Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2022
Exécuté par jokes (administrateur) sur ANTHEMIS (HP HP Spectre x360 Convertible 13-aw0xxx) (22-11-2022 14:04:39)
Exécuté depuis C:\Users\jokes\Downloads
Profils chargés: jokes
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.819 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe ->) (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe <12>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIServiceN.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxEMN.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\dptf_helper.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\BridgeCommunication.exe
(HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpsystemeventutility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f9f92cc42e038a12\igfxCUIServiceN.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_553b9a82ff9cf770\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_132adcb1a937f15b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Pango LLC -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\11.3.2\bin\cmw_srv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\IAS\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (TBT_DCH_DRV_PROD -> ) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (TBT_DCH_DRV_PROD -> Intel Corporation) C:\Windows\ThunderboltService.exe
(sihost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpthermalcontrol_1.11.4.0_x64__v10z8vjag6ke6\Win32Process\HPCC.Bg.BackgroundApp.exe
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpjumpstarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\ad2f1837.hpthermalcontrol_1.11.4.0_x64__v10z8vjag6ke6\HpSystemManagement.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.211.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\XboxGameBarSpotify.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [980496 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EzTiltPenSrvc] => C:\Program Files\ELAN\EzTiltPen\EzTiltPenAgent.exe [306544 2019-07-04] (ELAN Microelectronics Corporation -> ELAN)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [465288 2019-06-25] (Express Vpn LLC -> ExpressVPN)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2973620992-2059017036-84029029-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [536152 2022-08-17] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2973620992-2059017036-84029029-1001\...\Run: [MicrosoftEdgeAutoLaunch_16444A978B16C601396494018F118F5A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892168 2022-11-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {2C876965-268F-4C80-B422-C664E66EAE14} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {394F1DDA-2307-4D4E-A001-943384482BB2} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {4721CE19-8D66-493F-A89C-114BFC9F2986} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2755511914-3981352635-2342980794-500 => C:\Users\jokes\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {655C1B3A-302D-4E14-9C40-472B13F7FB5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70E20414-02EE-4C3A-B3D2-42188AD1F294} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {722A8E0E-3A10-4997-9C6E-EFC8A5606653} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {74B09F9D-7F09-40FC-9CB2-610D419F59D2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {7EB012DA-C102-4095-81F5-F07A73485BAD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {B6766F9A-D53C-4481-994A-D7FB3C0D5199} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [94208 2022-11-13] (Microsoft Windows -> )
Task: {B7505589-063E-4804-A071-129FCBBD4F24} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {C023F747-4B09-475F-8D0F-64A309AE3EBD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {FC378D9C-0F8E-4035-BF08-435251C78B7C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-10-26] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3096abd3-c624-44e2-8c9c-588de7d204ec}: [DhcpNameServer] 30.20.1.21
Tcpip\..\Interfaces\{850b0745-d774-4407-b9f9-128d2894a328}: [DhcpNameServer] 192.168.1.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Profile: C:\Users\jokes\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-09]

FireFox:
========
FF DefaultProfile: 9cls7ijy.default
FF ProfilePath: C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\9cls7ijy.default [2022-10-03]
FF ProfilePath: C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release [2022-11-22]
FF Session Restore: Mozilla\Firefox\Profiles\l1r7rhwx.default-release -> est activé.
