RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2023
ExÃ©cutÃ© par barry (administrateur) sur DESKTOP-AT5QH78 (HP HP Laptop 15-da0xxx) (28-09-2023 09:13:36)
ExÃ©cutÃ© depuis C:\Users\barry\Downloads\FRST64-2.1.exe
Profils chargÃ©s: barry
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2361 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Edge
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe ->) (Shenzhen iMyFone Technology Co., Ltd -> ) C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\MFResident.exe
(C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(explorer.exe ->) (536BC709-8EE1-4478-AF22-F0F0F26FF64A -> Telegram FZ-LLC) C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_4.9.7.0_x64__t4vj0pshhgkwm\Telegram.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\barry\AppData\Local\Microsoft\OneDrive\23.184.0903.0002\FileCoAuth.exe
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe
(services.exe ->) (Shenzhen iMyFone Technology Co., Ltd -> ) C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoPublishingWizard] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKU\S-1-5-21-3680218258-1990516733-2007646127-1001\...\Run: [MicrosoftEdgeAutoLaunch_8B5C9783421624CFD932844EBCB40482] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210112 2023-09-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3680218258-1990516733-2007646127-1001\...\Run: [LEAJ] => C:\ProgramData\presepuesto\LEAJ.exe [5702656 2023-09-21] (HortiMaX B.V.) [Fichier non signÃ©]
HKU\S-1-5-21-3680218258-1990516733-2007646127-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-3680218258-1990516733-2007646127-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-09-12] (Adobe Inc. -> Adobe Systems Inc)
Startup: C:\Users\barry\AppData\Local\Temp\\.ses [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\21eb9e78-2c5c-4180-b4c6-cdd2a68ff905.tmp [] () <==== ATTENTION [zÃ©ro octet? (Erreur=123)]
Startup: C:\Users\barry\AppData\Local\Temp\\39d52af84fb85bdee697aafa1400b442-{87A94AB0-E370-4cde-98D3-ACC110C5967D} [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\3bfc77fe-52ed-4439-8f44-750324af0e31.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\4f5b4b72-f449-4825-a813-bb7c592dda5c.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\58aa2813-dcae-4767-b76a-38d542c17a61.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\64d61865-ab6c-427b-92b7-08f4ec310b92.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\69c78891-8fbe-437b-9379-f98c7705efe2.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\740efb60-de2f-459f-bfc3-ad25ceca3bd2.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\d570afd8-0581-47e0-b850-e9b44d88ddc4.tmp [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\Disabled Startup Items []
Startup: C:\Users\barry\AppData\Local\Temp\\e4e428c9-40ec-4901-81c3-5b43b99f5828.tmp [] () <==== ATTENTION [zÃ©ro octet? (Erreur=123)]
Startup: C:\Users\barry\AppData\Local\Temp\\GreatisTmp []
Startup: C:\Users\barry\AppData\Local\Temp\\iobit-db-license-tmp []
Startup: C:\Users\barry\AppData\Local\Temp\\OptaneIconOverlay.ico [] () [Fichier non signÃ©]
Startup: C:\Users\barry\AppData\Local\Temp\\qtsingleapp-reside-70f6-1-lockfile [] () <==== ATTENTION [zÃ©ro octet? (Erreur=123)]
Startup: C:\Users\barry\AppData\Local\Temp\\SmartScreen []
Startup: C:\Users\barry\AppData\Local\Temp\\~DF2B565B206AA1A853.TMP [] () [Fichier non signÃ©]
BootExecute: autocheck autochk * Partizan
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {B6656EA5-A45A-4778-BF04-D8022D25EB3B} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7E323F68-685E-4A68-A56A-3FA618D2E404} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {EC59ED03-49F4-4D5D-B196-264B5E23F835} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5261456 2023-09-27] (Microsoft Windows -> Microsoft Corporation)
