Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-05-2023 01
Exécuté par user (administrateur) sur LAPTOP-GU8VOJ9N (LENOVO 80Q0) (15-05-2023 18:18:30)
Exécuté depuis C:\Users\user\Desktop\FRST64.exe
Profils chargés: user
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(MultimediaAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe ->) (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\HotkeyMonitor.exe
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\user\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(explorer.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterTray.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18374632 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NerveCenterTray] => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterTray.exe [245088 2017-04-28] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488360 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488360 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488360 2017-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [IAStorIcon] => c:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492472 2015-07-21] (CyberLink Corp. -> CyberLink Corp.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4144395810-2636979439-2375846866-1001\...\MountPoints2: {adf3303f-d522-11ec-9d18-e09467b30690} - "E:\OnePlus_setup.exe" /s
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.93\Installer\chrmstp.exe [2023-05-10] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\65.0.405.162\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7478.89\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0E9D283D-7117-4A05-B69B-B1471B3720F5} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [736696 2015-09-30] (CyberLink Corp. -> CyberLink Corp.)
Task: {1000450F-B436-48A9-B227-4D226D9B3DFE} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\Program Files\CUAssistant\culauncher.exe (Pas de fichier)
Task: {12BF2743-C49E-4DFC-AECF-B4BC94748D8E} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {1C84E273-DC54-412A-A3BC-6F9A7786C00E} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {23C75E44-8ECF-4B12-8EF8-0C5A57DFBAE8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {242B3A36-D99B-4FB7-9BAE-D9F265B5BF8C} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {24F570ED-B5D5-48C1-A496-BA12D33EACAF} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [270272 2015-07-18] (LENOVO -> Lenovo)
Task: {29A7284F-48DF-438E-9175-C1C4FAEBF29D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30F178EA-BED5-4605-BF30-BA4E395B024B} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {387BED2E-C7D1-418B-B215-28CEE1404F72} - System32\Tasks\{92E76AEA-D51F-4FFA-BEEB-AD3865C97648} => C:\Windows\system32\pcalua.exe [53760 2023-04-21] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\user\Downloads\win64_154022.4424.exe -d C:\Users\user\Downloads
Task: {47C96D01-1A3C-48E9-ABD8-F77E5C742730} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {48DBF01A-76F4-4661-BA7D-E250352F1FC2} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {5178593C-10B3-4DF9-A054-E3D9C30592B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5192A8E9-90F5-4335-A13B-BEC3A744F034} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4144395810-2636979439-2375846866-1001
Task: {51C9A934-06DA-42C9-8513-8346ABDFC884} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {563BCC9D-2D88-44B7-AB6C-94E09DADFB4D} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {57798601-160D-4337-B761-C1BF72FC074F} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {5ABF5D77-5AA9-4EA6-849D-A4FCB25BCFDC} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [744800 2017-04-28] (LENOVO -> Lenovo(beijing) Limited)
Task: {62A2D029-1E8C-4CB4-90F4-0DDA44DA532E} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4144395810-2636979439-2375846866-1001 => C:\Users\user\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {65A9C211-BE99-4805-91A5-4AD6D3C89F74} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ed2e23eb-faa8-4944-b4ea-e66f40278880 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {6D46E576-4CC3-4B15-AC81-38323CFBCA3E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {6E7DA387-E54C-476B-8218-6BAE755BE0BE} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9465792 2015-07-18] (LENOVO -> )
Task: {7274C41E-CE48-4391-B4E9-4364005FAD5D} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe [71680 2022-05-10] (Microsoft Windows -> Microsoft Corporation) -> C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {750A628B-88CF-4B47-A74A-E9B01AF6F0F9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {814F7350-7432-4467-9A31-35A36F93F7AF} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {839B63C5-B909-4B61-A4A2-85FFED04FD21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-13] (Google Inc -> Google Inc.)
