Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-03-2023
Exécuté par emeu6 (administrateur) sur EMELINE (LENOVO 80XH) (06-03-2023 21:52:58)
Exécuté depuis C:\Users\emeu6\Desktop
Profils chargés: emeu6
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2604 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxEM.exe
(explorer.exe ->) (Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2300_none_7e14edbc7c88b7d5\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [238952 2020-05-13] (IDSA Production signing key -> Intel)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38966072 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Pas de fichier)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [MicrosoftEdgeAutoLaunch_4F4A1AF9B1D09321D58A30EC25F0D577] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243360 2023-02-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\MountPoints2: {12c89195-8cf3-11e8-8202-cc2f71e45e5c} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3359679483-2508700459-785841624-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243360 2023-02-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP CD11 Status Monitor: C:\Windows\system32\hpinkstsCD11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-06] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {036D84ED-2EBD-4482-BF67-84C71F68C04F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {077A794C-19BD-40DC-BE55-0C1F7C46FACE} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {122CE681-83D8-4BE2-8FF4-F606F2F80C30} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {126B622E-73C2-4A88-8B87-E9D540CC71C4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572456 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1870DB00-B369-4DF8-8EF6-A8472AF08D3C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724328 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1CDFA161-5F37-448F-8F1E-8DAAAEEF4E70} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {1EE9917E-7816-439C-BFFE-C81042910BA4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {284FBE40-1BE1-411B-8AC6-823B3F30A210} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-29] (Google Inc -> Google Inc.)
Task: {2885D2BA-C69C-48D6-9248-55123AB74E98} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {33EE387A-E995-4108-9646-2DDB68D5848D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {35907717-1B49-4614-8730-F5C6B303B668} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {3F40CC4D-629F-42B2-A9AA-87F6AAFD5C21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {48CCF89F-17AE-4C9E-A201-6D30BEA1D5E7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4ADB0A88-F95C-4A69-A29E-B0D3F2680D9C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5604658D-FD3E-4289-85EC-CBFA20B2D04E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5B8059F4-88BC-4D70-A15A-786528445DF0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {60162D13-135B-43C7-BFDE-5516FFA699B3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {627B705C-277D-4394-AA3D-37C6552261C2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3636dad6-a4a7-4056-b9cb-3ea1046e6a2e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {7048D384-DB27-4599-9488-8ACA57B5C7FB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {76C105F6-345A-4CF9-A698-BE05690B5336} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-02-08] (Piriform Software Ltd -> Piriform)
Task: {7E140EE5-A2E9-4E81-AC34-DDC37095B44F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87ABF4E4-43C6-4577-88A0-95E9780AD60C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {89441A1F-9A0A-46B5-B18E-2586B03B4939} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {92E92D8B-C5F7-40F2-8F05-2DE2737C8D2B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "3486de1d-29da-4a11-8a95-94be969b4042" --version "6.09.10300" --silent
Task: {951F7FCD-BEA1-4DBE-A909-AD28E0DC0C30} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a62f688a-1c1c-4092-a62d-545c3d748d03 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {95BA83EF-38F6-4877-878A-DB13D22123D7} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {9C546627-6632-4AC3-9E10-63407DF38782} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F1D25D8-5EF9-4651-8BC9-4381E36D24B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A47C19EC-4A43-4060-8BB8-CB6F40846D14} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4FAA7C5-43D8-4B04-8E91-80321E131EDE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702504 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AB377371-9139-44A6-949E-4C70C0524F84} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {B1792881-012D-4F8A-BC09-665F53689213} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe (Pas de fichier)
Task: {B9F26B55-3572-48C7-B42B-C6EEBB3BC6F8} - System32\Tasks\CCleanerSkipUAC - emeu6 => C:\Program Files\CCleaner\CCleaner.exe [32631096 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {BD3024B1-9D30-42F2-9847-0AA6109CAD35} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BD79DE63-E9FF-4758-AFBB-774CB0F72451} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2d26483d-8d8a-469b-8a4b-1064360dedef => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C40EFBFB-2388-428C-9692-92C24DF4963F} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6520636-DC9A-4D94-B7A1-C73FEFDA71FC} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {CA512825-E764-43B8-AE07-3DC1A66D17D1} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {CFFA0E07-9270-4D32-B159-FF634AE85819} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a9d2aa7e-ef8d-4b79-ad15-6dbb02d7ea92 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {D0BAA233-3A17-4892-8C24-03D1812A0FC7} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {DC49FB62-BA2C-4566-8BEF-E7C521ECEB7E} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E220B16E-9CBF-45FC-BD18-3D5473B94C66} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2295192 2023-03-06] (Avast Software s.r.o. -> Avast Software)
Task: {E92B2704-237A-45C5-96EB-BC55C154D525} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-29] (Google Inc -> Google Inc.)