FF Extension: (Facebook Container) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\@contain-facebook.xpi [2022-11-03]
FF Extension: (English United States Dictionary) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\@unitedstatesenglishdictionary.xpi [2022-10-03]
FF Extension: (OneTab) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\extension@one-tab.com.xpi [2022-10-03]
FF Extension: (English (US) Language Pack) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2022-11-19]
FF Extension: (Firefox Relay) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\private-relay@firefox.com.xpi [2022-11-15]
FF Extension: (Dark space - The best dynamic theme) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\{22b0eca1-8c02-4c0d-a5d7-6604ddd9836e}.xpi [2022-10-03]
FF Extension: (Lilo Moteur et Solidaire) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\{3004c9c0-ac9c-4ae2-9ac8-c59948bdd021}.xpi [2022-11-15]
FF Extension: (Startpage Privacy Protection) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\{5b1a796b-231a-4ad1-84ff-918db0818207}.xpi [2022-11-12]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jokes\AppData\Roaming\Mozilla\Firefox\Profiles\l1r7rhwx.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-10-03]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [438664 2019-06-25] (Express Vpn LLC -> ExpressVPN)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe [786888 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe [785896 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe [782296 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe [786392 2022-09-28] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.)
R2 hshld_11.3.2; C:\Program Files (x86)\Hotspot Shield\11.3.2\bin\cmw_srv.exe [249104 2022-10-19] (Pango LLC -> Pango Inc.)
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-11-13] (Microsoft Windows -> Microsoft Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [860640 2022-11-11] (McAfee, LLC -> McAfee, LLC)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [252264 2021-01-26] (TBT_DCH_DRV_PROD -> )
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-11-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137544 2022-11-13] (Microsoft Windows -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-11-13] (Microsoft Windows -> Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28440 2019-06-25] (ExprsVPN LLC -> ExpressVPN)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-15] (HP Inc. -> HP Inc.)
R3 hsstap; C:\WINDOWS\System32\drivers\hsstap.sys [39424 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Pango)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 MpKsldc46dc7a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FDDF517-2E9E-44F4-A523-30DCE61BF36F}\MpKslDrv.sys [214280 2022-11-22] (Microsoft Windows -> Microsoft Corporation)
R1 pango_netfilter2; C:\WINDOWS\System32\drivers\pango_netfilter2.sys [89088 2022-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Pango Inc)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [62352 2019-03-20] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-06-29] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [44304 2019-06-25] (ExprsVPN LLC -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-11-13] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; pas de ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-11-22 14:04 - 2022-11-22 14:05 - 000022367 _____ C:\Users\jokes\Downloads\FRST.txt
2022-11-22 14:04 - 2022-11-22 14:04 - 000000000 ____D C:\FRST
2022-11-22 13:58 - 2022-11-22 13:58 - 002375680 _____ (Farbar) C:\Users\jokes\Downloads\FRST64.exe
2022-11-22 12:11 - 2022-11-22 12:11 - 000000000 ___HD C:\$SysReset
2022-11-21 20:21 - 2022-11-21 20:21 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2022-11-21 20:21 - 2022-11-21 20:21 - 000711194 _____ C:\WINDOWS\system32\perfh007.dat
2022-11-21 20:21 - 2022-11-21 20:21 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2022-11-21 20:21 - 2022-11-21 20:21 - 000149248 _____ C:\WINDOWS\system32\perfc007.dat
2022-11-21 20:11 - 2022-11-21 20:11 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-11-19 21:50 - 2022-11-19 21:50 - 000153534 _____ C:\Users\jokes\Downloads\08934_0000028030U.pdf
2022-11-19 19:42 - 2022-11-19 19:42 - 000001575 _____ C:\WINDOWS\system32\config\VSMIDK
2022-11-19 19:41 - 2022-11-19 19:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-11-19 00:37 - 2022-11-19 00:37 - 000039501 _____ C:\Users\jokes\Desktop\Conseils ptitas.odt
