Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 07-02-2021 01
Exécuté par nardi (administrateur) sur BATIELEC (LENOVO 20NB001AFR) (07-02-2021 17:33:22)
Exécuté depuis C:\Users\nardi\Desktop
Profils chargés: nardi
Platform: Windows 10 Pro Version 20H2 19042.746 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\LegrandGroup\ACWEBTool\ACWEBTool.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.0.188.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.0.188.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\HPDesignJetUtility.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7177cf092021a5b2\OneApp.IGCC.WinService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_79ffdc5b7f66bb58\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4b51e370351f9e4f\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4b51e370351f9e4f\IntelCpHeciSvc.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_fafb1d329fdfe2c6\aesm_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_62cf4e1fc023f9a9\driver\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN0CFB~1.INF\driver\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN0CFB~1.INF\driver\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LITSSvc.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\LAClient\laclient.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MpCmdRun.exe <2>
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\NisSrv.exe
(Opera Software AS -> Opera Software) C:\Users\nardi\AppData\Local\Programs\Opera\73.0.3856.344\opera.exe <17>
(Opera Software AS -> Opera Software) C:\Users\nardi\AppData\Local\Programs\Opera\73.0.3856.344\opera_crashreporter.exe
(pCloud AG -> pCloud AG) C:\Program Files\pCloud Drive\pCloud.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\AFA\CAudioFilterAgent64.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\Flow.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\SA3\SmartAudio3.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\SACmd\SASrv.exe
(Synaptics Incorporated -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2019\Snagit32.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2019\SnagitEditor.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2019\SnagPriv.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [DisplayLinkTrayApp] => C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe [2730928 2020-09-08] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-11-24] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [224376 2020-12-07] (Bitdefender SRL -> Bitdefender)
HKLM\...\Run: [TechSmithSnagit] => C:\Program Files\TechSmith\Snagit 2019\Snagit32.exe [8940000 2020-07-29] (TechSmith Corporation -> TechSmith Corporation)
HKLM\...\Run: [CL-24-6E2FA587-70EA-4DD6-8FB0-983EB47B4097] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\CL-24-6E2FA587-70EA-4DD6-8FB0-983EB47B4097\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-24-6E2FA587-70EA-4DD6-8FB0-983EB47 (l'élément de données a 7 caractères en plus).
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2013-03-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1944576 2013-03-07] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [RunPUMonitor] => C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\HPDesignJetUtility.exe [515560 2020-07-08] (HP Inc. -> HP Development Company, L.P.)
HKU\S-1-5-21-1067856238-1444573327-3062315761-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3863272 2020-09-01] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-1067856238-1444573327-3062315761-1001\...\Run: [Opera Browser Assistant] => C:\Users\nardi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1067856238-1444573327-3062315761-1001\...\Run: [eM Client] => C:\Program Files (x86)\eM Client\MailClient.exe [278632 2021-01-27] (eM Client, s.r.o. -> eM Client s.r.o.)
HKU\S-1-5-21-1067856238-1444573327-3062315761-1001\...\MountPoints2: {b86ac967-52a7-11eb-9044-087190c1dde6} - "G:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2152192 2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\88.1.19.92\Installer\chrmstp.exe [2021-02-06] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-3605AD5C0A0C}] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
GroupPolicy: Restriction ? <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0E25E4D8-A134-4CFA-9E80-22CE1ECF61BB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {0E925EC2-7231-4C53-BD13-EDB0C6EDE32C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {11EC0C5F-B79B-4E0C-9827-62A2ADA52096} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {1557A6F4-40C6-4761-906C-629C500B5F33} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {199B83E0-67BA-4FC7-8894-B1BA5C381CBF} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {199EF64A-1995-425C-9304-9A67E31451D1} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\Windows\SysWOW64\PowerMgrInst.exe [62152 2020-12-20] (Lenovo -> )
Task: {1B3B8F88-7859-4680-B1F3-868C8FCE7956} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {2C9047EA-F331-4ADA-A57A-235A3BD3591C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe
Task: {3D69D2AB-B75E-4715-A32E-0B596CA35FFB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {3DBDEFAF-E945-4AB0-9BFD-7A7AA3523E9C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199272 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {432A3D06-750B-494A-8D09-87A61580B522} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\05f79cae-1040-46fb-aa1c-394788085918 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {4669D49A-93B3-4003-91D6-97A24FDDFC55} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {483A351B-DEE5-4BD5-8990-FC5248574AC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {488BB12C-C787-4FF6-9B46-7247A5778DDD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142184 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4DE23AB3-1FCE-4D41-809C-97A3DF2CC08D} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144280 2020-12-29] (Lenovo -> Lenovo Group Ltd.)
