Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par Utilisateur (administrateur) sur LAPTOP-GP92E04G (LENOVO 81WC) (16-10-2023 13:18:17)
Exécuté depuis C:\Users\Utilisateur\Desktop\FRST64.exe
Profils chargés: Utilisateur
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2428 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~4.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\FnHotkeyUtility.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\Installer\setup.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_535ad830186013d4\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_535ad830186013d4\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2340.9.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteamsupdate.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Utilisateur\AppData\Local\Microsoft\OneDrive\23.199.0924.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342856 2021-09-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2872388436-3640120670-1663621689-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4131264 2023-10-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2872388436-3640120670-1663621689-1001\...\MountPoints2: {c73bb0b3-ae0e-11ed-9785-48684aa98ff7} - "D:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {96661BDD-7AA7-4002-8207-28DFB41BA1CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {91E79104-CF12-4598-968A-A2F15108A169} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-16] (Google LLC -> Google LLC)
Task: {63AA5667-0EB9-4AC5-BABA-46CF282C9BF7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-16] (Google LLC -> Google LLC)
Task: {8D95C63F-313A-498A-961B-1B2AA645321E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4E518A0A-E270-4038-908B-000692FBEB11} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {4ADDA978-3846-44A6-A2AC-8FC476628186} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {502133AF-3FFE-46BA-AD6F-A8029D2995A8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2ea458a9-0580-4908-aff1-e82610d9b8a5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5C509714-248C-4C6B-8E74-4ACA3E3A19E1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3558d09b-8486-4f8f-9ef4-411e983fb46b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {782EA572-4F64-409B-9E34-434B6F459A8A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\495711cd-8156-4d36-824d-e5594b6bfdc7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E016BBDA-DED3-4161-A2CF-E7239B7441CF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\df6dadfd-8aca-421c-a2af-01c43741ae43 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {B0B6B01C-A9ED-4BBF-B632-12DCDEF2FD53} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [177856 2023-06-15] (Lenovo -> Lenovo Group Ltd.)
Task: {B4F82EAD-CF58-40C1-B9EF-44ECEB5C10E9} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {F4B00121-E1EB-4EAB-817E-1D4B6A6C4FC5} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5E120787-E0D3-452E-A269-856D82516C9A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {E5B27D51-6D85-40FA-902B-AA915BBE69C0} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {607CA774-998E-4382-B807-A8636405979C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2127557B-8783-4874-AFE9-A08D777138CF} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {91789722-9C83-45B9-A14F-2BC78920B0A4} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5777A211-3C9B-4049-937D-B88EE375E9D2} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {FA6A7202-E792-49F8-9761-1858BE278ABA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {19761152-7CC9-4453-A509-486F4655E92F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5FFA3020-AF59-45EA-84C6-8E4BA465484F} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5490D19F-3BEB-4823-84BC-0DD0263E2226} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {9B7D3C3B-BD34-44EE-9C01-4650E4D3AB0C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {C49349D6-9509-4CCF-8869-8BF9FB89CEA9} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4094568 2023-02-17] (McAfee, LLC -> McAfee, LLC)
Task: {36C01E31-0D5D-4A2C-82CB-6A140444FB71} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC)
Task: {06FDBFF9-168A-4241-B021-95CE279E0767} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5A8B405-4D5B-425D-BE87-DC1FA73C163D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {8398502D-41B2-4F7B-B0BA-26F9EF964E96} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1CBE9A7-1BA8-4E17-BCFC-1BBE21A00A4D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EB241BC-AB94-43CE-A142-527844970890} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {31B98CA4-31FF-4058-800D-FC2B35D24079} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {E5DAD2E3-6C64-44DE-84EE-C7B8B36661C4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {D6F24151-A58C-438A-8C2F-D98C36B5FB4C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {C726820A-DF8F-4A7B-A506-216FA8837C43} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {EBD18CBF-5ABE-4F3B-A1C8-A3B72355795F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0A28226-BB11-4417-A2BC-18DB624E2326} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CF24BF0-A995-4F7E-B2E6-8631C8D095EC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2125D026-368F-4E41-AF08-57E4422698C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{07e701c5-5e29-470a-b3ac-3a028c0057b4}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3f69275f-8ba6-4a63-962f-5e8804c0b4ad}: [DhcpNameServer] 150.215.1.3
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
FireFox:
========
FF DefaultProfile: w2vbljwq.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\w2vbljwq.default [2023-05-07]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1buo8j4w.default-release [2023-05-07]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2023-10-16]
CHR Notifications: Default -> hxxps://assiste.com; hxxps://nxejt.deepcoreminer.top
CHR Extension: (Joko : cashback et codes promo) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jigflhhckdjdefdjmodlkomnmdonfbbn [2023-09-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12860928 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe [2141832 2021-07-22] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [423304 2021-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe [296432 2023-09-26] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72944 2023-06-15] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [491232 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [135024 2022-11-15] (Musarubra US LLC -> Trellix US LLC.)