2022-11-16 18:51 - 2022-11-16 18:51 - 000680257 _____ C:\Users\jokes\Downloads\s_installer_en_tant_que_cueilleur_version_actualise-1.pdf
2022-11-15 23:58 - 2022-11-19 19:42 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-11-15 17:35 - 2022-11-15 17:36 - 003638784 _____ C:\Users\jokes\Downloads\Le corps humain.pps
2022-11-13 11:43 - 2022-11-21 20:21 - 002596438 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-13 11:39 - 2022-11-13 11:39 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-11-13 11:37 - 2022-11-13 11:37 - 000000020 ___SH C:\Users\jokes\ntuser.ini
2022-11-13 11:36 - 2022-11-21 20:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-13 11:36 - 2022-11-19 19:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-11-13 11:36 - 2022-11-13 11:36 - 000003694 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{679F0852-BB8D-4C41-9F22-EE4E5A3B5D63}
2022-11-13 11:36 - 2022-11-13 11:36 - 000003470 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{2A66F2E1-84B2-48B2-8A97-E422BF1D4B37}
2022-11-13 11:36 - 2022-11-13 11:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2755511914-3981352635-2342980794-500
2022-11-13 11:36 - 2022-11-13 11:36 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2022-11-13 11:36 - 2022-11-13 11:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2022-11-13 11:36 - 2022-11-13 11:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-11-13 11:36 - 2022-11-13 11:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-11-13 11:35 - 2022-11-13 11:36 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2022-11-13 11:35 - 2022-11-13 11:36 - 000011433 _____ C:\WINDOWS\diagerr.xml
2022-11-13 11:33 - 2022-11-13 11:37 - 000000000 ____D C:\Users\jokes
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Voisinage réseau
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Voisinage d'impression
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Modèles
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Mes documents
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Menu Démarrer
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Documents\Mes vidéos
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Documents\Mes images
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\Documents\Ma musique
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-11-13 11:33 - 2022-11-13 11:33 - 000000000 _SHDL C:\Users\jokes\AppData\Local\Historique
2022-11-13 11:33 - 2022-05-07 06:19 - 000001281 _____ C:\Users\jokes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-11-13 11:33 - 2022-05-07 06:19 - 000000407 _____ C:\Users\jokes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-11-13 11:32 - 2022-11-22 11:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-13 11:32 - 2022-11-13 11:37 - 000000000 ____D C:\Windows.old
2022-11-13 11:32 - 2022-11-13 11:32 - 000787720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-13 11:32 - 2022-11-13 11:32 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2022-11-13 11:30 - 2022-11-13 11:32 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-11-13 11:29 - 2022-11-13 11:30 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-11-13 11:29 - 2022-11-13 11:29 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-11-13 11:26 - 2022-11-13 11:26 - 002088728 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-11-13 11:26 - 2022-11-13 11:26 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000180224 _____ C:\WINDOWS\system32\stordiag.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000133120 _____ C:\WINDOWS\SysWOW64\stordiag.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000098304 _____ C:\WINDOWS\system32\dplcsp.dll
2022-11-13 11:26 - 2022-11-13 11:26 - 000094208 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000062832 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-11-13 11:26 - 2022-11-13 11:26 - 000055144 _____ C:\WINDOWS\system32\SFAPE.dll
2022-11-13 11:26 - 2022-11-13 11:26 - 000046888 _____ C:\WINDOWS\system32\wow64base.dll
2022-11-13 11:26 - 2022-11-13 11:26 - 000016519 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-13 11:25 - 2022-11-13 11:25 - 002575632 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-11-13 11:25 - 2022-11-13 11:25 - 000327680 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-11-13 11:25 - 2022-11-13 11:25 - 000296448 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-11-13 11:25 - 2022-11-13 11:25 - 000192512 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-11-13 11:23 - 2022-11-13 11:54 - 000000000 ____D C:\WINDOWS\HoloShell
