Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Exécuté par gaeta (administrateur) sur DESKTOP-T0VF72I (LENOVO F0CU006JFR) (01-01-2022 09:01:32)
Exécuté depuis C:\Users\gaeta\Desktop
Profils chargés: gaeta
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1415 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxext.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_f222132bfa8270de\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.Amd64.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe <3>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LITE-ON TECHNOLOGY CORP. -> Lenovo) C:\Program Files\Lenovo\Lenovo Calliope USB Keyboard\SklFundKb.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FileHistory.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(NetSupport Ltd -> NetSupport Ltd) C:\Users\gaeta\AppData\Roaming\lrc3GNY4\ctfmon.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\gaeta\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-01-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2020-01-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo Fundamental USB Keyboard] => C:\Program Files\Lenovo\Lenovo Calliope USB Keyboard\SklFundKb.exe [2644472 2016-10-17] (LITE-ON TECHNOLOGY CORP. -> Lenovo)
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [MyDriveConnect.exe] => C:\Users\gaeta\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [MicrosoftEdgeAutoLaunch_8CE78385AF11F2DD33469807C17C4CC5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [ctfmon_] => C:\Users\gaeta\AppData\Roaming\lrc3GNY4\ctfmon.exe [112176 2020-05-06] (NetSupport Ltd -> NetSupport Ltd) <==== ATTENTION
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\WINDOWS\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03303283-0747-4EEF-9E04-1F2FD7D88E86} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {17C5AA26-CDDB-4CB5-AD2B-9FE477C536C0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {19945633-9635-49D4-87FE-19723A1BE3F5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {23D37A98-7A34-4E36-88AA-991C005012BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B715629-8554-4353-9749-42A179FEABF3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5e90a552-1bc0-4f4b-b7a8-306d8ce7f980 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {2BD2CA3C-22E7-4283-BF06-067EB788B740} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F66F7DA-DD59-4590-999B-FB88A9D83FA5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38AFA862-6E4F-45C9-A95C-EFB28553FED4} - System32\Tasks\MicrosoftSystemMetrics_2382 => C:\Users\gaeta\AppData\Roaming\hdYkNIen\SupportTool.exe [17408 2020-11-17] (IronPython Team) [Fichier non signé] -> "C:\Users\gaeta\AppData\Roaming\hdYkNIen\update.py"
Task: {497E6FE9-ECAB-408A-BF7E-5DDD91A95F3C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {54FED48D-3A62-422B-9A00-16B7570CA733} - System32\Tasks\App Explorer => C:\Users\gaeta\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7744560 2021-01-20] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {610B82FA-8167-4BC9-AD7E-D4EF46D390AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {69A70970-80F8-4E0E-AA39-D122741078A5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e3fc15ed-1ffc-42b5-81df-b807709502e1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {6DFB9A36-601D-4808-BF5A-16B1AF879C8A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {8AC63A77-F54C-4A6F-AAAB-21313FCD0E89} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {8E2E9316-1422-4440-90D2-7CF003620016} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {9A6C8C26-2007-4472-AA76-A5F007AF6894} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A036DDA3-1276-431D-AB9B-82908B272E9D} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {B151ACE9-8EA9-4CB4-A8BE-CCEDC2854B66} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {C0209E54-8052-47B3-B297-8A98A495BD86} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\60b481ba-3f4c-4690-abfd-7794c98fa2f8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {C1F4427F-8F2F-4734-A041-6EE964CBB0D8} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C3A678A9-C49C-47CB-9B1D-AB2D69B9484F} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C41B3382-1F32-43EA-8B3C-BBCD9D08D671} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1171352 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {C57298D3-F062-4C08-8605-437DF684AA78} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b24264bb-27d8-4b1c-9bbf-28170dd545a8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {C825A9D6-45BB-46BC-9C35-7776E04E2EBC} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C953D4D3-932A-460C-98B6-EA5D5281FEC7} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {DB2257F2-ED84-4312-B939-D73192AD0C27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DFF442E8-BA73-4D75-B11B-A7C2A9B4B885} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E45FCBB2-5AD2-4264-BC43-1DCE446C0137} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {EC0EC46A-043F-4C06-827D-CF69DCFBC528} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {f3e7cc61-3043-4be9-91dd-414bf7e3e245} - pas de chemin du fichier
Task: {FB4614A9-0C0D-4706-86A1-FA9D9C1D576F} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {FC92D06D-36A3-4270-90CD-5608C2A8DB74} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyEnable: [S-1-5-21-2576683645-2164366112-2471258968-1001] => Proxy est activé.