Task: {EEFB48D6-52BA-4DE7-8C5E-C1357836F7D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F65A5754-7F7E-4560-849D-EAD7CAF4C5D7} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{33f329e3-9ec5-4111-8b48-1e1ca1bf72a3}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d76b16ed-9ad4-4089-8b31-d95861d60803}: [DhcpNameServer] 150.210.1.2
Edge:
=======
DownloadDir: C:\Users\emeu6\Downloads
Edge Notifications: HKU\S-1-5-21-3359679483-2508700459-785841624-1001 -> hxxps://www.facebook.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2021-04-12]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-04-12]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\emeu6\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-06]
Edge DownloadDir: Default -> C:\Users\emeu6\Downloads
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\emeu6\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-03-06]
FireFox:
========
FF DefaultProfile: pk74b6bf.default
FF ProfilePath: C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default [2023-03-06]
FF Homepage: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxp://www.bing.com/?pc=COSP&ptag=D073018-A9FCDBB39EF&form=CONMHP&conlogo=CT3335799
FF Notifications: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxps://www.facebook.com
FF Extension: (Avast Passwords) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-10-29] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\sp@avast.com.xpi [2019-01-16]
FF Extension: (Avast Online Security) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\wrc@avast.com.xpi [2018-08-29]
FF Extension: (Adblock Plus) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-09-06]
FF Extension: (Telemetry coverage) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\features\{0846fc00-f59c-4e5a-89ac-efa7556df792}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-09-22] []
FF SearchPlugin: C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\searchplugins\bing-lavasoft-ff59.xml [2018-07-30]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default [2023-02-22]
CHR Notifications: Default -> hxxps://assiste.com; hxxps://hesthenhepattont.club; hxxps://www.facebook.com; hxxps://www.paroles.net; hxxps://www.torrent911.cc; hxxps://www.tuifly.fr
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-11-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-22]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-24]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4033096 2023-01-26] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512256 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-19] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2020-04-15] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-09] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 AppleLowerFilter; \SystemRoot\System32\drivers\AppleLowerFilter.sys [X]
S3 bntap; \SystemRoot\System32\drivers\bntap.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-06 21:52 - 2023-03-06 21:57 - 000029972 _____ C:\Users\emeu6\Desktop\FRST.txt
2023-03-06 17:14 - 2023-03-06 17:14 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-03-06 17:08 - 2023-03-06 17:08 - 013245512 _____ (AVAST Software) C:\Users\emeu6\Downloads\avastclear (2).exe
2023-03-06 15:03 - 2023-03-06 15:04 - 000005464 _____ C:\Users\emeu6\Downloads\FRST.txt
2023-03-06 15:02 - 2023-03-06 21:54 - 000000000 ____D C:\FRST
2023-03-06 13:59 - 2023-03-06 13:59 - 002378752 _____ (Farbar) C:\Users\emeu6\Desktop\FRST64.exe
2023-03-06 12:20 - 2023-03-06 12:20 - 000000000 ___HD C:\$WinREAgent
2023-02-21 13:42 - 2023-03-06 14:13 - 000437008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-21 13:14 - 2023-02-21 13:14 - 000001352 _____ C:\Users\emeu6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2023-02-21 13:14 - 2023-02-21 13:14 - 000000000 ____D C:\Users\emeu6\AppData\Local\PCHealthCheck
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-06 21:58 - 2018-08-29 08:27 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-06 21:57 - 2021-04-12 13:31 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{AC550EAA-9481-4198-83AB-5568D62B4956}
2023-03-06 21:07 - 2021-04-12 12:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-06 18:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-06 17:25 - 2018-10-13 19:51 - 000000000 ____D C:\Program Files\CCleaner
2023-03-06 17:20 - 2018-07-21 07:50 - 000000000 __SHD C:\Users\emeu6\IntelGraphicsProfiles
2023-03-06 17:19 - 2017-08-16 21:53 - 000000000 ____D C:\ProgramData\NVIDIA
2023-03-06 17:18 - 2022-10-28 13:27 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-06 17:18 - 2021-04-12 13:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-06 17:18 - 2021-04-12 12:43 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-06 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-06 17:18 - 2018-08-29 08:23 - 000000000 ____D C:\ProgramData\AVAST Software
2023-03-06 17:16 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-03-06 17:09 - 2018-07-30 21:07 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\uTorrent
