Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-03-2023
Exécuté par Administrator (administrateur) sur DESKTOP-M249E4R (LENOVO 81TD) (02-03-2023 20:29:13)
Exécuté depuis C:\Users\Administrator\Desktop
Profils chargés: Administrator
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1265 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(MultimediaAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SmartDisplayAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.57\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxEM.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_46afe571f647787a\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a9a2dde7124f013f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_93d11e2397cac3a9\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_93d11e2397cac3a9\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\YMC.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe <2>
(sihost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4478.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4478.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.1190_none_e96e8ff442c0dfc3\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1084720 2020-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-10-16] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-01-18] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-11-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe [7823648 2022-08-04] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-02-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Uninstall 23.023.0129.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\23.023.0129.0002" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Uninstall 23.028.0205.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\23.028.0205.0002" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1002\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1002\...\Run: [MicrosoftEdgeAutoLaunch_4A3E3299869B7710FF88993B7F554E79] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-02-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-11-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\Run: [MoneyAgent] => C:\Program Files (x86)\Microsoft Money\System\Money Express.exe [192568 2001-07-25] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Uninstall 22.232.1106.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\22.232.1106.0002" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-01] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {065D9D11-9CBE-41D3-B78B-13B032109B96} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {07CE755C-9AE9-473A-BEB6-28BA8AA8BC0B} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90832 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
Task: {0A839118-919B-4D8F-8F9A-5B4626AD9E2E} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {0BDCEADC-0241-41AA-832B-B5CA61492CA0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9bac5c76-488d-45de-b3ed-87462729c31a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {124D2468-12B3-45B2-B5C9-07BACEC0C413} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [716704 2023-03-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {18148C12-14EA-48F2-B034-851B5CC92AE7} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {3103698B-FF56-4352-A98F-525548954230} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\03d55ebf-6ef5-4df7-8e2c-22d0d09de641 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {3A5F7EBA-EB9D-4BD9-9EFD-D613DCB124B7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {3D6AAA84-FC0B-4BA5-A8C7-1DF805579C2E} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {429D091F-5609-40CB-8739-E3E876CE458F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {445E7FD4-8141-4CF0-9DC5-540B0663613E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {489CDCA3-F5C3-4000-9C7A-041AE8D62F4C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114624 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A8C922F-D8F0-4419-81BF-1C7A39622133} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe Display (Pas de fichier)
Task: {54006B9D-2FDB-4880-95C0-50434C942D6D} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {5528043E-B77A-4DDE-8897-CDB0A78B4D9F} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Pas de fichier)
Task: {612BE521-274E-4D77-B89E-E92C1DB75824} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [186568 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
Task: {6517C9A7-2535-4D8A-AC89-D661BB9E906B} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier <==== ATTENTION
Task: {65684307-C3F1-4C20-9C72-7C8468CAE36B} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {6A4BE8B3-9FFD-47B6-8093-68A70175A12D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2128915405-1357864125-2810099819-1001 => C:\Users\nicol\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (Pas de fichier)
Task: {84322E34-15EF-4882-9479-ADABF86DCFBF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2023-03-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {89E9E19E-8D06-44EE-9040-964DA1ABDD2F} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier <==== ATTENTION
Task: {8D8CFF9A-DCB9-49CB-82EC-ADE72550FBFB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bf95432e-2024-48d8-9074-15cd42b349bc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {8E72F136-45A7-401A-912B-8179065BBA84} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {912C99F1-2048-4024-831E-F3CB82EF5375} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7284a547-cc19-478e-92a9-9f3f29008558 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {A67920BA-F564-45F8-95DE-42CA0E2551E5} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {AF630625-A35A-467D-BF25-4F894454DD18} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114624 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C00658A9-5DFE-4BE6-8CDE-243877D2575B} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5001112 2023-02-18] (Microsoft Windows -> Microsoft Corporation)