Task: {7FE8044F-43F4-4DA2-B088-7F28ABA21EDB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {A58C8CFA-03F5-4D67-8EEB-E57BFA8A7F7B} - System32\Tasks\Driver Booster SkipUAC (barry) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {508A46F3-B25F-4243-B01C-29EB0D2178D2} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {8F5455E5-1B09-4F7C-B637-F97E525A9B6A} - System32\Tasks\infatica_p2b => C:\Program Files (x86)\Infatica P2B\infatica-service-app.exe [20072 2021-12-04] (Infatica pte ltd -> )
Task: {7B06A352-4E46-43A6-89DF-B2EEB5668BC7} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3680218258-1990516733-2007646127-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1950.4.225.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2277624 2023-09-19] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {01F448E9-6ACA-4B44-BF85-2C74EB692748} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BA76142-5B4C-443E-B879-EADBFF99388F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B37CA478-3852-4DE7-BCDE-9F60B21878B3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {4733DE5F-AB88-4F87-AEC0-7F2495241F69} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6139056F-0423-437B-83DC-DD4D7FEF48C3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8E97001-54D0-4BD2-B291-C9354BCB424E} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Pas de fichier)
Task: {2A433A1B-33AB-4C30-A970-00ECB8A85168} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B8C832C-5927-4D03-BFFE-A396470E4CDB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {799D6D8A-B298-4DF8-9079-D4B3388A1DB8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE8C93B6-5C62-48C5-A26D-BF56D9F9B2FD} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {B4CE5972-5ED3-41DB-9433-9B0BFDDA83CF} - System32\Tasks\Uninstaller_SkipUac_barry => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9831432 2023-07-31] (IObit CO., LTD -> IObit)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [72704 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\wlidNSP.dll [72704 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 17 %windir%\system32\vsocklib.dll => Pas de fichier 
Winsock: Catalog9 18 %windir%\system32\vsocklib.dll => Pas de fichier 
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [122880 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\WINDOWS\system32\wlidnsp.dll [122880 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 17 %windir%\system32\vsocklib.dll => Pas de fichier 
Winsock: Catalog9-x64 18 %windir%\system32\vsocklib.dll => Pas de fichier 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7efa9b81-a31b-4ff3-9930-f69d7690d8fe}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{985c975b-90c7-42c9-9c94-6c7b80b51a3d}: [DhcpNameServer] 192.168.42.129
ManualProxies: 0hxxp://34.80.59.191/win.pac <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge: 
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-24]
Edge Extension: (Edge relevant text changes) - C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-01]
Edge Profile: C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2023-09-22]
Edge Profile: C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-09-28]
Edge Extension: (Compose AI: AI-powered Writing Tool) - C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ddlbpiadoechcolndfeaonajmngmhblj [2023-09-21]
Edge Extension: (GoogleÂ Docs hors connexion) - C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17]
Edge Extension: (Edge relevant text changes) - C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-20]