2023-03-06 17:08 - 2022-01-09 01:46 - 000000000 ____D C:\Users\emeu6\AppData\LocalLow\uTorrent
2023-03-06 17:08 - 2019-03-22 21:47 - 000000000 ____D C:\Users\emeu6\AppData\Local\BitTorrentHelper
2023-03-06 15:14 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-06 14:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-06 14:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-06 14:37 - 2018-07-21 07:50 - 000000000 ____D C:\Users\emeu6\AppData\Local\Packages
2023-03-06 14:23 - 2021-06-28 20:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2023-03-06 14:22 - 2017-08-16 21:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-03-06 14:19 - 2018-07-21 15:58 - 000000000 ____D C:\ProgramData\Packages
2023-03-06 14:18 - 2018-08-30 20:10 - 000000000 ____D C:\Users\emeu6\AppData\Local\CrashDumps
2023-03-06 14:17 - 2022-10-28 16:38 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-06 14:17 - 2021-04-12 13:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-06 14:17 - 2021-04-12 13:01 - 001772786 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-06 14:17 - 2019-12-07 15:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-06 14:17 - 2019-12-07 15:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-06 14:16 - 2020-05-13 16:23 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-06 14:07 - 2021-04-12 12:52 - 000000000 ____D C:\Users\DevToolsUser
2023-03-06 14:07 - 2021-04-12 12:52 - 000000000 ____D C:\Users\Administrateur
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-03-06 14:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2023-03-06 14:01 - 2021-04-12 12:52 - 000000000 ____D C:\Users\emeu6
2023-03-06 13:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-06 13:31 - 2020-09-21 14:58 - 000000000 ____D C:\ProgramData\HP
2023-03-06 13:24 - 2021-04-12 12:47 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-06 12:36 - 2022-01-09 00:52 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\Proton Technologies AG
2023-03-06 12:36 - 2022-01-09 00:52 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2023-03-06 12:36 - 2019-07-06 13:55 - 000000000 ____D C:\Users\emeu6\Documents\Fichiers Outlook
2023-03-06 12:26 - 2022-02-28 21:38 - 000000000 ____D C:\ProgramData\AVG
2023-03-06 12:25 - 2021-04-12 13:31 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:25 - 2021-04-12 13:31 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:25 - 2021-04-12 13:31 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:22 - 2018-08-21 21:23 - 000000000 ____D C:\Users\emeu6\AppData\Local\D3DSCache
2023-02-21 13:42 - 2020-07-15 11:16 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\AnyDesk
2023-02-21 13:39 - 2020-07-15 11:17 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-02-21 13:24 - 2018-07-21 14:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-21 13:09 - 2018-07-21 14:40 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-21 12:46 - 2020-09-21 10:45 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-02-21 12:38 - 2022-01-15 18:02 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3359679483-2508700459-785841624-1001
2023-02-21 12:38 - 2021-12-01 12:36 - 000002424 _____ C:\Users\emeu6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-02-21 12:38 - 2021-04-12 13:31 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3359679483-2508700459-785841624-1001
2023-02-21 12:35 - 2021-04-12 13:31 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-21 12:35 - 2021-04-12 13:31 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2018-10-13 19:36 - 2019-03-31 17:37 - 000007601 _____ () C:\Users\emeu6\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par emeu6 (administrateur) sur EMELINE (LENOVO 80XH) (06-03-2023 21:52:58)
Exécuté depuis C:\Users\emeu6\Desktop
Profils chargés: emeu6
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2604 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxEM.exe
(explorer.exe ->) (Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_90f68cd0dc48b625\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2300_none_7e14edbc7c88b7d5\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [238952 2020-05-13] (IDSA Production signing key -> Intel)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38966072 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Pas de fichier)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\Run: [MicrosoftEdgeAutoLaunch_4F4A1AF9B1D09321D58A30EC25F0D577] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243360 2023-02-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3359679483-2508700459-785841624-1001\...