S3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [106720 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.)
R3 MpKslac147a67; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5BBE8833-00EC-49E3-AA02-9243E5FB768C}\MpKslDrv.sys [263560 2023-10-16] (Microsoft Windows -> Microsoft Corporation)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-17] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-16 13:18 - 2023-10-16 13:19 - 000026403 _____ C:\Users\Utilisateur\Desktop\FRST.txt
2023-10-16 13:17 - 2023-10-16 13:18 - 000000000 ____D C:\FRST
2023-10-16 13:16 - 2023-10-16 13:16 - 002383360 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2023-10-15 13:04 - 2023-10-15 13:04 - 000197407 _____ C:\Users\Utilisateur\Desktop\ZHPDiag.txt
2023-10-15 12:54 - 2023-10-15 12:54 - 000000882 _____ C:\Users\Utilisateur\Desktop\ZHPSuite.lnk
2023-10-15 12:54 - 2023-10-15 12:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ZHP
2023-10-15 12:54 - 2023-10-15 12:51 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Desktop\ZHPSuite (3).exe
2023-10-15 12:51 - 2023-10-15 12:51 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (3).exe
2023-10-15 12:19 - 2023-10-15 12:19 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (2).exe
2023-10-15 12:12 - 2023-10-15 12:12 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (1).exe
2023-10-15 12:04 - 2023-10-15 12:05 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite.exe
2023-10-15 10:53 - 2023-10-15 10:53 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-15 10:53 - 2023-10-15 10:53 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-15 10:42 - 2023-10-15 10:42 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-13 17:25 - 2023-10-13 17:25 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-13 17:24 - 2023-10-13 17:24 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-13 17:24 - 2023-10-13 17:24 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 17:18 - 2023-10-13 17:21 - 000000000 ___HD C:\$WinREAgent
2023-10-11 10:29 - 2023-10-11 10:29 - 000000368 _____ C:\Users\Utilisateur\Downloads\physique (2).zip
2023-10-11 10:23 - 2023-10-11 10:23 - 000000158 _____ C:\Users\Utilisateur\Downloads\physique (1).zip
2023-10-11 10:22 - 2023-10-11 10:22 - 000000158 _____ C:\Users\Utilisateur\Downloads\physique.zip
2023-10-09 19:10 - 2023-10-09 19:10 - 000168817 _____ C:\Users\Utilisateur\Downloads\Fiche_méthode_analyse_résultats.odt
2023-10-04 16:32 - 2023-10-04 16:32 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-04 16:22 - 2023-10-04 16:22 - 000000000 ____D C:\WINDOWS\system32\SONiX
2023-09-29 17:29 - 2023-09-29 17:29 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire (2).zip
2023-09-29 17:28 - 2023-09-29 17:28 - 000373594 _____ C:\Users\Utilisateur\Downloads\Séance_1.pdf
2023-09-29 17:26 - 2023-09-29 17:26 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire.zip
2023-09-29 17:26 - 2023-09-29 17:26 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire (1).zip
2023-09-23 18:41 - 2023-10-13 22:49 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps
2023-09-23 09:35 - 2023-09-23 09:35 - 000539135 _____ C:\Users\Utilisateur\Downloads\Séance_4.pdf
2023-09-20 18:59 - 2023-09-20 18:59 - 000000159 _____ C:\Users\Utilisateur\Downloads\musique (1).zip
2023-09-20 18:58 - 2023-09-20 18:59 - 000000159 _____ C:\Users\Utilisateur\Downloads\musique.zip
2023-09-18 21:03 - 2023-09-18 21:03 - 002925469 _____ C:\Users\Utilisateur\Downloads\Diaporama.pdf
2023-09-18 10:03 - 2023-09-18 10:03 - 000163361 _____ C:\Users\Utilisateur\Documents\Avis_d_impot_2023_sur_les_revenus_2022.pdf
2023-09-18 09:31 - 2023-09-27 11:57 - 003275077 _____ C:\Users\Utilisateur\Documents\photo adèle.odt
2023-09-17 17:39 - 2023-09-17 17:39 - 003871220 _____ C:\Users\Utilisateur\Downloads\carte identitée Guillaume (1).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-16 13:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-16 13:19 - 2023-02-16 16:56 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-16 13:19 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-16 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-15 13:04 - 2023-05-04 22:00 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\ZHP
2023-10-15 11:47 - 2023-02-16 22:39 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2023-10-15 11:47 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-15 11:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-15 11:01 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-15 11:01 - 2020-11-19 09:33 - 000000000 ____D C:\ProgramData\Packages