Edge Profile: C:\Users\barry\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-09-24]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-09-11]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-09-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-09-12] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-09-16] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-09-16] (Adobe Inc. -> Adobe Inc.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2022-10-08] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-09-27] (Microsoft Windows -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11030632 2023-09-21] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2023-07-26] (IObit CO., LTD -> IObit)
R2 MFLocalService; C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe [54664 2022-04-28] (Shenzhen iMyFone Technology Co., Ltd -> )
S3 NativePushService; C:\Users\barry\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-05-06] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S1 Amfilter; C:\WINDOWS\system32\DRIVERS\Amfltx64.sys [12288 2022-11-10] ((Standard mouse types)) [Fichier non signÃ©]
S3 Amusbprt; C:\WINDOWS\system32\DRIVERS\Amusbx64.sys [17920 2022-11-10] (A4Tech Co.,Ltd.) [Fichier non signÃ©]
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2022-10-01] (Bitdefender SRL -> Bitdefender)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2023-01-13] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2023-01-13] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2023-01-13] (IObit Information Technology -> IObit)
R3 MpKsl1f72bd70; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FAED1803-6712-4B50-AA2B-4522749CD7CD}\MpKslDrv.sys [222464 2023-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [42856 2016-03-27] (Open Source Developer, Benjamin HÃ¶glinger-Stelzer -> Nefarius Software Solutions)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2022-11-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 UsbDk; C:\Windows\System32\Drivers\UsbDk.sys [103128 2020-03-13] (Red Hat, Inc. -> Red Hat Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [X]
U4 HomeGroupProvider; pas de ImagePath
S3 rt68cx21; \SystemRoot\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_b2610356a0b4c400\rt68cx21x64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-09-28 09:13 - 2023-09-28 09:14 - 000023632 _____ C:\Users\barry\Downloads\FRST.txt
2023-09-28 09:13 - 2023-09-28 09:13 - 002382848 _____ (Farbar) C:\Users\barry\Downloads\FRST64-2.1.exe
2023-09-28 09:13 - 2023-09-28 09:13 - 000760352 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-28 09:13 - 2023-09-28 09:13 - 000144588 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-28 09:13 - 2023-09-28 09:13 - 000000000 ____D C:\Users\barry\Downloads\FRST-OlderVersion
2023-09-28 09:12 - 2023-09-28 09:13 - 000000000 ____D C:\FRST
2023-09-28 08:46 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2023-09-28 07:54 - 2023-09-28 09:08 - 000001322 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2023-09-28 07:48 - 2023-09-28 07:48 - 000000000 ____D C:\@RestoreQuarantine
2023-09-28 07:36 - 2023-09-28 07:36 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2023-09-28 07:36 - 2023-09-28 07:36 - 000000000 ____D C:\Program Files (x86)\VirusTotalUploader2
2023-09-28 07:35 - 2023-09-28 07:35 - 000142744 _____ C:\Users\barry\Downloads\vtuploader2.2.exe
2023-09-28 07:32 - 2023-09-28 08:46 - 000000000 ____D C:\Users\barry\AppData\Local\UnHackMe
2023-09-28 07:32 - 2023-09-28 08:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator
2023-09-28 07:32 - 2023-09-28 07:32 - 000000000 ____D C:\Program Files (x86)\Greatis
2023-09-28 07:31 - 2023-09-28 07:31 - 036896308 _____ C:\Users\barry\Downloads\reanimator.zip
2023-09-28 00:08 - 2023-09-28 09:08 - 000012288 ___SH C:\DumpStack.log.tmp
2023-09-28 00:07 - 2023-09-28 00:07 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-09-27 23:59 - 2023-09-27 23:59 - 002674525 _____ C:\Users\barry\Downloads\LGgmAC5oNPs_Autoruns-13.98.zip