Task: {C161E6B7-617E-48F8-A0F6-F16641BF183A} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {CD18A728-65E9-4019-91FD-88577A7E87F0} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {CEF2C826-9D25-41DE-850E-0204E3A78080} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {E31D7715-074C-4F11-8D5B-6B927A6217CC} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {E63BEDB2-AF92-4A72-96B8-561AF79EC012} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E661FE49-39C5-43BD-A6FB-5DAF1EE55E5C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier <==== ATTENTION
Task: {E75885AF-BACF-48D6-8A05-283DD9AE189E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => C:\WINDOWS\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {ED2CE594-B975-41C1-A6F6-081FE7E228C0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {F8E9076F-7D1A-4503-8731-98602B55E889} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (Pas de fichier)
Task: {FF347B94-1C39-47D8-9AFD-E8D51C55E590} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF69E07D-C69C-4FE1-BCBF-1950C96F2D4A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{3290e5c4-5c97-4b59-a970-5a93256b3bb9}: [DhcpNameServer] 10.114.2.1
Tcpip\..\Interfaces\{4034a0be-7e37-44e6-b2ee-bc243a817145}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{676ff704-260b-49d5-8832-9254541ef02a}: [DhcpNameServer] 192.168.170.110
Tcpip\..\Interfaces\{6e47275d-6c7d-44da-ac3f-e87412bd42c6}: [DhcpNameServer] 192.168.152.143
Edge:
=======
Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-02]
FireFox:
========
FF DefaultProfile: 5nwqf2e6.default
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\5nwqf2e6.default [2022-12-02]
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\khcai1ru.default-release-1677782300877 [2023-03-02]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-03-02]
Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2022-12-02]
CHR Extension: (Slides) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-14]
CHR Extension: (Docs) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-14]
CHR Extension: (Google Drive) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-14]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-14]
CHR Extension: (Sheets) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-14]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-14]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12554240 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1646536 2019-06-16] (Dolby Laboratories, Inc. -> )
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-18] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-18] (ESET, spol. s r.o. -> ESET)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72912 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137600 2023-02-18] (Microsoft Windows -> Microsoft Corporation)
R2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\WINDOWS\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [198416 2023-01-18] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119904 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 edevmonm; C:\WINDOWS\System32\DRIVERS\edevmonm.sys [120928 2023-01-18] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [237208 2023-01-18] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55392 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81696 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [122504 2023-01-18] (ESET, spol. s r.o. -> ESET)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-23] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-02 20:29 - 2023-03-02 20:29 - 000030673 _____ C:\Users\Administrator\Desktop\FRST.txt
2023-03-02 20:28 - 2023-03-02 20:29 - 000000000 ____D C:\FRST
2023-03-02 20:28 - 2023-03-02 20:28 - 002378752 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2023-03-02 20:16 - 2023-03-02 20:26 - 000000000 ____D C:\Users\Administrator\Desktop\Diag
2023-03-02 20:07 - 2023-03-02 20:18 - 000000884 _____ C:\Users\Administrator\Desktop\ZHPDiag.lnk
2023-03-02 19:50 - 2023-03-02 19:50 - 000000000 ____D C:\Users\Administrator\AppData\Local\ZHP
2023-03-02 19:31 - 2023-03-02 19:31 - 000004040 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2128915405-1357864125-2810099819-1005_0
2023-03-02 19:24 - 2023-03-02 19:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-03-01 19:45 - 2023-03-01 19:47 - 003503763 _____ C:\Users\nicol\Downloads\documents.zip
2023-02-19 12:41 - 2023-02-19 12:41 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-02-19 12:41 - 2023-02-19 12:41 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-02-18 19:18 - 2023-02-18 19:18 - 000000000 ___HD C:\$WinREAgent
2023-02-09 20:30 - 2023-02-09 20:30 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_hidtelephony_02_15_00.Wdf
2023-01-27 19:29 - 2023-01-27 19:29 - 000491765 _____ C:\Users\nicol\Downloads\FIT PEAK RETOUR COLISSIMO.pdf
2023-01-18 19:55 - 2023-03-01 19:47 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-12-13 20:35 - 2023-02-19 12:36 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2022-12-10 11:48 - 2022-12-10 11:48 - 003311304 _____ (Nicolas Coolman) C:\Users\nicol\Downloads\Non confirmé 424482.crdownload
2022-12-09 21:25 - 2022-12-09 21:27 - 000000000 ____D C:\AdwCleaner
2022-12-09 20:33 - 2022-12-09 20:33 - 000000000 ____D C:\KPRM
2022-12-04 10:51 - 2023-01-31 18:55 - 000000000 ____D C:\Users\nicol\AppData\Local\CrashDumps