Task: {59538E53-D14E-49CA-8385-2AE0A96EFB6C} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112840 2020-12-20] (Lenovo -> Lenovo)
Task: {597C28CB-A2AC-4F7E-9EB3-18CD0DEF5121} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5DF6FC71-78C6-4684-A96B-FDD7F0191DAC} - System32\Tasks\Opera scheduled Autoupdate 1601613858 => C:\Users\nardi\AppData\Local\Programs\Opera\launcher.exe [1583256 2021-01-14] (Opera Software AS -> Opera Software)
Task: {67D70E50-59FF-4497-A1FA-5728475D5996} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [895080 2020-10-28] (Bitdefender SRL -> Bitdefender)
Task: {74515C04-6275-40D2-BA70-E0BD74AD1D5E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {754AF393-9F79-4863-927E-D9B8611E1246} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {8E5B71EF-04A9-4C8E-9225-886971599C95} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {91193391-20F2-4947-BA03-E187239671AA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142184 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9689C117-371C-40ED-A63A-2DD036A7E7A2} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [61872 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {9DCED41C-7DC4-4219-A7DF-EA1512D939B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A06D740F-3D06-43E9-BD9D-F21FD4602B0A} - System32\Tasks\Opera scheduled assistant Autoupdate 1601613860 => C:\Users\nardi\AppData\Local\Programs\Opera\launcher.exe [1583256 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\nardi\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A4962AF4-BFA4-4B70-8411-705DF5DEF91F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b6212d02-9b96-4607-b458-870f72c3326b => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {B8E91DC1-0ED0-4752-87C1-8B24D702F243} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC2EF69C-E048-434F-B236-B2AA68A2B8D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\946ee2b8-02e3-4089-8fb3-83053fa32ee2 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {BD5E21CB-7E2E-4D9C-8EAA-F94599A25111} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-01-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {D9DBA6A8-F53F-4AB4-B439-515EFC8D176A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {E64CA591-F7A0-4D84-A1AF-51FEDC02CEAE} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6b642c31-ab0c-4086-a328-de1cf3bdbf3c => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {E71A974C-FAC7-4970-9B67-20686344F972} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199272 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE6FCDF9-443F-4869-BEC3-FAD1CF2A7FE3} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\ScheduleEventAction.exe [15768 2020-12-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F42FE52C-705F-40BC-AEC9-CF0D11A7A4CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Framework => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{5be9789f-0c7b-4459-9a52-2ee82f170525}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{7f2303ea-b3ca-47c6-bb58-b38cf45c86c8}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{84a4f1aa-465e-415b-b927-1be48237c812}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{87b659eb-5dae-4d3d-a2a9-2b4c925d9d34}: [DhcpNameServer] 10.0.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nardi\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-02]
Edge HomePage: Default -> hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: kezc5ewg.default
FF DefaultProfile: 0lj4fk6e.default
FF ProfilePath: C:\Users\nardi\AppData\Roaming\PostboxApp\Profiles\kezc5ewg.default [2021-02-07]
FF Extension: (Dictionnaire français) - C:\Users\nardi\AppData\Roaming\PostboxApp\Profiles\kezc5ewg.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2020-10-02] []
FF Extension: (Cloud Service Providers for Postbox) - C:\Users\nardi\AppData\Roaming\PostboxApp\Profiles\kezc5ewg.default\Extensions\pbfilelink@postbox-inc.com.xpi [2021-01-21] [] [non signé]
FF ProfilePath: C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\0lj4fk6e.default [2020-10-02]
FF NewTab: Mozilla\Firefox\Profiles\0lj4fk6e.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171001&iDate=2020-10-02 03:45:46&bName=&bitmask=0600
FF ProfilePath: C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release [2021-02-07]
FF NewTab: Mozilla\Firefox\Profiles\9613f9fc.default-release -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171001&iDate=2020-10-02 03:45:46&bName=&bitmask=0600
FF Extension: (Ant Video downloader) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\anttoolbar@ant.com.xpi [2021-01-30]
FF Extension: (FoxReplace) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\fox@replace.fx.xpi [2020-10-02]
FF Extension: (uBlock Origin) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-02-05]
FF Extension: (Logitech SetPoint) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2020-12-13]
FF Extension: (Video DownloadHelper) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-21]
FF Extension: (Téléchargez les vidéos Dailymotion) - C:\Users\nardi\AppData\Roaming\Mozilla\Firefox\Profiles\9613f9fc.default-release\Extensions\{f17159cf-e1b2-4f87-8adb-cd0cda9669b1}.xpi [2020-10-02]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-12-18] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1067856238-1444573327-3062315761-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1067856238-1444573327-3062315761-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1067856238-1444573327-3062315761-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Opera:
=======
OPR Profile: C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable [2021-02-07]
OPR Notifications: Opera Stable -> hxxps://allhugefeed.com; hxxps://business.facebook.com; hxxps://web.skype.com; hxxps://web.whatsapp.com; hxxps://www.20minutes.fr; hxxps://www.facebook.com; hxxps://www.fnac.com; hxxps://www.gearbest.com; hxxps://www.gentside.com; hxxps://www.maisonsdumonde.com; hxxps://www.messenger.com; hxxps://www.pinterest.fr; hxxps://www.tirexo.pro; hxxps://www.zone-telechargement.al
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Bitwarden - Gestionnaire de mots de passe gratuit) - C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccnckbpmaceehanjmeomladnmlffdjgn [2020-12-30]
OPR Extension: (Rich Hints Agent) - C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-23]
OPR Extension: (Installer des extensions Chrome) - C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-12-27]
OPR Extension: (Notion Web Clipper) - C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable\Extensions\knheggckgoiihginacbkhaalnibhilkk [2020-12-31]
OPR Extension: (Chrome Media Router) - C:\Users\nardi\AppData\Roaming\Opera Software\Opera Stable\Extensions\pphjpkjjljnllpnebififokmoejkeahp [2021-01-22]

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-02-01]
BRA DefaultSearchKeyword: Default -> :g
BRA Extension: (Bitdefender Wallet) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2020-11-15]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-23]
BRA Extension: (Bitdefender Anti-tracker) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2020-11-15]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-02-01]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-02-01]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-11-22]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-02-01]
BRA Extension: (Brave User Model Installer) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\hbejpnagkgeeohiojniljejpdpojmfdp [2021-01-25]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2020-11-15]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-11-15]
BRA Extension: (Brave NTP sponsored images) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-02-01]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\nardi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-02-01]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ACWEBTool; C:\Program Files (x86)\LegrandGroup\ACWEBTool\ACWEBTool.exe [69120 2016-06-10] () [Fichier non signé]
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [197624 2020-11-02] (Pango Inc. -> AnchorFree Inc.)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [250392 2020-12-07] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-15] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-15] (Brave Software, Inc. -> BraveSoftware Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8902024 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
R2 CxAudioSvc; C:\Windows\CxSvc\CxAudioSvc.exe [84840 2020-08-20] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxAudMsg; C:\Windows\System32\CxAudMsg64.exe [234856 2020-08-20] (Synaptics Incorporated -> Conexant Systems Inc.)
R2 CxUIUSvc; C:\Windows\System32\CxUIUSvc64.exe [113464 2020-08-20] (Synaptics Incorporated -> Conexant Systems, Inc.)
R2 DolbyDAXAPI; C:\Windows\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
R2 Lenovo Instant On; C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351304 2020-12-20] (Lenovo -> Lenovo Group Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe [20880 2020-12-28] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\Windows\System32\LITSSvc.exe [927936 2020-11-16] (Lenovo -> Lenovo.)
S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [898760 2020-10-13] (Lenovo -> Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-05] (Malwarebytes Inc -> Malwarebytes)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1355768 2020-10-28] (Bitdefender SRL -> Bitdefender)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3658832 2019-06-28] (TechSmith Corporation -> TechSmith Corporation)
R2 TPHKLOAD; C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_62cf4e1fc023f9a9\driver\TPHKLOAD.exe [427408 2020-04-03] (Lenovo -> Lenovo Group Limited)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746504 2020-10-16] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-10-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [96616 2020-04-27] (Bitdefender SRL -> BitDefender)
R1 cbfsconnect2017; C:\Windows\system32\drivers\cbfsconnect2017.sys [481296 2020-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 CYUSB3; C:\Windows\System32\Drivers\CYUSB3.sys [76520 2016-10-27] (Cypress Semiconductor Technology India Pvt Ltd. -> Cypress Semiconductor)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220600 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-06] (Malwarebytes Inc -> Malwarebytes)
R1 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [37976 2020-10-13] (Lenovo -> Lenovo.)