ProxyServer: [S-1-5-21-2576683645-2164366112-2471258968-1001] => http=localhost:8615;https=localhost:8615
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8cc5f9dc-7650-40d3-a231-10723ece6c94}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8cc5f9dc-7650-40d3-a231-10723ece6c94}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8dcaa1a0-c20d-4fce-a3f6-551803462bc2}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1http=localhost:8615;https=localhost:8615
Edge:
=======
DownloadDir: C:\Users\gaeta\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2018-04-11]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-02]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\gaeta\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-01]
Edge DownloadDir: Default -> C:\Users\gaeta\Downloads
Edge Notifications: Default -> hxxps://alpha-news.org; hxxps://investmentstar.org; hxxps://pneus.piecesauto24.com; hxxps://positiveweb.org; hxxps://theresults.info; hxxps://time4news.net; hxxps://tv-programme.com; hxxps://uniqdatacaptcha.top; hxxps://wowslegends.com; hxxps://www.conforama.fr; hxxps://www.justacote.com; hxxps://www.tomtom.com; hxxps://www.zt-za.com
Edge StartupUrls: Default -> "hxxps://www.msn.com/fr-fr?inst=1"
Edge Extension: (uBlock Origin) - C:\Users\gaeta\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-12-02]
FireFox:
========
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-11-01] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25312 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S4 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [34528 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
S4 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
S4 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe [31016 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
S4 LiveStorageService; C:\Program Files\Lenovo\LiveStorage\Server\LiveStorageServer.exe [730160 2016-11-22] (LENOVO -> Lenovo)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-01 09:01 - 2022-01-01 09:03 - 000020821 _____ C:\Users\gaeta\Desktop\FRST.txt
2022-01-01 09:00 - 2022-01-01 09:02 - 000000000 ____D C:\FRST
2022-01-01 08:55 - 2022-01-01 08:55 - 002311168 _____ (Farbar) C:\Users\gaeta\Desktop\FRST64.exe
2022-01-01 08:03 - 2022-01-01 08:03 - 095944704 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-01-01 07:54 - 2022-01-01 08:03 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-01-01 07:18 - 2022-01-01 08:48 - 000000151 _____ C:\WINDOWS\restoro.ini
2022-01-01 07:09 - 2022-01-01 07:09 - 000000000 ____D C:\Users\gaeta\OneDrive\Documents\FeedbackHub
2021-12-31 11:43 - 2021-12-31 11:56 - 000000140 _____ C:\WINDOWS\Reimage.ini
2021-12-31 10:59 - 2021-12-31 10:59 - 000000000 ___HD C:\$WinREAgent
2021-12-31 10:59 - 2021-12-31 10:59 - 000000000 ____D C:\WINDOWS\Firmware
2021-12-31 09:56 - 2021-12-31 09:56 - 001624440 _____ (Tous Les Drivers) C:\Users\gaeta\Downloads\Mes_Drivers_3.0.4.exe
2021-12-31 07:47 - 2021-12-31 08:16 - 000000000 ___HD C:\$WINDOWS.~BT
2021-12-31 07:31 - 2021-12-31 07:32 - 000000000 ___HD C:\$GetCurrent
2021-12-31 07:29 - 2021-12-31 07:32 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2021-12-30 19:10 - 2021-12-30 19:12 - 000000000 ____D C:\61c886165f623ea1d220
2021-12-30 18:42 - 2021-12-30 18:42 - 000001356 _____ C:\Users\gaeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-12-30 18:42 - 2021-12-30 18:42 - 000000000 ____D C:\Users\gaeta\AppData\Local\PCHealthCheck
2021-12-30 18:41 - 2021-12-30 18:41 - 014233600 _____ C:\Users\gaeta\Downloads\WindowsPCHealthCheckSetup.msi
2021-12-28 17:20 - 2021-12-28 17:20 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\hdYkNIen
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\t8ske.vbs
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\g1dl0.vbs
2021-12-15 21:38 - 2021-12-15 21:38 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-15 09:30 - 2021-12-15 09:30 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-15 09:30 - 2021-12-15 09:30 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-15 09:29 - 2021-12-15 09:29 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-15 09:29 - 2021-12-15 09:29 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-12 23:10 - 2021-12-12 23:10 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2576683645-2164366112-2471258968-1001