2022-11-13 11:23 - 2022-11-13 11:23 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2022-11-13 11:23 - 2022-11-13 11:23 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2022-11-13 11:23 - 2022-11-13 11:23 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2022-11-13 11:23 - 2022-11-13 11:23 - 000000000 ____D C:\WINDOWS\TextInput
2022-11-13 11:22 - 2022-11-13 11:22 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2022-11-13 11:22 - 2022-11-13 11:22 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2022-11-13 11:22 - 2022-11-13 11:22 - 000000000 ____D C:\WINDOWS\system32\de-CH
2022-11-13 11:21 - 2022-11-13 11:21 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2022-11-13 11:21 - 2022-11-13 11:21 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-11-13 11:21 - 2022-11-13 11:21 - 000000000 ____D C:\WINDOWS\addins
2022-11-13 11:20 - 2022-11-13 11:20 - 000306166 _____ C:\WINDOWS\system32\perfi007.dat
2022-11-13 11:20 - 2022-11-13 11:20 - 000040520 _____ C:\WINDOWS\system32\perfd007.dat
2022-11-13 11:20 - 2022-11-13 11:20 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2022-11-13 11:20 - 2022-11-13 11:20 - 000000000 ____D C:\WINDOWS\system32\de
2022-11-13 11:16 - 2022-11-13 11:31 - 000000000 ____D C:\WINDOWS\system32\Intel
2022-11-13 11:16 - 2022-11-13 11:16 - 000000000 ____D C:\WINDOWS\system32\cAVS
2022-11-12 00:14 - 2022-11-13 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2022-11-12 00:14 - 2022-11-12 00:14 - 000001249 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk
2022-11-12 00:14 - 2022-11-12 00:14 - 000000000 ____D C:\Program Files (x86)\Hotspot Shield
2022-11-12 00:14 - 2022-10-19 11:16 - 000089088 _____ (Pango Inc) C:\WINDOWS\system32\Drivers\pango_netfilter2.sys
2022-11-11 22:29 - 2022-11-13 11:37 - 000000000 ___DC C:\WINDOWS\Panther
2022-11-09 15:09 - 2022-11-09 15:09 - 000000000 ___HD C:\$WinREAgent
2022-11-09 14:56 - 2022-11-13 11:37 - 000000290 __RSH C:\ProgramData\ntuser.pol
2022-11-09 14:39 - 2022-11-09 14:40 - 000000000 ____D C:\Users\jokes\Downloads\Activer-gpedit-Windows-10-11
2022-11-09 14:39 - 2022-11-09 14:39 - 000000349 _____ C:\Users\jokes\Downloads\Activer-gpedit-Windows-10-11.zip
2022-11-09 14:22 - 2022-11-09 14:22 - 000372224 _____ () C:\Users\jokes\Downloads\PolicyPlusLatest.exe
2022-11-09 00:59 - 2022-11-09 00:59 - 000680257 _____ C:\Users\jokes\Downloads\s_installer_en_tant_que_cueilleur_version_actualise.pdf
2022-11-08 20:21 - 2022-11-09 14:41 - 000000000 ____D C:\Users\jokes\AppData\Roaming\vlc
2022-11-03 22:29 - 2022-11-03 22:29 - 000048783 _____ C:\Users\jokes\Documents\Meca.odt
2022-10-31 15:28 - 2022-10-31 18:09 - 000034353 _____ C:\Users\jokes\Documents\Casses Bordeaux.odt
2022-10-27 22:24 - 2022-11-09 15:42 - 000000000 ____D C:\Users\jokes\AppData\Local\CrashDumps
2022-10-26 21:58 - 2022-10-26 21:58 - 012360488 _____ (McAfee, LLC) C:\Users\jokes\Downloads\MCPR.exe
2022-10-26 21:16 - 2022-10-26 21:16 - 000002227 _____ C:\Users\jokes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2022-10-26 20:59 - 2022-10-26 20:59 - 000000000 ____D C:\Users\jokes\AppData\Roaming\McAfee

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-11-22 14:04 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-11-22 14:04 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2022-11-22 14:02 - 2022-10-03 12:53 - 000000000 ____D C:\Users\jokes\AppData\LocalLow\Mozilla
2022-11-22 13:30 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-22 11:22 - 2022-10-03 12:33 - 000000000 ____D C:\Users\jokes\AppData\Local\D3DSCache
2022-11-22 11:09 - 2022-10-09 17:23 - 000000000 ____D C:\Users\jokes\AppData\Roaming\com.adobe.dunamis
2022-11-21 20:17 - 2022-10-03 12:53 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-11-21 20:14 - 2022-10-03 12:33 - 000000000 __SHD C:\Users\jokes\IntelGraphicsProfiles
2022-11-21 20:14 - 2022-10-03 11:00 - 000012288 ___SH C:\DumpStack.log.tmp
2022-11-21 20:14 - 2022-10-03 11:00 - 000000000 ____D C:\Intel
2022-11-21 20:14 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-21 20:10 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-11-19 21:23 - 2022-10-03 11:00 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-19 21:23 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-19 21:23 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-19 19:49 - 2022-10-12 23:03 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-11-19 19:49 - 2022-10-12 23:03 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-11-19 19:42 - 2022-10-03 12:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-11-19 19:41 - 2022-10-03 12:53 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-11-19 00:35 - 2022-10-05 05:32 - 000040794 _____ C:\Users\jokes\Documents\Liste livres.odt