R3 rtump64x64; C:\Windows\System32\drivers\rtump64x64.sys [881760 2020-11-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 vl810filter; C:\Windows\System32\Drivers\vl810filter.sys [26176 2019-05-07] (VIA TECHNOLOGIES, INC. -> VIA Labs, Inc.)
R3 vpnpbus; C:\Windows\System32\drivers\vpnpbus.sys [20704 2019-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2020-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [428256 2020-10-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [69856 2020-10-01] (Microsoft Windows -> Microsoft Corporation)
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-07 17:33 - 2021-02-07 17:34 - 000039679 _____ C:\Users\nardi\Desktop\FRST.txt
2021-02-07 17:24 - 2021-02-07 17:24 - 000000000 ____D C:\Users\nardi\Desktop\FRST-OlderVersion
2021-02-07 17:20 - 2021-02-07 17:32 - 002297344 _____ (Farbar) C:\Users\nardi\Desktop\FRST64.exe
2021-02-07 17:15 - 2021-02-07 17:15 - 000003802 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2021-02-07 17:12 - 2021-02-07 17:12 - 000220600 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-02-07 15:49 - 2021-02-07 17:33 - 000000000 ____D C:\FRST
2021-02-07 11:42 - 2021-02-07 11:44 - 000000754 _____ C:\Users\nardi\Desktop\ZHPFix.txt
2021-02-07 11:39 - 2021-02-07 11:55 - 000444627 _____ C:\Users\nardi\Desktop\ZHPDiag.html
2021-02-07 11:39 - 2021-02-07 11:55 - 000391516 _____ C:\Users\nardi\Desktop\ZHPDiag.txt
2021-02-07 11:29 - 2021-02-07 11:55 - 000000000 ____D C:\Users\nardi\AppData\Roaming\ZHP
2021-02-07 11:29 - 2021-02-07 11:46 - 000000865 _____ C:\Users\nardi\Desktop\ZHPSuite.lnk
2021-02-07 11:29 - 2021-02-07 11:29 - 003480712 _____ (Nicolas Coolman) C:\Users\nardi\Desktop\ZHPSuite.exe
2021-02-07 11:29 - 2021-02-07 11:29 - 000000000 ____D C:\Users\nardi\AppData\Local\ZHP
2021-02-02 20:26 - 2021-02-02 20:26 - 000163805 _____ C:\Users\nardi\Downloads\dark-fire.emtheme
2021-02-02 20:26 - 2021-02-02 20:26 - 000111179 _____ C:\Users\nardi\Downloads\compucall-dark-2.0.emtheme
2021-02-02 19:05 - 2021-02-07 17:14 - 000000000 ____D C:\Users\nardi\AppData\Roaming\eM Client
2021-02-02 19:05 - 2021-02-03 06:25 - 000000000 ____D C:\Users\nardi\AppData\Local\eM Client
2021-02-02 19:02 - 2021-02-03 06:25 - 000000000 ____D C:\Program Files (x86)\eM Client
2021-02-02 07:13 - 2021-02-02 07:13 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-02-01 21:59 - 2020-11-06 17:19 - 000701992 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_quote_ex.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000700968 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_epid.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000695848 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_launch.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000105000 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_urts.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000057896 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_enclave_common.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000049192 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_platform.dll
2021-02-01 21:59 - 2020-11-06 17:19 - 000037928 _____ (Intel Corporation) C:\Windows\SysWOW64\sgx_uae_service.dll
2021-02-01 21:58 - 2020-11-30 01:08 - 019805016 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPRes.dll
2021-02-01 21:58 - 2020-11-30 01:08 - 004024664 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCpl.dll
2021-02-01 18:11 - 2021-02-01 18:11 - 000049137 _____ C:\Users\nardi\Downloads\Panier_modèle.xls
2021-01-31 16:18 - 2021-01-31 16:18 - 000000000 ____D C:\Users\nardi\AppData\Roaming\Apple Computer
2021-01-31 16:17 - 2021-01-31 16:17 - 000000000 ____D C:\Users\nardi\AppData\Local\Apeaksoft Studio
2021-01-31 16:17 - 2021-01-31 16:17 - 000000000 ____D C:\Program Files (x86)\Apeaksoft Studio
2021-01-31 15:59 - 2021-01-31 16:42 - 000000000 ____D C:\Users\nardi\AppData\Roaming\TechSmith