2021-12-09 22:56 - 2021-12-09 22:56 - 000002536 _____ C:\Users\gaeta\AppData\Local\rootCert.pfx
2021-12-09 22:54 - 2021-12-28 17:20 - 000003544 _____ C:\WINDOWS\system32\Tasks\MicrosoftSystemMetrics_2382
2021-12-09 22:54 - 2021-12-09 22:54 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\gxr6w.vbs
2021-12-09 22:54 - 2021-12-09 22:54 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\4IuEPTfX
2021-12-09 22:53 - 2021-12-28 17:19 - 000000460 _____ C:\Users\gaeta\AppData\Roaming\EULAAGREEMENT.txt
2021-12-09 22:53 - 2021-12-09 22:53 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\ijeho.vbs
2021-12-04 17:42 - 2021-12-04 17:42 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\lrc3GNY4
2021-12-04 17:42 - 2021-12-04 17:42 - 000000000 ____D C:\Users\gaeta\AppData\Local\NetSupport
2021-12-04 17:41 - 2021-12-04 17:41 - 000001034 _____ C:\Users\gaeta\Downloads\Edge.0e7065.zip
2021-12-04 17:41 - 2021-12-04 17:41 - 000001034 _____ C:\Users\gaeta\Downloads\Edge.0e7065 (1).zip
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-01 08:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-01 08:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-01-01 08:24 - 2018-05-13 17:54 - 000000000 ____D C:\Users\gaeta\AppData\Local\Host App Service
2022-01-01 08:22 - 2017-10-11 07:05 - 000000000 __SHD C:\Users\gaeta\IntelGraphicsProfiles
2022-01-01 08:21 - 2020-08-16 09:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-01 08:04 - 2020-08-16 09:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-01 08:04 - 2020-08-16 09:10 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-01 08:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-01 08:04 - 2017-06-29 10:30 - 000000000 ___HD C:\Intel
2022-01-01 07:53 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-01-01 07:14 - 2020-08-16 09:44 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3FBCF10C-1DFD-439D-8002-79D8A27E2C97}
2021-12-31 16:30 - 2021-01-22 16:39 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-12-31 16:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-31 12:13 - 2017-11-04 06:06 - 000000000 ____D C:\Users\gaeta\AppData\Local\ElevatedDiagnostics
2021-12-31 11:39 - 2017-10-11 14:46 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\vlc
2021-12-31 11:39 - 2017-10-11 09:33 - 000000000 ___RD C:\Users\gaeta\Desktop\Films
2021-12-31 11:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-31 11:11 - 2020-03-14 00:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-31 11:11 - 2020-03-14 00:27 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-31 11:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-31 08:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2021-12-31 07:54 - 2020-08-16 04:29 - 000000000 ___DC C:\WINDOWS\Panther
2021-12-31 07:35 - 2020-08-16 09:37 - 000001890 _____ C:\WINDOWS\diagwrn.xml
2021-12-31 07:35 - 2020-08-16 09:37 - 000001890 _____ C:\WINDOWS\diagerr.xml
2021-12-31 07:35 - 2017-10-11 09:53 - 000000036 _____ C:\WINDOWS\progress.ini
2021-12-30 20:51 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-12-27 18:11 - 2019-12-02 17:27 - 000000000 ____D C:\Users\gaeta\Desktop\musiques
2021-12-26 08:18 - 2020-08-16 06:58 - 000000000 ____D C:\Users\gaeta
2021-12-24 15:42 - 2020-08-16 09:32 - 001770970 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-24 15:42 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2021-12-24 15:42 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2021-12-21 20:47 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-21 10:42 - 2017-10-11 07:04 - 000048301 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-12-18 21:40 - 2017-06-29 10:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-16 15:51 - 2018-02-13 23:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-15 21:41 - 2020-08-16 09:10 - 000466616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-15 08:51 - 2017-10-11 08:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-15 08:48 - 2017-10-11 08:08 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-14 20:31 - 2018-05-10 15:21 - 000000000 ____D C:\Users\gaeta\AppData\Local\PlaceholderTileLogoFolder