2022-11-17 23:41 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-17 01:03 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2022-11-15 20:06 - 2022-10-03 12:35 - 000000000 ____D C:\Users\jokes\AppData\Local\PlaceholderTileLogoFolder
2022-11-15 18:03 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat
2022-11-15 17:10 - 2022-10-03 12:22 - 000000000 ____D C:\Users\jokes\AppData\Local\Packages
2022-11-13 12:09 - 2019-10-30 13:03 - 000000000 ____D C:\ProgramData\Packages
2022-11-13 11:54 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-11-13 11:38 - 2022-10-03 12:34 - 000000000 ____D C:\Users\jokes\AppData\Local\Publishers
2022-11-13 11:38 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-13 11:38 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-11-13 11:37 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-13 11:37 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT
2022-11-13 11:36 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender
2022-11-13 11:36 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-11-13 11:34 - 2022-05-07 06:24 - 000000000 __RHD C:\Users\Public\Libraries
2022-11-13 11:33 - 2022-10-18 19:51 - 000000000 ____D C:\Users\jokes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-11-13 11:33 - 2019-10-30 13:11 - 000000000 ____D C:\Users\Default\AppData\Local\Packages
2022-11-13 11:32 - 2022-10-03 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2022-11-13 11:32 - 2022-10-03 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.4
2022-11-13 11:32 - 2022-10-03 11:40 - 000000000 ____D C:\WINDOWS\Firmware
2022-11-13 11:32 - 2022-10-03 11:34 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-11-13 11:32 - 2022-10-03 11:00 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2022-11-13 11:32 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-11-13 11:32 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-11-13 11:32 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\IME
2022-11-13 11:32 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-11-13 11:32 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-11-13 11:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-11-13 11:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-11-13 11:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-11-13 11:31 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-11-13 11:31 - 2022-05-07 06:28 - 000000000 ____D C:\WINDOWS\Setup
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR
2022-11-13 11:31 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2022-11-13 11:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-11-13 11:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-11-13 11:30 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Globalization
2022-11-13 11:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-13 11:28 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-11-13 11:28 - 2022-05-07 06:25 - 000076800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2022-11-13 11:28 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-11-13 11:28 - 2022-05-07 06:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2022-11-13 11:23 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemApps
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-11-13 11:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-11-13 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2022-11-13 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-11-13 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-11-13 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Com
2022-11-13 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-11-12 00:15 - 2022-10-10 00:12 - 000000000 ____D C:\ProgramData\Hotspot Shield
2022-11-12 00:15 - 2019-10-30 13:10 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-11 22:11 - 2022-10-03 11:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-09 15:04 - 2022-10-05 06:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-09 15:03 - 2022-10-05 06:27 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-27 22:58 - 2019-10-30 13:12 - 000000000 ____D C:\ProgramData\McAfee
2022-10-26 22:39 - 2019-10-30 13:12 - 000000000 ____D C:\Program Files\McAfee

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================