2021-01-31 15:59 - 2021-01-31 15:59 - 000000000 ____D C:\Users\nardi\AppData\Local\TechSmith
2021-01-31 15:46 - 2021-02-03 03:05 - 000000000 ____D C:\Program Files\TechSmith
2021-01-30 23:14 - 2021-02-07 17:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-26 18:38 - 2021-01-26 18:38 - 000000000 ____D C:\Program Files\Common Files\TechSmith Shared
2021-01-26 18:14 - 2021-01-26 18:14 - 000000000 ____D C:\Users\nardi\AppData\Local\VS Revo Group
2021-01-26 18:14 - 2021-01-26 18:14 - 000000000 ____D C:\Program Files\VS Revo Group
2021-01-26 18:14 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2021-01-18 21:03 - 2021-01-18 22:09 - 000000297 _____ C:\Users\nardi\d4ac4633ebd6440fa397b84f1bc94a3c.7z
2021-01-18 18:12 - 2021-01-18 22:07 - 000000000 ____D C:\Users\nardi\.android
2021-01-18 18:11 - 2021-01-18 22:07 - 000000000 ____D C:\Users\nardi\vmlogs
2021-01-18 18:11 - 2021-01-18 22:07 - 000000000 ____D C:\Users\nardi\AppData\Local\NoxSrv
2021-01-18 18:11 - 2021-01-18 18:11 - 000000066 _____ C:\Users\nardi\inittk.ini
2021-01-18 18:11 - 2021-01-18 18:11 - 000000053 _____ C:\Users\nardi\useruid.ini
2021-01-18 18:11 - 2021-01-18 18:11 - 000000045 _____ C:\Users\nardi\nuuid.ini
2021-01-18 18:11 - 2021-01-18 18:11 - 000000041 _____ C:\Users\nardi\inst.ini
2021-01-18 18:11 - 2021-01-18 18:11 - 000000000 ____D C:\Users\nardi\Nox_share
2021-01-18 18:10 - 2021-01-18 22:26 - 000000000 ____D C:\Program Files (x86)\Nox
2021-01-18 18:10 - 2021-01-18 18:10 - 000233968 _____ (Nox Limited Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys
2021-01-18 18:09 - 2021-01-18 22:26 - 000000000 ____D C:\Users\nardi\AppData\Local\Nox
2021-01-18 17:28 - 2021-01-18 17:28 - 000000000 ____D C:\Users\nardi\AppData\Local\BlueStacksSetup
2021-01-18 17:28 - 2021-01-18 17:28 - 000000000 ____D C:\Users\nardi\AppData\Local\Bluestacks
2021-01-14 06:52 - 2021-01-14 06:55 - 000000000 ____D C:\Users\nardi\Documents\Kutools for Excel
2021-01-14 06:52 - 2021-01-14 06:52 - 000000000 ____D C:\Users\nardi\AppData\Roaming\Kutools for Excel
2021-01-14 06:52 - 2021-01-14 06:52 - 000000000 ____D C:\Users\nardi\AppData\Local\KutoolsforExcel
2021-01-14 06:52 - 2021-01-14 06:52 - 000000000 ____D C:\Program Files (x86)\Kutools for Excel
2021-01-14 00:15 - 2021-01-14 00:15 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000729600 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-14 00:15 - 2021-01-14 00:15 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-14 00:15 - 2021-01-14 00:15 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-14 00:15 - 2021-01-14 00:15 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-14 00:15 - 2021-01-14 00:15 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000467968 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000455680 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-14 00:15 - 2021-01-14 00:15 - 000235520 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000234496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-14 00:15 - 2021-01-14 00:15 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-01-14 00:15 - 2021-01-14 00:15 - 000157184 _____ C:\Windows\system32\uwfcsp.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000138056 _____ C:\Windows\system32\HvsiManagementApi.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-01-14 00:15 - 2021-01-14 00:15 - 000101704 _____ C:\Windows\SysWOW64\HvsiManagementApi.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000095744 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-14 00:15 - 2021-01-14 00:15 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-14 00:15 - 2021-01-14 00:15 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-01-14 00:15 - 2021-01-14 00:15 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000053760 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-01-14 00:15 - 2021-01-14 00:15 - 000010894 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-01-14 00:14 - 2021-01-14 00:14 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 001162240 _____ C:\Windows\system32\MBR2GPT.EXE