Task: {87DBC6F7-AE2B-47BC-B76E-F379779B026F} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {8A4B5E3B-5A3D-4B4B-BBC2-2E57C096F82E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DA43A89-8CC3-4D03-AB5F-89E49806AFDE} - System32\Tasks\Intel PTT EK Recertification
Task: {9442C213-AC7F-4806-8F4D-6BD733F85132} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {97E3E7D5-A928-486B-876B-5460E1C2346C} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-18] (LENOVO -> Lenovo)
Task: {9AA0DBC5-87EE-4F05-A552-7391CC1DA996} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-13] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A1A288A6-DDA5-447B-9D7F-42ECB3422DC2} - System32\Tasks\{60AE0699-3489-45CB-8A45-A651F3355030} => c:\program files (x86)\mozilla firefox\firefox.exehxxps://www.skype.com/go/downloading?source=lightinstaller&ver=7.39.0.102&LastError=12007
Task: {A3807595-E382-471A-9218-31A1FAAAE806} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A92F0650-7799-41A7-A61D-FBFFD41DC1D0} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {AFF68B5A-6AA4-4931-9AB7-8C48370AB9C5} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {B1C02C46-2855-495B-98BD-D8C19173D5C1} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {BB452F82-0B01-48C5-B385-544CEC649E29} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2f80efb4-b342-49a8-963a-5a608db8ae5f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {BE19D36B-CA77-40CA-AEBF-3777A92438D5} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-13] (Mozilla Corporation -> Mozilla Foundation)
Task: {BECBB432-FB3F-4647-8C31-421B8E5BC688} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c4d3d392-6475-4f18-bb2e-ec6a7b48a305 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C0115CA0-79EA-4387-B145-A4AF2FCA8DD7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {C024F8B8-338F-4798-A152-5BC0B1CE5D05} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exeVantageTelemetryAddinTask
Task: {C1207CB9-50B5-4EB6-B158-82405F011322} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9465792 2015-07-18] (LENOVO -> )
Task: {C8BF0C56-D480-44E9-B851-4D3318C505E0} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2016-12-23] (LENOVO -> Lenovo)
Task: {D6462FF2-85B4-4399-A27B-FD3FF5EADFD5} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {D93E71B4-9A10-46A2-94D1-8BDFEE87E31D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-13] (Google Inc -> Google Inc.)
Task: {DB159DE5-78B1-46B7-AF0A-0AA68C291B8D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\704c29de-f6ae-40ed-9b7d-61f274ed0394 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {E7B0C3D6-0422-4ED7-B11E-B6832F6E5E08} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {E84E1D32-3583-4BCA-89C2-A25C4B9A9B83} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384 2015-07-18] (LENOVO -> Lenovo)
Task: {F8AA88C6-5AC4-4B45-8E7A-87327B5DDE9C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FBD726E0-270D-4979-B4EC-467ACC3257B9} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {FFD0BFE3-3699-4BEB-B3E8-0D9DDC15C6CB} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [S-1-5-21-4144395810-2636979439-2375846866-1001] => 193.190.127.247:3128
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{07f3ec35-5a2d-4dbf-8bb2-275afb1b9c8f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1bd67438-907b-48d5-a22b-ebccd923ffdc}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d94b4a17-7c5c-4977-9038-3ea7d87dffbc}: [DhcpNameServer] 150.211.1.2
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
DownloadDir: C:\Users\user\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-15]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]

FireFox:
========
FF DefaultProfile: mhjojk8h.default-1611129788965
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ttz5svvk.default-release-1611248108966 [2023-05-15]
FF DownloadDir: C:\Users\user\Downloads
FF NetworkProxy: Mozilla\Firefox\Profiles\ttz5svvk.default-release-1611248108966 -> http", "35.190.216.116"
FF Extension: (Désactivation de Google Analytics) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ttz5svvk.default-release-1611248108966\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2021-08-03] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\mhjojk8h.default-1611129788965 [2023-05-15]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]

Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2023-05-14]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-04-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Brave:
=======
BRA Profile: C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-05-10]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-06-19]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-06-19]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-06-19]
BRA Extension: (PDF Viewer) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2019-06-19]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-06-19]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
S3 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [194048 2017-04-10] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 GameRecorderSVC; C:\Program Files\Lenovo\Nerve Center\bin\x86\GameRecorderSVC.exe [392032 2017-04-28] (LENOVO -> Lenovo(beijing) Limited)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-13] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-07-18] (LENOVO -> Lenovo)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242256 2014-08-20] (Huawei Technologies Co., Ltd. -> )
R2 O2FLASH; C:\WINDOWS\SysWOW64\drivers\o2flash.exe [82096 2015-05-21] (O2Micro -> BayHubTech/O2Micro International)
R2 PluginLoaderSvc; C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe [966496 2017-04-28] (LENOVO -> Lenovo(beijing) Limited)
R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [194168 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Apowersoft_AudioDevice; C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 FBNetFilter; C:\Windows\system32\Drivers\FBNetFlt.sys [46576 2017-04-28] (Lenovo (Beijing) Co., Ltd. -> Lenovo(beijing) Limited)
R3 MpKsl54457722; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9B04E139-4FEA-428B-A188-6D38B5E03DFF}\MpKslDrv.sys [212264 2023-05-15] (Microsoft Windows -> Microsoft Corporation)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2020-09-02] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [57768 2021-04-15] (Windscribe Limited -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-05-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-05-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-15] (Microsoft Windows -> Microsoft Corporation)
S3 windtun420; C:\WINDOWS\System32\drivers\windtun420.sys [47544 2021-04-15] (Windscribe Limited -> WireGuard LLC)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-15 18:18 - 2023-05-15 18:20 - 000035263 _____ C:\Users\user\Desktop\FRST.txt
2023-05-15 13:07 - 2023-05-15 13:07 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2023-05-15 13:04 - 2023-05-15 13:04 - 000263576 _____ (AVAST Software) C:\Users\user\Downloads\avast_free_antivirus_setup_online.exe
2023-05-15 10:55 - 2023-05-15 10:55 - 000187691 _____ C:\Users\user\Downloads\bank_info.pdf
2023-05-15 10:17 - 2023-05-15 10:17 - 000000000 ____D C:\Users\user\AppData\Local\OneDrive
2023-05-14 22:52 - 2023-05-15 18:19 - 000000000 ____D C:\FRST
2023-05-14 22:46 - 2023-05-14 22:46 - 002382848 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2023-05-13 21:17 - 2023-05-13 21:17 - 108066778 _____ C:\Users\user\Desktop\Gala1561.pdf
2023-05-13 17:23 - 2023-05-13 17:23 - 000000000 ___HD C:\$WinREAgent
2023-05-13 17:15 - 2023-05-14 20:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-11 12:27 - 2023-05-11 12:22 - 108715605 _____ C:\Users\user\Desktop\PARIS MATCH.pdf
2023-05-11 12:27 - 2023-05-11 12:22 - 107538212 _____ C:\Users\user\Desktop\VALEURS ACTUELLES.pdf
2023-05-10 11:21 - 2023-05-10 11:20 - 107276841 _____ C:\Users\user\Desktop\POINTS DE VUE.pdf
2023-05-10 10:19 - 2023-05-10 10:18 - 037883775 _____ C:\Users\user\Desktop\ICI-PARIS,.pdf
2023-05-07 10:39 - 2023-05-07 10:39 - 000000000 ____D C:\Users\user\UrbanVPN
2023-05-07 10:39 - 2023-05-07 10:39 - 000000000 ____D C:\Users\user\AppData\Local\AdvinstAnalytics
2023-05-06 13:58 - 2023-05-06 14:16 - 108667362 _____ C:\Users\user\Desktop\Gala1560.pdf
2023-05-04 11:29 - 2023-05-04 11:27 - 108646728 _____ C:\Users\user\Desktop\VALEUR ACTUELLES.pdf
2023-05-04 11:29 - 2023-05-04 11:27 - 107135667 _____ C:\Users\user\Desktop\Paris.Match.3861.pdf
2023-05-03 12:33 - 2023-05-03 12:32 - 106592945 _____ C:\Users\user\Desktop\POINT-DE VUE.pdf
2023-05-03 12:33 - 2023-05-03 12:31 - 107731156 _____ C:\Users\user\Desktop\ICI PARIS.pdf