2023-10-15 10:53 - 2023-03-31 21:53 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-15 10:53 - 2022-03-29 21:19 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-15 10:51 - 2020-11-19 09:32 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-15 10:49 - 2023-02-16 19:05 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2023-10-15 10:46 - 2023-03-31 21:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-15 10:46 - 2023-03-31 21:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-15 10:46 - 2023-02-16 22:39 - 000000000 __SHD C:\Users\Utilisateur\IntelGraphicsProfiles
2023-10-15 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-15 10:46 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-15 10:46 - 2022-03-29 21:29 - 000000000 ___HD C:\Intel
2023-10-15 10:46 - 2020-11-27 02:59 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-15 10:43 - 2023-03-31 21:46 - 000671112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-13 17:31 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-13 17:25 - 2023-03-31 21:51 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 17:13 - 2023-02-16 16:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 17:08 - 2023-02-16 16:49 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-09 19:29 - 2023-03-04 18:06 - 000000000 ____D C:\Users\Utilisateur\Documents\Maxence
2023-10-09 19:25 - 2023-02-16 23:59 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Word
2023-10-09 17:19 - 2023-03-31 21:47 - 000000000 ____D C:\Users\Utilisateur
2023-10-05 17:05 - 2020-11-19 09:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-04 16:21 - 2023-03-31 21:54 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2872388436-3640120670-1663621689-1001
2023-10-04 16:21 - 2023-03-31 21:54 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2872388436-3640120670-1663621689-1001
2023-10-04 16:21 - 2023-02-16 22:38 - 000002450 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-28 17:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-09-18 20:53 - 2023-03-31 21:54 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-18 20:53 - 2023-03-31 21:54 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-17 11:10 - 2023-03-31 21:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-17 11:10 - 2023-02-16 16:54 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-17 11:10 - 2023-02-16 16:54 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
==================== Fichiers à la racine de certains dossiers ========
2023-05-04 20:24 - 2023-05-04 20:36 - 000000046 _____ () C:\Users\Utilisateur\AppData\Roaming\MCVi2UserDetail.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Utilisateur (administrateur) sur LAPTOP-GP92E04G (LENOVO 81WC) (16-10-2023 13:18:17)
Exécuté depuis C:\Users\Utilisateur\Desktop\FRST64.exe
Profils chargés: Utilisateur
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2428 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe <6>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~4.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\FnHotkeyUtility.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\Installer\setup.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_535ad830186013d4\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_535ad830186013d4\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\SocketHeciServer.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2340.9.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteamsupdate.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Utilisateur\AppData\Local\Microsoft\OneDrive\23.199.0924.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342856 2021-09-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2872388436-3640120670-1663621689-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4131264 2023-10-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2872388436-3640120670-1663621689-1001\...\MountPoints2: {c73bb0b3-ae0e-11ed-9785-48684aa98ff7} - "D:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {96661BDD-7AA7-4002-8207-28DFB41BA1CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {91E79104-CF12-4598-968A-A2F15108A169} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-16] (Google LLC -> Google LLC)
Task: {63AA5667-0EB9-4AC5-BABA-46CF282C9BF7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-16] (Google LLC -> Google LLC)