2023-09-27 22:37 - 2023-09-27 22:37 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-09-27 20:03 - 2023-09-27 20:03 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-09-27 20:03 - 2023-09-27 20:03 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-09-27 20:00 - 2023-09-27 20:00 - 000000000 ____D C:\WINDOWS\Panther
2023-09-27 19:58 - 2023-09-27 20:00 - 000000000 ___HD C:\$WinREAgent
2023-09-27 19:50 - 2023-09-27 19:51 - 000000000 ___HD C:\$SysReset
2023-09-27 19:29 - 2023-09-27 19:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-09-27 16:55 - 2023-09-27 16:55 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_795
2023-09-27 16:04 - 2023-09-27 16:04 - 002969821 _____ C:\Users\barry\Downloads\Autoruns.zip
2023-09-27 13:49 - 2023-09-27 13:49 - 031585024 _____ (Yamicsoft) C:\Users\barry\Downloads\windows11manager.exe
2023-09-27 13:49 - 2023-09-27 13:49 - 000000000 ____D C:\Users\barry\AppData\Roaming\Yamicsoft
2023-09-27 13:49 - 2023-09-27 13:49 - 000000000 ____D C:\Users\barry\AppData\Local\Caphyon
2023-09-27 13:16 - 2023-09-27 13:16 - 000003656 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-09-27 13:09 - 2023-09-27 13:09 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_954
2023-09-26 22:55 - 2023-09-26 22:55 - 108683264 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2023-09-26 22:55 - 2023-09-26 22:55 - 010022912 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2023-09-26 22:55 - 2023-09-26 22:55 - 002613248 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2023-09-26 22:55 - 2023-09-26 22:55 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iobit
2023-09-26 22:55 - 2023-09-26 22:55 - 000045056 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2023-09-26 22:50 - 2023-09-26 22:50 - 006474072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2023-09-26 20:11 - 2023-09-26 20:11 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_661
2023-09-26 19:51 - 2023-09-26 19:51 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_709
2023-09-25 18:33 - 2023-09-25 18:33 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3680218258-1990516733-2007646127-1001
2023-09-25 18:33 - 2023-09-25 18:33 - 000002421 _____ C:\Users\barry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-25 15:59 - 2023-09-25 15:59 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_397
2023-09-25 10:00 - 2023-09-25 10:00 - 000003782 _____ C:\WINDOWS\system32\Tasks\Tweaking.com - Windows Repair Tray Icon
2023-09-25 09:57 - 2023-09-25 09:58 - 058118520 _____ (Tweaking.com) C:\Users\barry\Downloads\tweaking.com_windows_repair_aio_setup.exe
2023-09-25 08:17 - 2023-09-25 08:17 - 000000000 _____ C:\WINDOWS\SysWOW64\HWiNFO64A_151.SYS
2023-09-25 07:59 - 2023-09-25 07:59 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_961
2023-09-24 13:39 - 2023-09-24 13:39 - 000000000 ____D C:\WINDOWS\pss
2023-09-23 16:17 - 2023-09-23 16:17 - 000000000 ____D C:\Users\barry\AppData\LocalLow\Z-Software GmbH
2023-09-23 14:16 - 2023-09-28 09:08 - 116654080 _____ C:\WINDOWS\system32\config\SOFTWARE
2023-09-23 14:16 - 2023-09-28 09:08 - 002621440 _____ C:\WINDOWS\system32\config\DEFAULT
2023-09-23 14:16 - 2023-09-28 09:08 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2023-09-23 14:16 - 2023-09-28 09:08 - 000045056 _____ C:\WINDOWS\system32\config\SECURITY
2023-09-23 14:16 - 2023-09-23 14:16 - 002609152 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2023-09-23 14:16 - 2023-09-23 14:16 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2023-09-23 14:16 - 2023-09-23 14:16 - 000045056 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2023-09-23 14:15 - 2023-09-23 14:15 - 108015616 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2023-09-23 14:15 - 2023-09-23 14:15 - 011325440 _____ C:\WINDOWS\system32\config\DRIVERS.iodefrag.bak