2022-12-02 21:15 - 2022-12-02 21:15 - 002228224 _____ C:\Users\Administrator\Documents\Money.mny
2022-12-02 20:49 - 2022-12-02 20:49 - 000000000 ____D C:\Users\Administrator\AppData\Local\mbam
2022-12-02 20:40 - 2022-12-02 20:40 - 000000000 ____D C:\Program Files\Malwarebytes
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-02 20:24 - 2020-11-02 12:29 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-02 20:23 - 2022-11-20 20:49 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\ZHP
2023-03-02 20:23 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-02 20:20 - 2022-02-19 02:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-02 20:19 - 2020-12-27 21:57 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Mozilla
2023-03-02 20:04 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-02 19:50 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-03-02 19:38 - 2022-11-29 20:29 - 000000000 ____D C:\Users\Administrator\Desktop\Anciennes données de Firefox
2023-03-02 19:36 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-02 19:36 - 2020-12-27 21:53 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-03-02 19:34 - 2022-11-27 18:12 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2128915405-1357864125-2810099819-1005
2023-03-02 19:34 - 2022-11-27 18:12 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2128915405-1357864125-2810099819-1005
2023-03-02 19:34 - 2022-11-27 18:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-02 19:34 - 2021-04-05 17:01 - 000002456 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-02 19:34 - 2020-11-02 12:18 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-02 19:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-03-02 19:31 - 2020-11-11 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-03-02 19:30 - 2022-09-02 15:03 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2023-03-02 19:30 - 2020-12-27 21:53 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-03-02 19:24 - 2022-11-27 18:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-01 19:47 - 2020-11-12 21:58 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-01 19:26 - 2022-11-27 18:12 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2128915405-1357864125-2810099819-1001
2023-03-01 19:26 - 2022-11-27 18:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2128915405-1357864125-2810099819-1001
2023-03-01 19:26 - 2021-04-05 17:01 - 000002432 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-01 19:26 - 2020-11-02 11:15 - 000000000 ___RD C:\Users\nicol\OneDrive
2023-03-01 19:24 - 2020-11-02 12:29 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-01 19:24 - 2020-11-02 12:29 - 000002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-02-25 11:56 - 2020-11-12 21:56 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2023-02-25 11:51 - 2020-11-02 12:18 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2023-02-24 19:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-02-23 22:47 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-02-23 20:23 - 2020-11-08 10:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-02-19 12:41 - 2022-11-27 18:12 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-19 12:36 - 2022-11-27 18:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-19 12:36 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-02-19 12:36 - 2021-04-05 17:00 - 000012288 ___SH C:\DumpStack.log.tmp
2023-02-19 12:36 - 2020-08-13 15:56 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2023-02-19 12:36 - 2020-08-13 15:56 - 000000000 ___HD C:\Intel
2023-02-18 22:44 - 2022-05-07 06:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-02-18 22:43 - 2022-11-27 18:08 - 000470488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-18 19:23 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-18 19:23 - 2020-11-02 11:24 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-18 19:23 - 2020-11-02 11:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-18 19:21 - 2022-11-27 18:11 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-14 21:18 - 2022-11-27 15:43 - 000000000 ____D C:\Users\nicol
2023-02-09 20:53 - 2020-11-02 11:13 - 000000000 ____D C:\Users\nicol\AppData\Local\Packages
2023-02-09 20:33 - 2022-11-27 18:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-02-09 20:30 - 2022-11-27 15:27 - 000000000 ____D C:\WINDOWS\Lenovo
2023-02-09 20:30 - 2020-08-13 15:40 - 000000000 ____D C:\ProgramData\Lenovo
2023-02-09 20:29 - 2022-11-27 18:12 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-09 20:29 - 2022-11-27 18:12 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-09 20:29 - 2020-08-13 15:56 - 000000000 ____D C:\ProgramData\Goodix
==================== Fichiers à la racine de certains dossiers ========
2022-11-29 20:36 - 2022-11-29 20:36 - 003311304 _____ (Nicolas Coolman) C:\Users\Administrator\ZHPDiag3.exe
==================== SigCheckExt =========================
2001-07-25 10:00 - 2001-07-25 10:00 - 001050384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000149776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000024848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000415504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl35.dll
2022-11-29 20:36 - 2022-11-29 20:36 - 003311304 _____ (Nicolas Coolman) C:\Users\Administrator\ZHPDiag3.exe
2023-03-02 20:28 - 2023-03-02 20:28 - 002378752 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2022-11-06 14:04 - 2022-11-06 14:04 - 000956928 _____ (Farbar) C:\Users\nicol\Downloads\MiniToolBox.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Administrator (administrateur) sur DESKTOP-M249E4R (LENOVO 81TD) (02-03-2023 20:29:13)
Exécuté depuis C:\Users\Administrator\Desktop