2021-12-14 20:31 - 2018-01-23 23:56 - 000000000 ____D C:\Users\gaeta\AppData\Local\Packages
2021-12-12 23:10 - 2020-12-17 15:36 - 000002428 _____ C:\Users\gaeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-12 23:10 - 2020-08-16 09:44 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2576683645-2164366112-2471258968-1001
2021-12-11 02:18 - 2020-08-16 09:44 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 02:18 - 2020-08-16 09:44 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-12-09 22:53 - 2021-12-28 17:19 - 000000460 _____ () C:\Users\gaeta\AppData\Roaming\EULAAGREEMENT.txt
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\g1dl0.vbs
2021-12-09 22:54 - 2021-12-09 22:54 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\gxr6w.vbs
2021-12-09 22:53 - 2021-12-09 22:53 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\ijeho.vbs
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\t8ske.vbs
2019-04-08 19:19 - 2019-12-06 06:51 - 000007598 _____ () C:\Users\gaeta\AppData\Local\Resmon.ResmonCfg
2021-12-09 22:56 - 2021-12-09 22:56 - 000002536 _____ () C:\Users\gaeta\AppData\Local\rootCert.pfx
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par gaeta (administrateur) sur DESKTOP-T0VF72I (LENOVO F0CU006JFR) (01-01-2022 09:01:32)
Exécuté depuis C:\Users\gaeta\Desktop
Profils chargés: gaeta
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1415 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\igfxext.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca6edd308a39a439\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_f222132bfa8270de\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.Amd64.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe <3>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LITE-ON TECHNOLOGY CORP. -> Lenovo) C:\Program Files\Lenovo\Lenovo Calliope USB Keyboard\SklFundKb.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FileHistory.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(NetSupport Ltd -> NetSupport Ltd) C:\Users\gaeta\AppData\Roaming\lrc3GNY4\ctfmon.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\gaeta\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-01-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2020-01-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo Fundamental USB Keyboard] => C:\Program Files\Lenovo\Lenovo Calliope USB Keyboard\SklFundKb.exe [2644472 2016-10-17] (LITE-ON TECHNOLOGY CORP. -> Lenovo)
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [MyDriveConnect.exe] => C:\Users\gaeta\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [MicrosoftEdgeAutoLaunch_8CE78385AF11F2DD33469807C17C4CC5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2576683645-2164366112-2471258968-1001\...\Run: [ctfmon_] => C:\Users\gaeta\AppData\Roaming\lrc3GNY4\ctfmon.exe [112176 2020-05-06] (NetSupport Ltd -> NetSupport Ltd) <==== ATTENTION
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\WINDOWS\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03303283-0747-4EEF-9E04-1F2FD7D88E86} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {17C5AA26-CDDB-4CB5-AD2B-9FE477C536C0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {19945633-9635-49D4-87FE-19723A1BE3F5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {23D37A98-7A34-4E36-88AA-991C005012BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B715629-8554-4353-9749-42A179FEABF3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5e90a552-1bc0-4f4b-b7a8-306d8ce7f980 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {2BD2CA3C-22E7-4283-BF06-067EB788B740} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F66F7DA-DD59-4590-999B-FB88A9D83FA5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38AFA862-6E4F-45C9-A95C-EFB28553FED4} - System32\Tasks\MicrosoftSystemMetrics_2382 => C:\Users\gaeta\AppData\Roaming\hdYkNIen\SupportTool.exe [17408 2020-11-17] (IronPython Team) [Fichier non signé] -> "C:\Users\gaeta\AppData\Roaming\hdYkNIen\update.py"