Task: {8D95C63F-313A-498A-961B-1B2AA645321E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4E518A0A-E270-4038-908B-000692FBEB11} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {4ADDA978-3846-44A6-A2AC-8FC476628186} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {502133AF-3FFE-46BA-AD6F-A8029D2995A8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2ea458a9-0580-4908-aff1-e82610d9b8a5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5C509714-248C-4C6B-8E74-4ACA3E3A19E1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3558d09b-8486-4f8f-9ef4-411e983fb46b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {782EA572-4F64-409B-9E34-434B6F459A8A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\495711cd-8156-4d36-824d-e5594b6bfdc7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E016BBDA-DED3-4161-A2CF-E7239B7441CF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\df6dadfd-8aca-421c-a2af-01c43741ae43 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {B0B6B01C-A9ED-4BBF-B632-12DCDEF2FD53} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [177856 2023-06-15] (Lenovo -> Lenovo Group Ltd.)
Task: {B4F82EAD-CF58-40C1-B9EF-44ECEB5C10E9} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {F4B00121-E1EB-4EAB-817E-1D4B6A6C4FC5} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5E120787-E0D3-452E-A269-856D82516C9A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {E5B27D51-6D85-40FA-902B-AA915BBE69C0} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {607CA774-998E-4382-B807-A8636405979C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2127557B-8783-4874-AFE9-A08D777138CF} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {91789722-9C83-45B9-A14F-2BC78920B0A4} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5777A211-3C9B-4049-937D-B88EE375E9D2} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {FA6A7202-E792-49F8-9761-1858BE278ABA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {19761152-7CC9-4453-A509-486F4655E92F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5FFA3020-AF59-45EA-84C6-8E4BA465484F} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5490D19F-3BEB-4823-84BC-0DD0263E2226} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {9B7D3C3B-BD34-44EE-9C01-4650E4D3AB0C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {C49349D6-9509-4CCF-8869-8BF9FB89CEA9} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4094568 2023-02-17] (McAfee, LLC -> McAfee, LLC)
Task: {36C01E31-0D5D-4A2C-82CB-6A140444FB71} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC)
Task: {06FDBFF9-168A-4241-B021-95CE279E0767} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5A8B405-4D5B-425D-BE87-DC1FA73C163D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {8398502D-41B2-4F7B-B0BA-26F9EF964E96} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1CBE9A7-1BA8-4E17-BCFC-1BBE21A00A4D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EB241BC-AB94-43CE-A142-527844970890} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {31B98CA4-31FF-4058-800D-FC2B35D24079} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {E5DAD2E3-6C64-44DE-84EE-C7B8B36661C4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {D6F24151-A58C-438A-8C2F-D98C36B5FB4C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {C726820A-DF8F-4A7B-A506-216FA8837C43} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {EBD18CBF-5ABE-4F3B-A1C8-A3B72355795F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0A28226-BB11-4417-A2BC-18DB624E2326} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CF24BF0-A995-4F7E-B2E6-8631C8D095EC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2125D026-368F-4E41-AF08-57E4422698C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{07e701c5-5e29-470a-b3ac-3a028c0057b4}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3f69275f-8ba6-4a63-962f-5e8804c0b4ad}: [DhcpNameServer] 150.215.1.3
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
FireFox:
========
FF DefaultProfile: w2vbljwq.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\w2vbljwq.default [2023-05-07]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1buo8j4w.default-release [2023-05-07]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2023-10-16]
CHR Notifications: Default -> hxxps://assiste.com; hxxps://nxejt.deepcoreminer.top
CHR Extension: (Joko : cashback et codes promo) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jigflhhckdjdefdjmodlkomnmdonfbbn [2023-09-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12860928 2023-10-07] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_771d64c55bc6db71\DAX3API.exe [2141832 2021-07-22] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [423304 2021-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_84a69c204377c97e\LenovoUtilityService.exe [296432 2023-09-26] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72944 2023-06-15] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [491232 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [135024 2022-11-15] (Musarubra US LLC -> Trellix US LLC.)