\MountPoints2: {12c89195-8cf3-11e8-8202-cc2f71e45e5c} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3359679483-2508700459-785841624-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243360 2023-02-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP CD11 Status Monitor: C:\Windows\system32\hpinkstsCD11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-06] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {036D84ED-2EBD-4482-BF67-84C71F68C04F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {077A794C-19BD-40DC-BE55-0C1F7C46FACE} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {122CE681-83D8-4BE2-8FF4-F606F2F80C30} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {126B622E-73C2-4A88-8B87-E9D540CC71C4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572456 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1870DB00-B369-4DF8-8EF6-A8472AF08D3C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724328 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1CDFA161-5F37-448F-8F1E-8DAAAEEF4E70} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {1EE9917E-7816-439C-BFFE-C81042910BA4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {284FBE40-1BE1-411B-8AC6-823B3F30A210} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-29] (Google Inc -> Google Inc.)
Task: {2885D2BA-C69C-48D6-9248-55123AB74E98} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {33EE387A-E995-4108-9646-2DDB68D5848D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {35907717-1B49-4614-8730-F5C6B303B668} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {3F40CC4D-629F-42B2-A9AA-87F6AAFD5C21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {48CCF89F-17AE-4C9E-A201-6D30BEA1D5E7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4ADB0A88-F95C-4A69-A29E-B0D3F2680D9C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5604658D-FD3E-4289-85EC-CBFA20B2D04E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5B8059F4-88BC-4D70-A15A-786528445DF0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {60162D13-135B-43C7-BFDE-5516FFA699B3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {627B705C-277D-4394-AA3D-37C6552261C2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3636dad6-a4a7-4056-b9cb-3ea1046e6a2e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {7048D384-DB27-4599-9488-8ACA57B5C7FB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {76C105F6-345A-4CF9-A698-BE05690B5336} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-02-08] (Piriform Software Ltd -> Piriform)
Task: {7E140EE5-A2E9-4E81-AC34-DDC37095B44F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87ABF4E4-43C6-4577-88A0-95E9780AD60C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {89441A1F-9A0A-46B5-B18E-2586B03B4939} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {92E92D8B-C5F7-40F2-8F05-2DE2737C8D2B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "3486de1d-29da-4a11-8a95-94be969b4042" --version "6.09.10300" --silent
Task: {951F7FCD-BEA1-4DBE-A909-AD28E0DC0C30} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a62f688a-1c1c-4092-a62d-545c3d748d03 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {95BA83EF-38F6-4877-878A-DB13D22123D7} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {9C546627-6632-4AC3-9E10-63407DF38782} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26294704 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F1D25D8-5EF9-4651-8BC9-4381E36D24B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A47C19EC-4A43-4060-8BB8-CB6F40846D14} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114656 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4FAA7C5-43D8-4B04-8E91-80321E131EDE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702504 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AB377371-9139-44A6-949E-4C70C0524F84} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {B1792881-012D-4F8A-BC09-665F53689213} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe (Pas de fichier)
Task: {B9F26B55-3572-48C7-B42B-C6EEBB3BC6F8} - System32\Tasks\CCleanerSkipUAC - emeu6 => C:\Program Files\CCleaner\CCleaner.exe [32631096 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {BD3024B1-9D30-42F2-9847-0AA6109CAD35} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BD79DE63-E9FF-4758-AFBB-774CB0F72451} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2d26483d-8d8a-469b-8a4b-1064360dedef => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C40EFBFB-2388-428C-9692-92C24DF4963F} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6520636-DC9A-4D94-B7A1-C73FEFDA71FC} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {CA512825-E764-43B8-AE07-3DC1A66D17D1} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {CFFA0E07-9270-4D32-B159-FF634AE85819} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a9d2aa7e-ef8d-4b79-ad15-6dbb02d7ea92 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {D0BAA233-3A17-4892-8C24-03D1812A0FC7} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {DC49FB62-BA2C-4566-8BEF-E7C521ECEB7E} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E220B16E-9CBF-45FC-BD18-3D5473B94C66} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2295192 2023-03-06] (Avast Software s.r.o. -> Avast Software)
Task: {E92B2704-237A-45C5-96EB-BC55C154D525} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-29] (Google Inc -> Google Inc.)