2023-04-30 09:13 - 2023-04-30 09:13 - 106948093 _____ C:\Users\user\Desktop\Gala1559.pdf
2023-04-27 09:40 - 2023-04-27 09:57 - 108332344 _____ C:\Users\user\Desktop\VALEURS ACTUELLE.pdf
2023-04-27 09:40 - 2023-04-27 09:57 - 107277063 _____ C:\Users\user\Desktop\PARIS-MATCH.pdf
2023-04-26 10:58 - 2023-04-26 11:15 - 108094836 _____ C:\Users\user\Desktop\POINT -DE-VUE.pdf
2023-04-26 10:58 - 2023-04-26 11:15 - 107088774 _____ C:\Users\user\Desktop\ICI-PARIS.pdf
2023-04-24 10:06 - 2023-04-24 10:06 - 055154517 _____ C:\Users\user\Downloads\Épisode 15 - Les Real Housewives[via torchbrowser.com].mp4.torchdownload

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-15 18:18 - 2022-02-09 22:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-15 18:13 - 2016-12-23 15:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-15 18:11 - 2022-05-10 19:13 - 002668956 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-15 18:11 - 2022-05-10 17:57 - 000739544 _____ C:\WINDOWS\system32\perfh007.dat
2023-05-15 18:11 - 2022-05-10 17:57 - 000152460 _____ C:\WINDOWS\system32\perfc007.dat
2023-05-15 18:11 - 2019-12-07 16:49 - 000792932 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-15 18:11 - 2019-12-07 16:49 - 000150062 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-15 18:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-15 18:07 - 2022-05-10 19:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-15 18:07 - 2020-12-08 00:31 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-15 18:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-05-15 18:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-15 18:07 - 2018-04-10 23:08 - 000000000 ____D C:\Users\user\AppData\Local\AVAST Software
2023-05-15 18:07 - 2016-12-24 10:08 - 000000000 ____D C:\ProgramData\AVAST Software
2023-05-15 18:07 - 2016-12-23 12:38 - 000000000 __SHD C:\Users\user\IntelGraphicsProfiles
2023-05-15 18:07 - 2015-12-23 18:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-15 18:06 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-05-15 18:06 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-05-15 17:58 - 2020-06-03 19:49 - 000000000 ____D C:\Users\user\AppData\Local\ClassicShell
2023-05-15 13:16 - 2016-12-23 16:59 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Word
2023-05-15 13:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-15 13:06 - 2017-01-01 23:35 - 000000000 ____D C:\Program Files\AVAST Software
2023-05-15 12:33 - 2022-05-10 19:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-05-15 10:18 - 2018-06-09 23:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-05-15 10:12 - 2015-12-23 17:49 - 000000000 ____D C:\ProgramData\McAfee
2023-05-15 10:09 - 2020-05-31 17:45 - 000803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-05-15 10:09 - 2015-12-23 18:33 - 000000000 ____D C:\Program Files (x86)\Intel
2023-05-14 22:42 - 2022-05-10 19:11 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-05-14 22:42 - 2022-05-10 19:11 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-05-14 22:42 - 2022-05-10 19:11 - 000002298 _____ C:\WINDOWS\system32\Tasks\{60AE0699-3489-45CB-8A45-A651F3355030}
2023-05-14 20:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-05-14 20:05 - 2021-01-21 18:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-14 18:30 - 2018-07-09 20:19 - 000000000 ____D C:\ProgramData\Packages
2023-05-14 11:49 - 2018-06-19 20:44 - 000000000 ____D C:\Users\user\Documents\Nouveau dossier
2023-05-13 23:29 - 2018-09-08 15:23 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2023-05-13 23:15 - 2023-01-08 19:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-05-13 23:15 - 2023-01-08 19:54 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-05-13 22:56 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-13 17:41 - 2021-01-21 18:55 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-13 17:40 - 2022-08-12 06:04 - 000449912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-13 17:39 - 2022-05-10 17:57 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2023-05-13 17:39 - 2022-05-10 17:56 - 000000000 ____D C:\WINDOWS\system32\de
