 2022-01-08 19:45 - 000000000 ____D C:\Users\ADMIN\AppData\Local\D3DSCache
2022-01-08 18:44 - 2022-01-08 18:44 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2022-01-08 18:38 - 2022-01-08 20:20 - 000000000 ____D C:\ProgramData\Avast Software
2022-01-08 18:37 - 2022-01-08 18:37 - 000234280 _____ (AVAST Software) C:\Users\ADMIN\Downloads\avast_free_antivirus_setup_online.exe
2022-01-08 17:46 - 2022-01-08 17:46 - 000000000 ____D C:\Users\ADMIN\AppData\Roaming\PC Privacy Shield 2018
2022-01-08 17:45 - 2022-01-08 17:45 - 007964944 _____ (ShieldApps) C:\Users\ADMIN\Downloads\pc-privacy-shield_3.6.exe
2022-01-08 17:42 - 2022-01-08 19:46 - 000000000 ____D C:\Users\ADMIN\AppData\Roaming\AnyDesk
2022-01-08 17:42 - 2022-01-08 17:42 - 000394240 _____ (Google Inc.) C:\Users\ADMIN\Downloads\gcapi.dll
2022-01-08 17:41 - 2022-01-08 17:42 - 003803376 _____ (AnyDesk Software GmbH) C:\Users\ADMIN\Downloads\AnyDesk.exe
2021-12-22 20:27 - 2021-12-14 07:44 - 000381456 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3688.sys
2021-12-18 21:31 - 2021-12-18 21:31 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-18 19:24 - 2021-12-18 19:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-18 19:24 - 2021-12-18 19:24 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-18 19:23 - 2021-12-18 19:23 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-18 19:23 - 2021-12-18 19:23 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-18 12:19 - 2021-12-18 12:19 - 000000000 ___HD C:\$WinREAgent
2021-12-16 09:06 - 2021-12-16 09:06 - 000585955 _____ C:\Users\ADMIN\Downloads\IPE Lecture 6 RAMIREZ 2021-22.pptx
2021-12-16 09:00 - 2021-12-16 09:00 - 000899148 _____ C:\Users\ADMIN\Downloads\Lecture 7 Ramirez-2021-22.pptx
2021-12-16 08:26 - 2021-12-16 08:26 - 000070745 _____ C:\Users\ADMIN\Downloads\IPE Lecture 9 Ramirez-21-22.pptx
2021-12-15 15:19 - 2021-12-15 15:19 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-12-15 15:05 - 2021-12-15 15:05 - 000054314 _____ C:\Users\ADMIN\Downloads\Texte 5 - Hobson Chapter 1.pdf
2021-12-15 10:50 - 2021-12-16 13:17 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3830471475-794773530-4036802543-1001
2021-12-14 13:38 - 2021-12-14 13:38 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-12-14 13:38 - 2021-12-14 13:38 - 000000000 ____D C:\Program Files\PCHealthCheck

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-09 16:38 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-09 16:18 - 2016-03-20 13:42 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-09 16:13 - 2021-02-19 21:09 - 000096008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys
2022-01-09 15:44 - 2020-09-10 23:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-09 14:25 - 2016-10-16 18:20 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-01-09 14:25 - 2016-03-19 22:45 - 000000000 __SHD C:\Users\ADMIN\IntelGraphicsProfiles
2022-01-09 14:13 - 2020-09-10 23:35 - 001772790 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-09 14:13 - 2019-12-07 15:50 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-09 14:13 - 2019-12-07 15:50 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-09 14:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-09 14:09 - 2020-09-10 23:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-09 14:09 - 2020-09-10 23:28 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-09 14:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-09 14:08 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-01-09 13:39 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-09 13:38 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-09 13:28 - 2020-09-10 23:46 - 000004158 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6198C96B-4564-4BD0-AA78-A6406529E2EC}
2022-01-08 20:24 - 2016-03-19 23:00 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-08 18:36 - 2020-03-01 11:25 - 000000000 ____D C:\Users\ADMIN\Desktop\Ecrits
2022-01-08 18:36 - 2020-03-01 11:22 - 000000000 ____D C:\Users\ADMIN\Desktop\Archives documents
2022-01-08 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-08 17:34 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-08 15:15 - 2020-08-26 16:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-08 15:15 - 2020-08-26 16:07 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-25 09:33 - 2020-09-10 23:28 - 000000000 ____D C:\Users\ADMIN
2021-12-22 20:27 - 2021-09-13 17:48 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-12-22 20:27 - 2021-09-13 17:48 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk
2021-12-22 20:27 - 2021-09-13 17:48 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2021-12-22 20:27 - 2021-09-13 17:48 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk
2021-12-20 12:50 - 2016-04-27 06:53 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-12-19 17:34 - 2016-03-25 21:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-18 21:32 - 2020-09-10 23:28 - 000449296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-18 21:31 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-12-18 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-18 19:37 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-16 13:17 - 2020-09-10 23:46 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3830471475-794773530-4036802543-1001
2021-12-16 13:17 - 2020-09-10 23:28 - 000002417 _____ C:\Users\ADMIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-16 11:26 - 2018-02-01 21:29 - 000000000 ____D C:\Users\ADMIN\AppData\Local\Packages
2021-12-16 07:51 - 2016-03-26 01:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-16 07:47 - 2016-03-26 01:28 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-16 07:42 - 2018-03-03 15:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-15 21:25 - 2019-12-07 15:53 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-12-15 21:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-12-15 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-12-15 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-12-15 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-12-15 21:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-12-15 21:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-12-15 21:23 - 2021-09-06 14:32 - 000000000 ____D C:\Users\ADMIN\Desktop\Cours L3
2021-12-15 11:24 - 2018-07-01 15:09 - 000000000 ____D C:\ProgramData\Packages
2021-12-14 21:36 - 2021-01-11 20:32 - 000002364 _____ C:\Users\ADMIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-12-14 21:36 - 2021-01-11 20:32 - 000002356 _____ C:\Users\ADMIN\Desktop\Microsoft Teams.lnk
2021-12-14 13:24 - 2020-09-10 23:46 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-14 13:24 - 2020-09-10 23:46 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Fichiers à la racine de certains dossiers ========

2017-04-22 18:55 - 2017-04-22 18:55 - 000133470 _____ () C:\Users\ADMIN\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-10-01 01:17 - 2019-10-01 01:18 - 000004608 _____ () C:\Users\ADMIN\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-06-05 15:59 - 2017-06-05 16:01 - 000000000 _____ () C:\Users\ADMIN\AppData\Local\{161AEB17-EAB5-432F-BD58-10A6D452B020}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================