2021-01-14 00:14 - 2021-01-14 00:14 - 000643072 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 000562688 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-14 00:14 - 2021-01-14 00:14 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-14 00:14 - 2021-01-14 00:14 - 000455168 _____ C:\Windows\system32\ssdm.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 000422912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-14 00:14 - 2021-01-14 00:14 - 000330752 _____ C:\Windows\SysWOW64\ssdm.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 000306688 _____ C:\Windows\system32\HeatCore.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-14 00:14 - 2021-01-14 00:14 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-01-14 00:14 - 2021-01-14 00:14 - 000190976 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-01-14 00:14 - 2021-01-14 00:14 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-14 00:14 - 2021-01-14 00:14 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-14 00:14 - 2021-01-14 00:14 - 000152064 _____ C:\Windows\system32\EoAExperiences.exe
2021-01-14 00:14 - 2021-01-14 00:14 - 000074240 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-01-12 04:07 - 2020-12-20 22:57 - 005408968 _____ (Lenovo Group Limited) C:\Windows\SysWOW64\PWMTR32V.dll
2021-01-12 04:07 - 2020-12-20 22:57 - 002351304 _____ (Lenovo Group Limited) C:\Windows\SysWOW64\EasyResume.exe
2021-01-09 15:28 - 2021-01-09 15:28 - 000000000 ____D C:\Users\nardi\AppData\Local\Downloaded Installations
2021-01-09 15:27 - 2021-01-09 15:28 - 000075941 _____ C:\Windows\unins000.dat
2021-01-09 15:27 - 2021-01-09 15:21 - 002929873 _____ C:\Windows\unins000.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-07 17:32 - 2020-10-23 20:20 - 000004164 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{A8246BF8-23D8-478B-A321-64EED8450869}
2021-02-07 17:20 - 2020-10-01 06:35 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-07 17:20 - 2019-12-07 15:49 - 000792952 _____ C:\Windows\system32\perfh00C.dat
2021-02-07 17:20 - 2019-12-07 15:49 - 000150082 _____ C:\Windows\system32\perfc00C.dat
2021-02-07 17:20 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-02-07 17:13 - 2020-10-01 06:37 - 000000000 __SHD C:\Users\nardi\IntelGraphicsProfiles
2021-02-07 17:12 - 2020-10-06 16:42 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-07 17:12 - 2020-10-02 05:50 - 000000000 ____D C:\Program Files\Bitdefender
2021-02-07 17:12 - 2020-10-01 06:37 - 000000000 ____D C:\Intel
2021-02-07 17:12 - 2020-10-01 06:26 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-07 17:12 - 2020-10-01 06:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-07 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-02-07 17:12 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-02-07 17:11 - 2020-12-30 23:22 - 000000000 ____D C:\Users\nardi\AppData\Roaming\Bitwarden
2021-02-07 17:10 - 2020-10-01 21:48 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2021-02-07 17:09 - 2019-12-07 10:03 - 000065536 _____ C:\Windows\system32\config\ELAM
2021-02-07 17:00 - 2020-10-02 05:48 - 000000000 ____D C:\Users\nardi\AppData\LocalLow\Mozilla
2021-02-07 16:48 - 2020-10-01 06:26 - 001812952 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-07 16:47 - 2020-11-26 11:53 - 000000000 ____D C:\Users\nardi\AppData\Local\CrashDumps
2021-02-07 16:18 - 2020-10-02 20:06 - 000000000 ___RD C:\Users\nardi\iCloudDrive
2021-02-07 16:02 - 2020-10-02 06:35 - 000013245 _____ C:\Windows\BRRBCOM.INI
2021-02-07 15:20 - 2020-10-10 12:20 - 000005446 _____ C:\Windows\system32\InstallUtil.InstallLog