2023-05-13 17:39 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-13 17:39 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-13 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-13 17:38 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-13 17:34 - 2022-05-10 19:03 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-13 17:23 - 2022-08-13 19:51 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-13 17:23 - 2017-01-02 00:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-13 17:05 - 2017-01-02 00:35 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-05-11 12:00 - 2016-12-23 12:38 - 000000000 ___SD C:\Users\user\AppData\Roaming\Microsoft\Credentials
2023-05-10 11:30 - 2016-12-23 21:43 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
2023-05-09 20:48 - 2022-11-30 18:41 - 000000000 ____D C:\Program Files\Common Files\FlashIntegro
2023-05-09 20:47 - 2021-01-17 19:18 - 000000000 ____D C:\Users\user\AppData\Local\Opera Software
2023-05-09 20:47 - 2021-01-17 19:17 - 000000000 ____D C:\Users\user\AppData\Roaming\Opera Software
2023-05-09 20:16 - 2017-12-16 21:28 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2023-05-06 23:12 - 2018-01-19 10:16 - 000000000 ____D C:\Users\user\Downloads\tReal Housewives
2023-04-30 13:10 - 2016-12-23 23:59 - 000000000 ____D C:\Users\user\Documents\Bibliothèque calibre
2023-04-23 23:24 - 2023-03-22 14:59 - 000000000 ____D C:\Users\user\AppData\Roaming\Zoom
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-04-21 23:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-04-18 10:20 - 2021-12-07 20:32 - 000000000 ____D C:\Users\user\AppData\Local\LenovoServiceBridge
2023-04-15 23:20 - 2016-12-23 20:19 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla

==================== Fichiers à la racine de certains dossiers ========

2018-05-20 22:37 - 2011-05-23 11:48 - 006150331 _____ (Xvid Team) C:\Program Files (x86)\autoupdate-windows.exe
2018-05-20 22:37 - 2008-05-25 15:39 - 000006144 _____ () C:\Program Files (x86)\AviC.exe
2018-05-20 22:37 - 2011-01-17 21:41 - 000008192 _____ () C:\Program Files (x86)\CheckUpdate.exe
2018-05-20 22:37 - 2011-02-16 22:31 - 000015227 _____ () C:\Program Files (x86)\LICENSE
2018-05-20 22:37 - 2008-05-25 15:39 - 000023040 _____ () C:\Program Files (x86)\MiniCalc.exe
2018-05-20 22:37 - 2008-05-25 15:39 - 000009216 _____ () C:\Program Files (x86)\OGMCalc.exe
2018-05-20 22:37 - 2011-06-01 12:57 - 000000607 _____ () C:\Program Files (x86)\releasenotes.txt
2018-05-20 22:37 - 2008-05-25 15:39 - 000013824 _____ () C:\Program Files (x86)\StatsReader.exe
2018-05-20 22:37 - 2008-05-25 15:39 - 000001496 _____ () C:\Program Files (x86)\statsreader.txt
2018-05-20 22:37 - 2018-05-20 22:39 - 000000965 _____ () C:\Program Files (x86)\Uninstall Xvid Video Codec.lnk
2018-05-20 22:37 - 2018-05-20 22:39 - 003525756 _____ (Xvid Team) C:\Program Files (x86)\uninstall.exe
2018-05-20 22:37 - 2011-06-01 12:46 - 000000124 _____ () C:\Program Files (x86)\update.ini
2018-05-20 22:37 - 2008-05-25 15:39 - 000008704 _____ () C:\Program Files (x86)\vidccleaner.exe
2018-05-20 22:37 - 2011-05-16 11:35 - 000007406 _____ () C:\Program Files (x86)\xvid.ico
2018-05-20 22:37 - 2011-05-16 11:35 - 000002338 _____ () C:\Program Files (x86)\xvid.inf
2018-05-20 22:37 - 2018-05-20 22:39 - 000000046 _____ () C:\Program Files (x86)\xvidhomepage.url
2018-05-20 22:37 - 2011-05-23 09:46 - 000144384 _____ () C:\Program Files (x86)\xvid_encraw.exe
2018-05-20 22:37 - 2008-05-25 15:39 - 000002967 _____ () C:\Program Files (x86)\Xvid_Quant_Matrices.zip
2022-07-22 18:55 - 2022-07-22 19:00 - 000000102 _____ () C:\Users\user\AppData\Roaming\Camdata.ini
2022-07-22 18:55 - 2022-07-22 19:00 - 000000408 _____ () C:\Users\user\AppData\Roaming\CamLayout.ini
2022-07-22 18:55 - 2022-07-22 19:00 - 000000408 _____ () C:\Users\user\AppData\Roaming\CamShapes.ini
2022-07-22 18:53 - 2022-07-22 19:00 - 000004549 _____ () C:\Users\user\AppData\Roaming\CamStudio.cfg
2022-07-22 18:56 - 2022-07-22 18:56 - 000000098 _____ () C:\Users\user\AppData\Roaming\CamStudio.Producer.command
2022-07-22 18:56 - 2022-07-22 18:56 - 000000000 _____ () C:\Users\user\AppData\Roaming\CamStudio.Producer.Data.ini
2022-07-22 18:56 - 2022-07-22 18:56 - 000001206 _____ () C:\Users\user\AppData\Roaming\CamStudio.Producer.ini
2022-07-22 18:35 - 2022-07-22 18:55 - 000000096 _____ () C:\Users\user\AppData\Roaming\version2.xml
2023-04-13 23:34 - 2023-04-13 23:34 - 000001115 _____ () C:\Users\user\AppData\Local\Local - Raccourci.lnk

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================