2023-09-22 10:22 - 2023-09-22 10:22 - 000000304 _____ C:\WINDOWS\SysWOW64\cpuz.ini
2023-09-22 08:25 - 2023-04-28 10:54 - 000046968 _____ (IObit) C:\WINDOWS\system32\RegistryDefragBootTime.exe
2023-09-20 11:59 - 2023-09-20 11:59 - 000000000 ____D C:\ProgramData\{7D4F950D-61ED-482D-A05D-43620B49B610}
2023-09-20 11:42 - 2023-09-21 07:48 - 000000000 __SHD C:\ProgramData\presepuesto
2023-09-20 11:17 - 2023-09-20 14:04 - 000000000 ____D C:\ProgramData\PCGameBoost
2023-09-20 11:17 - 2023-09-20 11:17 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2023-09-20 11:17 - 2023-09-20 11:17 - 000000000 ____D C:\Users\barry\AppData\Roaming\PCGameBoost
2023-09-20 11:17 - 2023-09-20 11:17 - 000000000 ____D C:\ProgramData\iTop
2023-09-20 11:17 - 2022-02-28 16:36 - 000280576 _____ C:\WINDOWS\SysWOW64\D3DX8Wrapper.dll
2023-09-20 11:16 - 2023-09-20 14:04 - 000000000 ____D C:\Program Files (x86)\PCGameBoost
2023-09-20 08:16 - 2023-09-20 08:16 - 000003306 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (barry)
2023-09-20 08:16 - 2023-09-20 08:16 - 000003194 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2023-09-20 08:16 - 2023-09-20 08:16 - 000003180 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2023-09-20 08:16 - 2023-09-20 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 11
2023-09-19 11:25 - 2023-09-19 11:25 - 000000000 ___HD C:\$Windows.~WS
2023-09-19 10:40 - 2023-09-19 10:40 - 000000000 ___HD C:\$WINDOWS.~BT
2023-09-19 07:41 - 2023-09-19 07:41 - 000000290 __RSH C:\ProgramData\ntuser.pol
2023-09-18 15:04 - 2023-09-18 15:04 - 001433160 _____ (Akeo Consulting) C:\Users\barry\Downloads\rufus-4.2.exe
2023-09-16 21:09 - 2023-09-16 21:09 - 000001404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2023-09-15 08:15 - 2023-09-15 08:15 - 011808640 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlane.sys
2023-09-15 08:15 - 2023-09-15 08:15 - 001296760 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2023-09-15 08:14 - 2023-09-15 08:14 - 000832288 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtkBtfilter.sys
2023-09-15 08:14 - 2023-09-15 08:14 - 000069780 _____ C:\WINDOWS\rtl8822c_mp_chip_bt40_fw_asic_rom_patch_new
2023-09-15 08:14 - 2023-09-15 08:14 - 000056472 _____ C:\WINDOWS\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new
2023-09-15 08:14 - 2023-09-15 08:14 - 000000544 _____ C:\WINDOWS\PidVid_List
2023-09-11 07:58 - 2023-09-11 07:58 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-09-11 07:58 - 2023-09-11 07:58 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-09-09 23:43 - 2023-09-09 23:43 - 000136399 _____ C:\Users\barry\Downloads\BRIEF_DU_TRAVAIL_DE_RECHERCHE_UE_GESTION_STRATEGIQUE_DES_MARQUES.pdf
2023-09-06 07:24 - 2023-09-06 07:24 - 000000000 ____D C:\Users\barry\AppData\Local\SoundResearch
2023-09-04 12:03 - 2023-09-04 12:03 - 000001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2023.lnk
2023-09-04 11:18 - 2023-09-23 14:19 - 000000000 ___HD C:\adobeTemp
2023-09-04 11:08 - 2023-09-04 11:08 - 000001111 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Aero.lnk
2023-09-04 10:26 - 2023-09-04 10:26 - 000000000 ____D C:\Users\barry\Downloads\Adobe Creative Cloud Collection 2023 v01.03.2023 (x64) Multilingual [FileCR]
2023-09-04 10:23 - 2023-09-04 10:23 - 030432544 _____ (The ICU Project) C:\WINDOWS\system32\icudt71.dll
2023-09-04 10:22 - 2023-09-04 10:22 - 001414112 _____ (The ICU Project) C:\WINDOWS\system32\icucnv71.dll
2023-09-04 10:19 - 2023-09-04 10:19 - 001842672 _____ (The ICU Project) C:\WINDOWS\system32\icuuc71.dll
2023-09-04 08:09 - 2023-09-04 08:09 - 000000000 ____D C:\Users\barry\AppData\Local\DownloadManager
2023-09-03 11:25 - 2023-09-03 11:25 - 000000000 ____D C:\Users\barry\AppData\Local\FIFA_Mod_Manager