Task: {EEFB48D6-52BA-4DE7-8C5E-C1357836F7D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F65A5754-7F7E-4560-849D-EAD7CAF4C5D7} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{33f329e3-9ec5-4111-8b48-1e1ca1bf72a3}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d76b16ed-9ad4-4089-8b31-d95861d60803}: [DhcpNameServer] 150.210.1.2
Edge:
=======
DownloadDir: C:\Users\emeu6\Downloads
Edge Notifications: HKU\S-1-5-21-3359679483-2508700459-785841624-1001 -> hxxps://www.facebook.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2021-04-12]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-04-12]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\emeu6\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-06]
Edge DownloadDir: Default -> C:\Users\emeu6\Downloads
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\emeu6\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-03-06]
FireFox:
========
FF DefaultProfile: pk74b6bf.default
FF ProfilePath: C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default [2023-03-06]
FF Homepage: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxp://www.bing.com/?pc=COSP&ptag=D073018-A9FCDBB39EF&form=CONMHP&conlogo=CT3335799
FF Notifications: Mozilla\Firefox\Profiles\pk74b6bf.default -> hxxps://www.facebook.com
FF Extension: (Avast Passwords) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-10-29] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\sp@avast.com.xpi [2019-01-16]
FF Extension: (Avast Online Security) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\wrc@avast.com.xpi [2018-08-29]
FF Extension: (Adblock Plus) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-09-06]
FF Extension: (Telemetry coverage) - C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\features\{0846fc00-f59c-4e5a-89ac-efa7556df792}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-09-22] []
FF SearchPlugin: C:\Users\emeu6\AppData\Roaming\Mozilla\Firefox\Profiles\pk74b6bf.default\searchplugins\bing-lavasoft-ff59.xml [2018-07-30]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default [2023-02-22]
CHR Notifications: Default -> hxxps://assiste.com; hxxps://hesthenhepattont.club; hxxps://www.facebook.com; hxxps://www.paroles.net; hxxps://www.torrent911.cc; hxxps://www.tuifly.fr
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-11-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-22]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emeu6\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-24]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4033096 2023-01-26] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12512256 2023-03-06] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-19] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_b65eb0793435320a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2020-04-15] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-09] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-01-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 AppleLowerFilter; \SystemRoot\System32\drivers\AppleLowerFilter.sys [X]
S3 bntap; \SystemRoot\System32\drivers\bntap.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-06 21:52 - 2023-03-06 21:57 - 000029972 _____ C:\Users\emeu6\Desktop\FRST.txt
2023-03-06 17:14 - 2023-03-06 17:14 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-03-06 17:08 - 2023-03-06 17:08 - 013245512 _____ (AVAST Software) C:\Users\emeu6\Downloads\avastclear (2).exe
2023-03-06 15:03 - 2023-03-06 15:04 - 000005464 _____ C:\Users\emeu6\Downloads\FRST.txt
2023-03-06 15:02 - 2023-03-06 21:54 - 000000000 ____D C:\FRST
2023-03-06 13:59 - 2023-03-06 13:59 - 002378752 _____ (Farbar) C:\Users\emeu6\Desktop\FRST64.exe
2023-03-06 12:20 - 2023-03-06 12:20 - 000000000 ___HD C:\$WinREAgent
2023-02-21 13:42 - 2023-03-06 14:13 - 000437008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-21 13:14 - 2023-02-21 13:14 - 000001352 _____ C:\Users\emeu6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2023-02-21 13:14 - 2023-02-21 13:14 - 000000000 ____D C:\Users\emeu6\AppData\Local\PCHealthCheck
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-06 21:58 - 2018-08-29 08:27 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-06 21:57 - 2021-04-12 13:31 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{AC550EAA-9481-4198-83AB-5568D62B4956}
2023-03-06 21:07 - 2021-04-12 12:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-06 18:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-06 17:25 - 2018-10-13 19:51 - 000000000 ____D C:\Program Files\CCleaner