Profils chargés: Administrator
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1265 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(MultimediaAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SmartDisplayAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.57\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxEM.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_46afe571f647787a\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a9a2dde7124f013f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_93d11e2397cac3a9\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_93d11e2397cac3a9\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\YMC.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe <2>
(sihost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4478.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4478.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.1190_none_e96e8ff442c0dfc3\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1084720 2020-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-10-16] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-01-18] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-11-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe [7823648 2022-08-04] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-02-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Uninstall 23.023.0129.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\23.023.0129.0002" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1001\...\RunOnce: [Uninstall 23.028.0205.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\nicol\AppData\Local\Microsoft\OneDrive\23.028.0205.0002" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1002\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1002\...\Run: [MicrosoftEdgeAutoLaunch_4A3E3299869B7710FF88993B7F554E79] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-02-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-11-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\Run: [MoneyAgent] => C:\Program Files (x86)\Microsoft Money\System\Money Express.exe [192568 2001-07-25] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2128915405-1357864125-2810099819-1005\...\RunOnce: [Uninstall 22.232.1106.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\22.232.1106.0002" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-01] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {065D9D11-9CBE-41D3-B78B-13B032109B96} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {07CE755C-9AE9-473A-BEB6-28BA8AA8BC0B} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90832 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
Task: {0A839118-919B-4D8F-8F9A-5B4626AD9E2E} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {0BDCEADC-0241-41AA-832B-B5CA61492CA0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9bac5c76-488d-45de-b3ed-87462729c31a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {124D2468-12B3-45B2-B5C9-07BACEC0C413} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [716704 2023-03-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {18148C12-14EA-48F2-B034-851B5CC92AE7} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {3103698B-FF56-4352-A98F-525548954230} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\03d55ebf-6ef5-4df7-8e2c-22d0d09de641 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {3A5F7EBA-EB9D-4BD9-9EFD-D613DCB124B7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {3D6AAA84-FC0B-4BA5-A8C7-1DF805579C2E} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {429D091F-5609-40CB-8739-E3E876CE458F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {445E7FD4-8141-4CF0-9DC5-540B0663613E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {489CDCA3-F5C3-4000-9C7A-041AE8D62F4C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114624 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A8C922F-D8F0-4419-81BF-1C7A39622133} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe Display (Pas de fichier)
Task: {54006B9D-2FDB-4880-95C0-50434C942D6D} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {5528043E-B77A-4DDE-8897-CDB0A78B4D9F} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Pas de fichier)
Task: {612BE521-274E-4D77-B89E-E92C1DB75824} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [186568 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
Task: {6517C9A7-2535-4D8A-AC89-D661BB9E906B} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier <==== ATTENTION
Task: {65684307-C3F1-4C20-9C72-7C8468CAE36B} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {6A4BE8B3-9FFD-47B6-8093-68A70175A12D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2128915405-1357864125-2810099819-1001 => C:\Users\nicol\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (Pas de fichier)
Task: {84322E34-15EF-4882-9479-ADABF86DCFBF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2023-03-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {89E9E19E-8D06-44EE-9040-964DA1ABDD2F} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier <==== ATTENTION
Task: {8D8CFF9A-DCB9-49CB-82EC-ADE72550FBFB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bf95432e-2024-48d8-9074-15cd42b349bc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {8E72F136-45A7-401A-912B-8179065BBA84} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {912C99F1-2048-4024-831E-F3CB82EF5375} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7284a547-cc19-478e-92a9-9f3f29008558 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {A67920BA-F564-45F8-95DE-42CA0E2551E5} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {AF630625-A35A-467D-BF25-4F894454DD18} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114624 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C00658A9-5DFE-4BE6-8CDE-243877D2575B} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5001112 2023-02-18] (Microsoft Windows -> Microsoft Corporation)