Task: {497E6FE9-ECAB-408A-BF7E-5DDD91A95F3C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {54FED48D-3A62-422B-9A00-16B7570CA733} - System32\Tasks\App Explorer => C:\Users\gaeta\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7744560 2021-01-20] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {610B82FA-8167-4BC9-AD7E-D4EF46D390AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {69A70970-80F8-4E0E-AA39-D122741078A5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e3fc15ed-1ffc-42b5-81df-b807709502e1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {6DFB9A36-601D-4808-BF5A-16B1AF879C8A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {8AC63A77-F54C-4A6F-AAAB-21313FCD0E89} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {8E2E9316-1422-4440-90D2-7CF003620016} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {9A6C8C26-2007-4472-AA76-A5F007AF6894} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A036DDA3-1276-431D-AB9B-82908B272E9D} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {B151ACE9-8EA9-4CB4-A8BE-CCEDC2854B66} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {C0209E54-8052-47B3-B297-8A98A495BD86} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\60b481ba-3f4c-4690-abfd-7794c98fa2f8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {C1F4427F-8F2F-4734-A041-6EE964CBB0D8} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C3A678A9-C49C-47CB-9B1D-AB2D69B9484F} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C41B3382-1F32-43EA-8B3C-BBCD9D08D671} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1171352 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {C57298D3-F062-4C08-8605-437DF684AA78} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b24264bb-27d8-4b1c-9bbf-28170dd545a8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {C825A9D6-45BB-46BC-9C35-7776E04E2EBC} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {C953D4D3-932A-460C-98B6-EA5D5281FEC7} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {DB2257F2-ED84-4312-B939-D73192AD0C27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DFF442E8-BA73-4D75-B11B-A7C2A9B4B885} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E45FCBB2-5AD2-4264-BC43-1DCE446C0137} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {EC0EC46A-043F-4C06-827D-CF69DCFBC528} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {f3e7cc61-3043-4be9-91dd-414bf7e3e245} - pas de chemin du fichier
Task: {FB4614A9-0C0D-4706-86A1-FA9D9C1D576F} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {FC92D06D-36A3-4270-90CD-5608C2A8DB74} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyEnable: [S-1-5-21-2576683645-2164366112-2471258968-1001] => Proxy est activé.
ProxyServer: [S-1-5-21-2576683645-2164366112-2471258968-1001] => http=localhost:8615;https=localhost:8615
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8cc5f9dc-7650-40d3-a231-10723ece6c94}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8cc5f9dc-7650-40d3-a231-10723ece6c94}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8dcaa1a0-c20d-4fce-a3f6-551803462bc2}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1http=localhost:8615;https=localhost:8615
Edge:
=======
DownloadDir: C:\Users\gaeta\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2018-04-11]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-02]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\gaeta\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-01]
Edge DownloadDir: Default -> C:\Users\gaeta\Downloads
Edge Notifications: Default -> hxxps://alpha-news.org; hxxps://investmentstar.org; hxxps://pneus.piecesauto24.com; hxxps://positiveweb.org; hxxps://theresults.info; hxxps://time4news.net; hxxps://tv-programme.com; hxxps://uniqdatacaptcha.top; hxxps://wowslegends.com; hxxps://www.conforama.fr; hxxps://www.justacote.com; hxxps://www.tomtom.com; hxxps://www.zt-za.com
Edge StartupUrls: Default -> "hxxps://www.msn.com/fr-fr?inst=1"
Edge Extension: (uBlock Origin) - C:\Users\gaeta\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-12-02]
FireFox:
========