S3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [106720 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.)
R3 MpKslac147a67; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5BBE8833-00EC-49E3-AA02-9243E5FB768C}\MpKslDrv.sys [263560 2023-10-16] (Microsoft Windows -> Microsoft Corporation)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-17] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-16 13:18 - 2023-10-16 13:19 - 000026403 _____ C:\Users\Utilisateur\Desktop\FRST.txt
2023-10-16 13:17 - 2023-10-16 13:18 - 000000000 ____D C:\FRST
2023-10-16 13:16 - 2023-10-16 13:16 - 002383360 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2023-10-15 13:04 - 2023-10-15 13:04 - 000197407 _____ C:\Users\Utilisateur\Desktop\ZHPDiag.txt
2023-10-15 12:54 - 2023-10-15 12:54 - 000000882 _____ C:\Users\Utilisateur\Desktop\ZHPSuite.lnk
2023-10-15 12:54 - 2023-10-15 12:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ZHP
2023-10-15 12:54 - 2023-10-15 12:51 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Desktop\ZHPSuite (3).exe
2023-10-15 12:51 - 2023-10-15 12:51 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (3).exe
2023-10-15 12:19 - 2023-10-15 12:19 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (2).exe
2023-10-15 12:12 - 2023-10-15 12:12 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite (1).exe
2023-10-15 12:04 - 2023-10-15 12:05 - 003511968 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite.exe
2023-10-15 10:53 - 2023-10-15 10:53 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-15 10:53 - 2023-10-15 10:53 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-15 10:42 - 2023-10-15 10:42 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-13 17:25 - 2023-10-13 17:25 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-13 17:24 - 2023-10-13 17:24 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-13 17:24 - 2023-10-13 17:24 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 17:18 - 2023-10-13 17:21 - 000000000 ___HD C:\$WinREAgent
2023-10-11 10:29 - 2023-10-11 10:29 - 000000368 _____ C:\Users\Utilisateur\Downloads\physique (2).zip
2023-10-11 10:23 - 2023-10-11 10:23 - 000000158 _____ C:\Users\Utilisateur\Downloads\physique (1).zip
2023-10-11 10:22 - 2023-10-11 10:22 - 000000158 _____ C:\Users\Utilisateur\Downloads\physique.zip
2023-10-09 19:10 - 2023-10-09 19:10 - 000168817 _____ C:\Users\Utilisateur\Downloads\Fiche_méthode_analyse_résultats.odt
2023-10-04 16:32 - 2023-10-04 16:32 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-04 16:22 - 2023-10-04 16:22 - 000000000 ____D C:\WINDOWS\system32\SONiX
2023-09-29 17:29 - 2023-09-29 17:29 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire (2).zip
2023-09-29 17:28 - 2023-09-29 17:28 - 000373594 _____ C:\Users\Utilisateur\Downloads\Séance_1.pdf
2023-09-29 17:26 - 2023-09-29 17:26 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire.zip
2023-09-29 17:26 - 2023-09-29 17:26 - 000000159 _____ C:\Users\Utilisateur\Downloads\histoire (1).zip
2023-09-23 18:41 - 2023-10-13 22:49 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps
2023-09-23 09:35 - 2023-09-23 09:35 - 000539135 _____ C:\Users\Utilisateur\Downloads\Séance_4.pdf
2023-09-20 18:59 - 2023-09-20 18:59 - 000000159 _____ C:\Users\Utilisateur\Downloads\musique (1).zip
2023-09-20 18:58 - 2023-09-20 18:59 - 000000159 _____ C:\Users\Utilisateur\Downloads\musique.zip
2023-09-18 21:03 - 2023-09-18 21:03 - 002925469 _____ C:\Users\Utilisateur\Downloads\Diaporama.pdf
2023-09-18 10:03 - 2023-09-18 10:03 - 000163361 _____ C:\Users\Utilisateur\Documents\Avis_d_impot_2023_sur_les_revenus_2022.pdf