2023-09-03 10:30 - 2023-09-03 10:30 - 000000000 ____D C:\Users\barry\AppData\Local\anadius
2023-09-03 05:23 - 2023-09-03 05:23 - 000658952 _____ C:\ProgramData\catcache3.bin
2023-09-03 05:23 - 2023-09-03 05:23 - 000000000 ____D C:\ProgramData\eaanticheat

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-09-28 09:14 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-28 09:13 - 2023-02-12 14:48 - 001711138 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-28 09:13 - 2022-05-07 05:22 - 000000000 ____D C:\WINDOWS\INF
2023-09-28 09:09 - 2023-02-12 14:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-28 09:09 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-28 09:08 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-09-28 09:08 - 2022-05-07 05:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-09-28 09:00 - 2023-02-12 14:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-28 08:34 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-28 08:23 - 2022-05-07 05:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-28 08:04 - 2022-05-07 05:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-28 07:26 - 2022-10-01 19:26 - 000000000 ____D C:\Users\barry\AppData\Local\Packages
2023-09-28 00:08 - 2023-02-12 14:39 - 000492000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-28 00:07 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-27 22:44 - 2022-10-12 19:31 - 000000000 ____D C:\Users\barry\Downloads\Telegram Desktop
2023-09-27 22:40 - 2022-05-07 05:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-27 22:37 - 2023-02-12 14:42 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-27 20:01 - 2022-10-01 19:26 - 000000000 ____D C:\ProgramData\Packages
2023-09-27 20:00 - 2022-10-01 19:26 - 000000000 ____D C:\Users\barry\AppData\Local\D3DSCache
2023-09-27 19:38 - 2022-11-26 10:21 - 000000000 ____D C:\Users\barry\AppData\Local\CrashDumps
2023-09-27 19:38 - 2022-11-15 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB x64 Professional
2023-09-27 17:10 - 2022-10-01 21:34 - 000000000 ____D C:\Program Files\WinRAR
2023-09-27 17:10 - 2022-05-07 05:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-27 16:27 - 2022-10-01 21:47 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-27 13:53 - 2022-05-07 05:24 - 000000000 ____D C:\PerfLogs
2023-09-27 13:16 - 2022-10-01 22:15 - 000000000 ____D C:\Users\barry\AppData\LocalLow\IObit
2023-09-27 13:16 - 2022-10-01 21:37 - 000000000 ____D C:\Users\barry\AppData\Roaming\IObit
2023-09-27 13:16 - 2022-10-01 21:37 - 000000000 ____D C:\ProgramData\IObit
2023-09-27 13:16 - 2022-10-01 21:37 - 000000000 ____D C:\Program Files (x86)\IObit
2023-09-27 12:59 - 2023-02-12 13:56 - 000000000 ____D C:\Users\barry
2023-09-27 12:58 - 2023-01-12 13:15 - 000000000 ____D C:\Users\barry\AppData\Roaming\uTorrent Web
2023-09-27 12:58 - 2022-10-01 21:59 - 000000000 ____D C:\Users\barry\AppData\Local\BitTorrentHelper
2023-09-27 12:12 - 2022-10-01 22:15 - 000000000 ____D C:\ProgramData\ProductData
2023-09-26 19:35 - 2022-10-01 17:16 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-26 14:46 - 2022-10-04 19:38 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\Word
2023-09-26 14:44 - 2022-10-09 00:44 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\PowerPoint
2023-09-26 14:44 - 2022-10-04 19:38 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\Office
2023-09-25 18:33 - 2023-02-12 14:45 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3680218258-1990516733-2007646127-1001
2023-09-25 18:09 - 2022-10-09 00:47 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\Excel
2023-09-25 07:39 - 2023-03-19 15:35 - 000000000 ___RD C:\Users\barry\OneDrive\Documents\My Flash
2023-09-25 07:39 - 2023-03-19 15:29 - 000000000 ____D C:\Users\barry\AppData\Roaming\SWF.max