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-11-01] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25312 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S4 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [34528 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
S4 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
S4 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe [31016 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
S4 LiveStorageService; C:\Program Files\Lenovo\LiveStorage\Server\LiveStorageServer.exe [730160 2016-11-22] (LENOVO -> Lenovo)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-01 09:01 - 2022-01-01 09:03 - 000020821 _____ C:\Users\gaeta\Desktop\FRST.txt
2022-01-01 09:00 - 2022-01-01 09:02 - 000000000 ____D C:\FRST
2022-01-01 08:55 - 2022-01-01 08:55 - 002311168 _____ (Farbar) C:\Users\gaeta\Desktop\FRST64.exe
2022-01-01 08:03 - 2022-01-01 08:03 - 095944704 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-01-01 07:54 - 2022-01-01 08:03 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-01-01 07:18 - 2022-01-01 08:48 - 000000151 _____ C:\WINDOWS\restoro.ini
2022-01-01 07:09 - 2022-01-01 07:09 - 000000000 ____D C:\Users\gaeta\OneDrive\Documents\FeedbackHub
2021-12-31 11:43 - 2021-12-31 11:56 - 000000140 _____ C:\WINDOWS\Reimage.ini
2021-12-31 10:59 - 2021-12-31 10:59 - 000000000 ___HD C:\$WinREAgent
2021-12-31 10:59 - 2021-12-31 10:59 - 000000000 ____D C:\WINDOWS\Firmware
2021-12-31 09:56 - 2021-12-31 09:56 - 001624440 _____ (Tous Les Drivers) C:\Users\gaeta\Downloads\Mes_Drivers_3.0.4.exe
2021-12-31 07:47 - 2021-12-31 08:16 - 000000000 ___HD C:\$WINDOWS.~BT
2021-12-31 07:31 - 2021-12-31 07:32 - 000000000 ___HD C:\$GetCurrent
2021-12-31 07:29 - 2021-12-31 07:32 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2021-12-30 19:10 - 2021-12-30 19:12 - 000000000 ____D C:\61c886165f623ea1d220
2021-12-30 18:42 - 2021-12-30 18:42 - 000001356 _____ C:\Users\gaeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-12-30 18:42 - 2021-12-30 18:42 - 000000000 ____D C:\Users\gaeta\AppData\Local\PCHealthCheck
2021-12-30 18:41 - 2021-12-30 18:41 - 014233600 _____ C:\Users\gaeta\Downloads\WindowsPCHealthCheckSetup.msi
2021-12-28 17:20 - 2021-12-28 17:20 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\hdYkNIen
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\t8ske.vbs
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\g1dl0.vbs
2021-12-15 21:38 - 2021-12-15 21:38 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-15 09:30 - 2021-12-15 09:30 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-15 09:30 - 2021-12-15 09:30 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-15 09:29 - 2021-12-15 09:29 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-15 09:29 - 2021-12-15 09:29 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-12 23:10 - 2021-12-12 23:10 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2576683645-2164366112-2471258968-1001
2021-12-09 22:56 - 2021-12-09 22:56 - 000002536 _____ C:\Users\gaeta\AppData\Local\rootCert.pfx
2021-12-09 22:54 - 2021-12-28 17:20 - 000003544 _____ C:\WINDOWS\system32\Tasks\MicrosoftSystemMetrics_2382
2021-12-09 22:54 - 2021-12-09 22:54 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\gxr6w.vbs
2021-12-09 22:54 - 2021-12-09 22:54 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\4IuEPTfX
2021-12-09 22:53 - 2021-12-28 17:19 - 000000460 _____ C:\Users\gaeta\AppData\Roaming\EULAAGREEMENT.txt
2021-12-09 22:53 - 2021-12-09 22:53 - 000000574 _____ C:\Users\gaeta\AppData\Roaming\ijeho.vbs
2021-12-04 17:42 - 2021-12-04 17:42 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\lrc3GNY4
2021-12-04 17:42 - 2021-12-04 17:42 - 000000000 ____D C:\Users\gaeta\AppData\Local\NetSupport
2021-12-04 17:41 - 2021-12-04 17:41 - 000001034 _____ C:\Users\gaeta\Downloads\Edge.0e7065.zip
2021-12-04 17:41 - 2021-12-04 17:41 - 000001034 _____ C:\Users\gaeta\Downloads\Edge.0e7065 (1).zip
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-01 08:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-01 08:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-01-01 08:24 - 2018-05-13 17:54 - 000000000 ____D C:\Users\gaeta\AppData\Local\Host App Service