2023-09-18 09:31 - 2023-09-27 11:57 - 003275077 _____ C:\Users\Utilisateur\Documents\photo adèle.odt
2023-09-17 17:39 - 2023-09-17 17:39 - 003871220 _____ C:\Users\Utilisateur\Downloads\carte identitée Guillaume (1).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-16 13:20 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-16 13:19 - 2023-02-16 16:56 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-16 13:19 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-16 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-15 13:04 - 2023-05-04 22:00 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\ZHP
2023-10-15 11:47 - 2023-02-16 22:39 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2023-10-15 11:47 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-15 11:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-15 11:01 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-15 11:01 - 2020-11-19 09:33 - 000000000 ____D C:\ProgramData\Packages
2023-10-15 10:53 - 2023-03-31 21:53 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-15 10:53 - 2022-03-29 21:19 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-15 10:51 - 2020-11-19 09:32 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-15 10:49 - 2023-02-16 19:05 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2023-10-15 10:46 - 2023-03-31 21:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-15 10:46 - 2023-03-31 21:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-15 10:46 - 2023-02-16 22:39 - 000000000 __SHD C:\Users\Utilisateur\IntelGraphicsProfiles
2023-10-15 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-15 10:46 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-15 10:46 - 2022-03-29 21:29 - 000000000 ___HD C:\Intel
2023-10-15 10:46 - 2020-11-27 02:59 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-15 10:43 - 2023-03-31 21:46 - 000671112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-15 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-13 17:31 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-13 17:25 - 2023-03-31 21:51 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 17:13 - 2023-02-16 16:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 17:08 - 2023-02-16 16:49 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-09 19:29 - 2023-03-04 18:06 - 000000000 ____D C:\Users\Utilisateur\Documents\Maxence
2023-10-09 19:25 - 2023-02-16 23:59 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Word
2023-10-09 17:19 - 2023-03-31 21:47 - 000000000 ____D C:\Users\Utilisateur
2023-10-05 17:05 - 2020-11-19 09:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-04 16:21 - 2023-03-31 21:54 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2872388436-3640120670-1663621689-1001
2023-10-04 16:21 - 2023-03-31 21:54 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2872388436-3640120670-1663621689-1001
2023-10-04 16:21 - 2023-02-16 22:38 - 000002450 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-28 17:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-09-18 20:53 - 2023-03-31 21:54 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-18 20:53 - 2023-03-31 21:54 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-17 11:10 - 2023-03-31 21:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-17 11:10 - 2023-02-16 16:54 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-17 11:10 - 2023-02-16 16:54 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
==================== Fichiers à la racine de certains dossiers ========
2023-05-04 20:24 - 2023-05-04 20:36 - 000000046 _____ () C:\Users\Utilisateur\AppData\Roaming\MCVi2UserDetail.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================