Task: {C161E6B7-617E-48F8-A0F6-F16641BF183A} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {CD18A728-65E9-4019-91FD-88577A7E87F0} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {CEF2C826-9D25-41DE-850E-0204E3A78080} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {E31D7715-074C-4F11-8D5B-6B927A6217CC} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {E63BEDB2-AF92-4A72-96B8-561AF79EC012} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E661FE49-39C5-43BD-A6FB-5DAF1EE55E5C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier <==== ATTENTION
Task: {E75885AF-BACF-48D6-8A05-283DD9AE189E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => C:\WINDOWS\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {ED2CE594-B975-41C1-A6F6-081FE7E228C0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {F8E9076F-7D1A-4503-8731-98602B55E889} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (Pas de fichier)
Task: {FF347B94-1C39-47D8-9AFD-E8D51C55E590} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF69E07D-C69C-4FE1-BCBF-1950C96F2D4A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{3290e5c4-5c97-4b59-a970-5a93256b3bb9}: [DhcpNameServer] 10.114.2.1
Tcpip\..\Interfaces\{4034a0be-7e37-44e6-b2ee-bc243a817145}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{676ff704-260b-49d5-8832-9254541ef02a}: [DhcpNameServer] 192.168.170.110
Tcpip\..\Interfaces\{6e47275d-6c7d-44da-ac3f-e87412bd42c6}: [DhcpNameServer] 192.168.152.143
Edge:
=======
Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-02]
FireFox:
========
FF DefaultProfile: 5nwqf2e6.default
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\5nwqf2e6.default [2022-12-02]
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\khcai1ru.default-release-1677782300877 [2023-03-02]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-03-02]
Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2022-12-02]
CHR Extension: (Slides) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-14]
CHR Extension: (Docs) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-14]
CHR Extension: (Google Drive) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-14]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-14]
CHR Extension: (Sheets) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-14]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-14]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12554240 2023-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1646536 2019-06-16] (Dolby Laboratories, Inc. -> )
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-18] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-18] (ESET, spol. s r.o. -> ESET)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72912 2022-11-17] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137600 2023-02-18] (Microsoft Windows -> Microsoft Corporation)
R2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\WINDOWS\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-11-27] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [198416 2023-01-18] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119904 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 edevmonm; C:\WINDOWS\System32\DRIVERS\edevmonm.sys [120928 2023-01-18] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [237208 2023-01-18] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55392 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81696 2023-01-18] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [122504 2023-01-18] (ESET, spol. s r.o. -> ESET)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-23] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-02 20:29 - 2023-03-02 20:29 - 000030673 _____ C:\Users\Administrator\Desktop\FRST.txt
2023-03-02 20:28 - 2023-03-02 20:29 - 000000000 ____D C:\FRST
2023-03-02 20:28 - 2023-03-02 20:28 - 002378752 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2023-03-02 20:16 - 2023-03-02 20:26 - 000000000 ____D C:\Users\Administrator\Desktop\Diag
2023-03-02 20:07 - 2023-03-02 20:18 - 000000884 _____ C:\Users\Administrator\Desktop\ZHPDiag.lnk
2023-03-02 19:50 - 2023-03-02 19:50 - 000000000 ____D C:\Users\Administrator\AppData\Local\ZHP
2023-03-02 19:31 - 2023-03-02 19:31 - 000004040 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2128915405-1357864125-2810099819-1005_0
2023-03-02 19:24 - 2023-03-02 19:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-03-01 19:45 - 2023-03-01 19:47 - 003503763 _____ C:\Users\nicol\Downloads\documents.zip
2023-02-19 12:41 - 2023-02-19 12:41 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-02-19 12:41 - 2023-02-19 12:41 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-02-18 19:18 - 2023-02-18 19:18 - 000000000 ___HD C:\$WinREAgent
2023-02-09 20:30 - 2023-02-09 20:30 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_hidtelephony_02_15_00.Wdf
2023-01-27 19:29 - 2023-01-27 19:29 - 000491765 _____ C:\Users\nicol\Downloads\FIT PEAK RETOUR COLISSIMO.pdf
2023-01-18 19:55 - 2023-03-01 19:47 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-12-13 20:35 - 2023-02-19 12:36 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2022-12-10 11:48 - 2022-12-10 11:48 - 003311304 _____ (Nicolas Coolman) C:\Users\nicol\Downloads\Non confirmé 424482.crdownload
2022-12-09 21:25 - 2022-12-09 21:27 - 000000000 ____D C:\AdwCleaner
2022-12-09 20:33 - 2022-12-09 20:33 - 000000000 ____D C:\KPRM
2022-12-04 10:51 - 2023-01-31 18:55 - 000000000 ____D C:\Users\nicol\AppData\Local\CrashDumps