2023-09-25 07:34 - 2022-10-20 16:13 - 000000000 ____D C:\Users\barry\AppData\Local\ElevatedDiagnostics
2023-09-25 07:31 - 2023-08-13 12:37 - 000000000 ____D C:\ProgramData\ProductData3
2023-09-24 14:00 - 2023-03-19 15:14 - 000003842 _____ C:\WINDOWS\system32\Tasks\infatica_p2b
2023-09-24 13:44 - 2023-01-14 15:53 - 000000000 ____D C:\Users\barry\AppData\Local\Rufus
2023-09-24 11:28 - 2022-10-01 21:34 - 000000000 ____D C:\Users\barry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-09-24 11:28 - 2022-10-01 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-09-24 11:10 - 2023-08-18 10:06 - 000000000 ___RD C:\Users\barry\Creative Cloud Files
2023-09-23 14:19 - 2022-10-11 13:19 - 000000000 ____D C:\Program Files\Adobe
2023-09-19 11:28 - 2023-06-10 17:47 - 000000000 ____D C:\ESD
2023-09-19 10:40 - 2023-02-12 14:44 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2023-09-19 10:40 - 2023-02-12 14:44 - 000001908 _____ C:\WINDOWS\diagerr.xml
2023-09-19 09:52 - 2022-05-07 05:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-09-16 21:14 - 2022-10-04 19:32 - 000000000 ____D C:\Program Files\Microsoft Office
2023-09-16 21:09 - 2022-10-11 13:20 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-09-16 21:09 - 2022-10-03 09:51 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-09-16 21:09 - 2022-10-03 09:49 - 000000000 ____D C:\Users\barry\AppData\Local\Adobe
2023-09-16 21:07 - 2023-08-11 10:08 - 000000000 ____D C:\Users\barry\AppData\Roaming\com.adobe.dunamis
2023-09-13 15:53 - 2023-01-01 21:26 - 000000000 ____D C:\Program Files (x86)\Tenorshare
2023-09-13 08:56 - 2023-01-01 21:27 - 000000000 ____D C:\Users\barry\AppData\Roaming\TSMonitor
2023-09-13 08:52 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-09-13 07:59 - 2022-10-01 19:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-13 07:57 - 2022-10-01 19:41 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-12 09:12 - 2023-05-20 11:43 - 002688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-09-12 09:12 - 2023-05-20 11:43 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-09-12 09:12 - 2023-05-20 11:43 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-09-12 09:12 - 2023-05-20 11:43 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-09-12 09:12 - 2023-05-20 11:43 - 000000000 ____D C:\XboxGames
2023-09-12 09:10 - 2023-05-20 11:43 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-09-12 09:10 - 2023-05-20 11:43 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-09-12 09:10 - 2023-05-20 11:43 - 000181864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-09-07 09:42 - 2022-10-01 19:26 - 000000000 ____D C:\Users\barry\AppData\Roaming\Adobe
2023-09-04 12:05 - 2022-10-05 08:33 - 000000000 ____D C:\Users\barry\AppData\LocalLow\Adobe
2023-09-04 10:17 - 2023-02-12 14:26 - 000002425 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_383
2023-09-02 22:41 - 2022-12-14 23:29 - 000000000 ____D C:\Users\barry\AppData\Roaming\2K Sports
2023-09-02 22:38 - 2023-04-16 13:46 - 000000000 ____D C:\Program Files\CPUID
2023-09-02 15:24 - 2023-05-27 15:53 - 000001869 _____ C:\Users\barry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2023-08-31 08:11 - 2022-10-01 17:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Fichiers Ã  la racine de certains dossiers ========

2023-09-25 07:31 - 2023-09-25 07:31 - 000000000 _____ () C:\Users\barry\AppData\Local\oobelibMkey.log
2022-10-27 17:55 - 2022-10-27 17:55 - 000000017 _____ () C:\Users\barry\AppData\Local\resmon.resmoncfg
2023-01-02 13:39 - 2023-01-24 16:28 - 000017408 _____ () C:\Users\barry\AppData\Local\WebpageIcons.db

==================== FLock ==============================

2023-05-26 21:34 C:\WINDOWS\SysWOW64\fkssxole

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================