2023-03-06 17:20 - 2018-07-21 07:50 - 000000000 __SHD C:\Users\emeu6\IntelGraphicsProfiles
2023-03-06 17:19 - 2017-08-16 21:53 - 000000000 ____D C:\ProgramData\NVIDIA
2023-03-06 17:18 - 2022-10-28 13:27 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-06 17:18 - 2021-04-12 13:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-06 17:18 - 2021-04-12 12:43 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-06 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-06 17:18 - 2018-08-29 08:23 - 000000000 ____D C:\ProgramData\AVAST Software
2023-03-06 17:16 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-03-06 17:09 - 2018-07-30 21:07 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\uTorrent
2023-03-06 17:08 - 2022-01-09 01:46 - 000000000 ____D C:\Users\emeu6\AppData\LocalLow\uTorrent
2023-03-06 17:08 - 2019-03-22 21:47 - 000000000 ____D C:\Users\emeu6\AppData\Local\BitTorrentHelper
2023-03-06 15:14 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-06 14:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-06 14:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-06 14:37 - 2018-07-21 07:50 - 000000000 ____D C:\Users\emeu6\AppData\Local\Packages
2023-03-06 14:23 - 2021-06-28 20:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2023-03-06 14:22 - 2017-08-16 21:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-03-06 14:19 - 2018-07-21 15:58 - 000000000 ____D C:\ProgramData\Packages
2023-03-06 14:18 - 2018-08-30 20:10 - 000000000 ____D C:\Users\emeu6\AppData\Local\CrashDumps
2023-03-06 14:17 - 2022-10-28 16:38 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-06 14:17 - 2021-04-12 13:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-06 14:17 - 2021-04-12 13:01 - 001772786 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-06 14:17 - 2019-12-07 15:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-06 14:17 - 2019-12-07 15:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-06 14:16 - 2020-05-13 16:23 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-06 14:07 - 2021-04-12 12:52 - 000000000 ____D C:\Users\DevToolsUser
2023-03-06 14:07 - 2021-04-12 12:52 - 000000000 ____D C:\Users\Administrateur
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-06 14:04 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-03-06 14:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2023-03-06 14:01 - 2021-04-12 12:52 - 000000000 ____D C:\Users\emeu6
2023-03-06 13:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-06 13:31 - 2020-09-21 14:58 - 000000000 ____D C:\ProgramData\HP
2023-03-06 13:24 - 2021-04-12 12:47 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-06 12:36 - 2022-01-09 00:52 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\Proton Technologies AG
2023-03-06 12:36 - 2022-01-09 00:52 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2023-03-06 12:36 - 2019-07-06 13:55 - 000000000 ____D C:\Users\emeu6\Documents\Fichiers Outlook
2023-03-06 12:26 - 2022-02-28 21:38 - 000000000 ____D C:\ProgramData\AVG
2023-03-06 12:25 - 2021-04-12 13:31 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:25 - 2021-04-12 13:31 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:25 - 2021-04-12 13:31 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-03-06 12:22 - 2018-08-21 21:23 - 000000000 ____D C:\Users\emeu6\AppData\Local\D3DSCache
2023-02-21 13:42 - 2020-07-15 11:16 - 000000000 ____D C:\Users\emeu6\AppData\Roaming\AnyDesk
2023-02-21 13:39 - 2020-07-15 11:17 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-02-21 13:24 - 2018-07-21 14:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-21 13:09 - 2018-07-21 14:40 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-21 12:46 - 2020-09-21 10:45 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-02-21 12:38 - 2022-01-15 18:02 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3359679483-2508700459-785841624-1001
2023-02-21 12:38 - 2021-12-01 12:36 - 000002424 _____ C:\Users\emeu6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-02-21 12:38 - 2021-04-12 13:31 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3359679483-2508700459-785841624-1001
2023-02-21 12:35 - 2021-04-12 13:31 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-21 12:35 - 2021-04-12 13:31 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2018-10-13 19:36 - 2019-03-31 17:37 - 000007601 _____ () C:\Users\emeu6\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================