2022-12-02 21:15 - 2022-12-02 21:15 - 002228224 _____ C:\Users\Administrator\Documents\Money.mny
2022-12-02 20:49 - 2022-12-02 20:49 - 000000000 ____D C:\Users\Administrator\AppData\Local\mbam
2022-12-02 20:40 - 2022-12-02 20:40 - 000000000 ____D C:\Program Files\Malwarebytes
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-02 20:24 - 2020-11-02 12:29 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-02 20:23 - 2022-11-20 20:49 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\ZHP
2023-03-02 20:23 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-02 20:20 - 2022-02-19 02:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-02 20:19 - 2020-12-27 21:57 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Mozilla
2023-03-02 20:04 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-02 19:50 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-03-02 19:38 - 2022-11-29 20:29 - 000000000 ____D C:\Users\Administrator\Desktop\Anciennes données de Firefox
2023-03-02 19:36 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-02 19:36 - 2020-12-27 21:53 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-03-02 19:34 - 2022-11-27 18:12 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2128915405-1357864125-2810099819-1005
2023-03-02 19:34 - 2022-11-27 18:12 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2128915405-1357864125-2810099819-1005
2023-03-02 19:34 - 2022-11-27 18:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-02 19:34 - 2021-04-05 17:01 - 000002456 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-02 19:34 - 2020-11-02 12:18 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-02 19:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-03-02 19:31 - 2020-11-11 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-03-02 19:30 - 2022-09-02 15:03 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2023-03-02 19:30 - 2020-12-27 21:53 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2023-03-02 19:24 - 2022-11-27 18:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-01 19:47 - 2020-11-12 21:58 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-01 19:26 - 2022-11-27 18:12 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2128915405-1357864125-2810099819-1001
2023-03-01 19:26 - 2022-11-27 18:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2128915405-1357864125-2810099819-1001
2023-03-01 19:26 - 2021-04-05 17:01 - 000002432 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-01 19:26 - 2020-11-02 11:15 - 000000000 ___RD C:\Users\nicol\OneDrive
2023-03-01 19:24 - 2020-11-02 12:29 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-01 19:24 - 2020-11-02 12:29 - 000002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-02-25 11:56 - 2020-11-12 21:56 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2023-02-25 11:51 - 2020-11-02 12:18 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2023-02-24 19:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-02-23 22:47 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-02-23 20:23 - 2020-11-08 10:57 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-02-19 12:41 - 2022-11-27 18:12 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-19 12:36 - 2022-11-27 18:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-19 12:36 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-02-19 12:36 - 2021-04-05 17:00 - 000012288 ___SH C:\DumpStack.log.tmp
2023-02-19 12:36 - 2020-08-13 15:56 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2023-02-19 12:36 - 2020-08-13 15:56 - 000000000 ___HD C:\Intel
2023-02-18 22:44 - 2022-05-07 06:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-02-18 22:43 - 2022-11-27 18:08 - 000470488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-02-18 22:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-18 19:23 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-18 19:23 - 2020-11-02 11:24 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-18 19:23 - 2020-11-02 11:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-18 19:21 - 2022-11-27 18:11 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-14 21:18 - 2022-11-27 15:43 - 000000000 ____D C:\Users\nicol
2023-02-09 20:53 - 2020-11-02 11:13 - 000000000 ____D C:\Users\nicol\AppData\Local\Packages
2023-02-09 20:33 - 2022-11-27 18:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2023-02-09 20:30 - 2022-11-27 15:27 - 000000000 ____D C:\WINDOWS\Lenovo
2023-02-09 20:30 - 2020-08-13 15:40 - 000000000 ____D C:\ProgramData\Lenovo
2023-02-09 20:29 - 2022-11-27 18:12 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-09 20:29 - 2022-11-27 18:12 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-09 20:29 - 2020-08-13 15:56 - 000000000 ____D C:\ProgramData\Goodix
==================== Fichiers à la racine de certains dossiers ========
2022-11-29 20:36 - 2022-11-29 20:36 - 003311304 _____ (Nicolas Coolman) C:\Users\Administrator\ZHPDiag3.exe
==================== SigCheckExt =========================
2001-07-25 10:00 - 2001-07-25 10:00 - 001050384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000149776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000024848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter35.dll
2001-07-25 10:00 - 2001-07-25 10:00 - 000415504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl35.dll
2022-11-29 20:36 - 2022-11-29 20:36 - 003311304 _____ (Nicolas Coolman) C:\Users\Administrator\ZHPDiag3.exe
2023-03-02 20:28 - 2023-03-02 20:28 - 002378752 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2022-11-06 14:04 - 2022-11-06 14:04 - 000956928 _____ (Farbar) C:\Users\nicol\Downloads\MiniToolBox.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================