2021-02-07 13:06 - 2020-10-01 06:26 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-06 12:15 - 2021-01-05 06:22 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-02-06 04:35 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-06 04:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-02-03 07:51 - 2020-12-12 20:54 - 000000000 ____D C:\Users\nardi\AppData\Local\ElevatedDiagnostics
2021-02-03 03:05 - 2020-10-02 05:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-03 02:41 - 2020-10-26 21:59 - 000000000 ____D C:\Users\nardi\AppData\Local\D3DSCache
2021-02-02 23:30 - 2020-10-02 17:59 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-02 10:32 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-02-02 10:30 - 2020-11-10 19:11 - 000000074 _____ C:\Windows\SysWOW64\null
2021-02-01 21:59 - 2020-10-10 12:55 - 000000000 ____D C:\Windows\TempInst
2021-02-01 21:58 - 2020-11-16 11:21 - 000000039 _____ C:\Windows\SpiFlash.ini
2021-02-01 18:13 - 2020-10-01 06:37 - 000000000 ____D C:\Users\nardi\AppData\Local\Packages
2021-01-31 18:09 - 2020-12-30 23:22 - 000000000 ____D C:\Program Files\Bitwarden
2021-01-31 17:48 - 2020-10-01 06:39 - 000000000 ____D C:\Users\nardi\AppData\Local\PlaceholderTileLogoFolder
2021-01-31 17:46 - 2020-10-01 06:37 - 000000000 ____D C:\Users\nardi\AppData\Local\Publishers
2021-01-31 17:26 - 2020-10-01 17:38 - 000000000 ____D C:\Users\nardi\AppData\Local\Comms
2021-01-31 16:44 - 2020-12-31 18:19 - 000000000 ____D C:\Users\nardi\Documents\Snagit
2021-01-31 15:42 - 2020-10-02 06:12 - 000000000 ____D C:\Program Files (x86)\Postbox
2021-01-30 18:53 - 2020-12-31 16:18 - 000000000 ____D C:\Users\nardi\AppData\Roaming\Notion
2021-01-23 16:47 - 2020-12-31 21:16 - 000000000 ____D C:\Users\nardi\.VirtualBox
2021-01-23 16:42 - 2020-12-31 21:19 - 000000000 ____D C:\Users\nardi\VirtualBox VMs
2021-01-23 13:18 - 2020-12-30 23:22 - 000000000 ____D C:\Users\nardi\AppData\Local\bitwarden-updater
2021-01-19 17:36 - 2021-01-05 06:23 - 000000000 ____D C:\Users\nardi\AppData\LocalLow\IGDump
2021-01-18 22:26 - 2020-10-01 06:35 - 000000000 ____D C:\Users\nardi
2021-01-18 21:46 - 2020-11-28 15:38 - 000000000 ____D C:\Users\nardi\AppData\Local\JDownloader 2.0
2021-01-18 18:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Registration
2021-01-18 15:43 - 2020-10-02 05:44 - 000004194 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1601613858
2021-01-18 15:43 - 2020-10-02 05:44 - 000001393 _____ C:\Users\nardi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-01-17 22:59 - 2020-10-10 12:15 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-17 22:59 - 2020-10-10 12:15 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-14 18:58 - 2020-10-04 20:13 - 000000000 ____D C:\Users\nardi\AppData\Roaming\vlc
2021-01-14 00:43 - 2020-09-12 12:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-14 00:43 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-14 00:43 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-01-14 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-14 00:18 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-01-14 00:14 - 2020-10-01 06:29 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-01-13 23:15 - 2020-10-01 18:16 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 23:13 - 2020-10-01 18:16 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-11 22:00 - 2020-10-01 17:45 - 000000000 ____D C:\Windows\system32\icmsg
2021-01-11 21:13 - 2020-10-10 12:19 - 000429952 _____ (Lenovo Group Limited) C:\Windows\system32\iMDriverHelper.dll
2021-01-11 21:13 - 2020-10-10 12:19 - 000107952 _____ (Lenovo Group Ltd.) C:\Windows\system32\WudfUpdate_02000.dll
2021-01-11 21:13 - 2020-10-10 12:19 - 000107952 _____ (Lenovo Group Ltd.) C:\Windows\system32\ImController.CoInstaller.dll
2021-01-11 21:13 - 2020-10-10 12:19 - 000061872 _____ (Lenovo Group Ltd.) C:\Windows\system32\ImController.InfInstaller.exe
2021-01-09 15:27 - 2020-10-10 12:55 - 000000000 ____D C:\Program Files\Lenovo
2021-01-09 12:45 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================