2022-01-01 08:22 - 2017-10-11 07:05 - 000000000 __SHD C:\Users\gaeta\IntelGraphicsProfiles
2022-01-01 08:21 - 2020-08-16 09:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-01 08:04 - 2020-08-16 09:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-01 08:04 - 2020-08-16 09:10 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-01 08:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-01 08:04 - 2017-06-29 10:30 - 000000000 ___HD C:\Intel
2022-01-01 07:53 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-01-01 07:14 - 2020-08-16 09:44 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3FBCF10C-1DFD-439D-8002-79D8A27E2C97}
2021-12-31 16:30 - 2021-01-22 16:39 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-12-31 16:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-31 12:13 - 2017-11-04 06:06 - 000000000 ____D C:\Users\gaeta\AppData\Local\ElevatedDiagnostics
2021-12-31 11:39 - 2017-10-11 14:46 - 000000000 ____D C:\Users\gaeta\AppData\Roaming\vlc
2021-12-31 11:39 - 2017-10-11 09:33 - 000000000 ___RD C:\Users\gaeta\Desktop\Films
2021-12-31 11:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-31 11:11 - 2020-03-14 00:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-31 11:11 - 2020-03-14 00:27 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-31 11:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-31 08:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2021-12-31 07:54 - 2020-08-16 04:29 - 000000000 ___DC C:\WINDOWS\Panther
2021-12-31 07:35 - 2020-08-16 09:37 - 000001890 _____ C:\WINDOWS\diagwrn.xml
2021-12-31 07:35 - 2020-08-16 09:37 - 000001890 _____ C:\WINDOWS\diagerr.xml
2021-12-31 07:35 - 2017-10-11 09:53 - 000000036 _____ C:\WINDOWS\progress.ini
2021-12-30 20:51 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-12-27 18:11 - 2019-12-02 17:27 - 000000000 ____D C:\Users\gaeta\Desktop\musiques
2021-12-26 08:18 - 2020-08-16 06:58 - 000000000 ____D C:\Users\gaeta
2021-12-24 15:42 - 2020-08-16 09:32 - 001770970 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-24 15:42 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2021-12-24 15:42 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2021-12-21 20:47 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-21 10:42 - 2017-10-11 07:04 - 000048301 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-12-18 21:40 - 2017-06-29 10:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-16 15:51 - 2018-02-13 23:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-15 21:41 - 2020-08-16 09:10 - 000466616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-15 21:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-15 08:51 - 2017-10-11 08:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-15 08:48 - 2017-10-11 08:08 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-14 20:31 - 2018-05-10 15:21 - 000000000 ____D C:\Users\gaeta\AppData\Local\PlaceholderTileLogoFolder
2021-12-14 20:31 - 2018-01-23 23:56 - 000000000 ____D C:\Users\gaeta\AppData\Local\Packages
2021-12-12 23:10 - 2020-12-17 15:36 - 000002428 _____ C:\Users\gaeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-12 23:10 - 2020-08-16 09:44 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2576683645-2164366112-2471258968-1001
2021-12-11 02:18 - 2020-08-16 09:44 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 02:18 - 2020-08-16 09:44 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-12-09 22:53 - 2021-12-28 17:19 - 000000460 _____ () C:\Users\gaeta\AppData\Roaming\EULAAGREEMENT.txt
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\g1dl0.vbs
2021-12-09 22:54 - 2021-12-09 22:54 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\gxr6w.vbs
2021-12-09 22:53 - 2021-12-09 22:53 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\ijeho.vbs
2021-12-28 17:19 - 2021-12-28 17:19 - 000000574 _____ () C:\Users\gaeta\AppData\Roaming\t8ske.vbs
2019-04-08 19:19 - 2019-12-06 06:51 - 000007598 _____ () C:\Users\gaeta\AppData\Local\Resmon.ResmonCfg
2021-12-09 22:56 - 2021-12-09 22:56 - 000002536 _____ () C:\Users\gaeta\AppData\Local\rootCert.pfx
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================