Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2023
Exécuté par PC (administrateur) sur DESKTOP-I6I21NA (LENOVO 81YH) (04-10-2023 14:00:13)
Exécuté depuis C:\Users\PC\Desktop\FRST64-2.1.exe
Profils chargés: PC & MSSQLFDLauncher$SID_CF & SQLTELEMETRY$SID_CF & MSSQL$SID_CF & MSSQLLaunchpad$SID_CF
Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.2361 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(536BC709-8EE1-4478-AF22-F0F0F26FF64A -> Telegram FZ-LLC) C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_4.9.7.0_x64__t4vj0pshhgkwm\Telegram.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdhost.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.43\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe <7>
(C:\Users\PC\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\PC\AppData\Local\Programs\Opera\102.0.4880.78\opera_crashreporter.exe
(C:\Windows\ImmersiveControlPanel\SystemSettings.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe <2>
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\PC\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\FnHotkeyUtility.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2307.27.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server Management Studio 19\Common7\IDE\Ssms.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Nitro Software, Inc. -> Nitro PDF) C:\Program Files\Nitro\Pro 10\NitroPDF.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Opera Norway AS -> Opera Software) C:\Users\PC\AppData\Local\Programs\Opera\opera.exe <33>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxCUIServiceN.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_55bf1834336e8765\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_27e3f997fcc85a29\IntelCpHDCPSvc.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(services.exe ->) (Nitro Software, Inc. -> Nitro PDF Software) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Media4U Technology Pte. Ltd. -> ) C:\Program Files (x86)\SHAREit Technologies\SHAREit\shareitservice.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\IAS\IntelAudioService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2309.1001.3.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2338.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> ) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\PC\AppData\Local\Microsoft\OneDrive\23.189.0910.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.2351_none_e954da1242d4c911\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1158944 2020-09-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\Installer\setup.exe [3796520 2023-10-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [MicrosoftEdgeAutoLaunch_B47356396DDD0FAAE76D0ED141F5CEA2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [Opera Stable] => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [LenovoVantage] => C:\ProgramData\Lenovo\Vantage\Addins\LenovoCompanionAppAddin\1.0.0.35\LenovoVantage.exe [23976 2023-06-14] (Lenovo -> Lenovo)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [108456 2023-06-29] (Lenovo -> Lenovo)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [com.evernote.Evernote] => C:\Users\PC\AppData\Local\Programs\Evernote\Evernote.exe --was-opened-with-auto-launch (Pas de fichier)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [Opera Browser Assistant] => C:\Users\PC\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [5100960 2023-09-27] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\MountPoints2: {4adb344d-cdbe-11ec-aabf-fe77073bd118} - "E:\setup.EXE" /AUTORUN
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Fichier non signé]
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon10.dll [31896 2015-05-27] (Nitro Software, Inc. -> Nitro PDF Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.132\Installer\chrmstp.exe [2023-09-28] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [VerifierDlls]
IFEO\SppExtComObj.exe: [VerifierDlls]
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2023-10-02]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {552A8CA2-B64F-4374-A391-8A6BF6A81CF8} - System32\Tasks\GoogleUpdateTaskMachineCore{015789D1-511A-4B54-B11E-528121AF7D02} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-02] (Google LLC -> Google LLC)
Task: {DCFD6592-1470-4BAE-8694-CA4A3A90263D} - System32\Tasks\GoogleUpdateTaskMachineUA{BB9619C5-D09C-44CF-9F09-2D1600C72129} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-02] (Google LLC -> Google LLC)
Task: {79F16D03-2238-4342-8C4B-5450A218B87A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {AA22509C-A902-4276-A7B8-EF6B8AC21A28} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {38660B03-51B0-4F27-A0B1-07881E1A72D1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5beb4d69-2499-425e-8045-19423c7544f7 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {0B877257-E193-4B7A-B165-0E0ABE8A5889} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bea0d953-92cf-46bd-b3b8-28201f2e5aaf => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {50619ACE-D3BF-46BF-A9E2-57BB154F5895} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ef8205ed-e955-48c2-8ab9-8b1bd1097569 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {1D2FFC4F-E600-47DE-B7A5-E6F5C771A90E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fae7f9a1-8fe3-47be-9024-ff59e3586b3f => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C4098E9A-DC4B-4A5B-8F8F-3BB8CF74A70E} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4116799045-3929637237-3320613135-1001 => C:\Users\PC\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {6A43BEFF-2540-449A-A392-EE0804A3FFBD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {82C5BFA9-99FA-461E-A8FF-94EEB8289D02} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {32C5EEA3-D593-4C6C-8140-202B30233E9C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {60A8E152-DFA0-40D5-B5FD-B22181E73B3C} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2C3FB4A5-884D-405A-9384-F2D31D629A6A} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {364854CA-EA9E-4D53-A94C-1A33A9753C5D} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {642F9181-1029-4F98-BA43-389A2F69316B} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {A65936F6-F35D-45A1-B01A-FAB9975E7F77} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B84D7EAA-F1D1-46DA-A9B5-96DE7E5A6076} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5263D493-58C6-4C76-90D9-AA6E1D256A45} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B9538E04-EACC-4C81-B176-BA089EF6ABCE} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {BEB4D2A8-D845-4063-A108-12551D78ADD3} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {78F60C81-6210-4401-B818-122B13B8D820} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {94A851D6-A983-43D1-BB34-5B85A58619B7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {42B257DE-016C-4C08-8CDD-A2C4B3B0081E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F90630A-6AA1-4A80-9EEA-97CD3472194E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {48114F01-6166-4A03-B03E-D4493F663E7B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD775B5E-C69B-4A87-B7F7-8B309F0536DD} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [58880 2023-08-23] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {76B1BC12-CDC9-4073-ABF1-56B7C2F29F49} - System32\Tasks\Opera scheduled assistant Autoupdate 1692966896 => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\PC\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D88141E7-D8E2-4923-A9CB-BAE143A4A532} - System32\Tasks\Opera scheduled Autoupdate 1690994854 => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
Task: {EFEE03C4-858A-4981-B70C-ABD9F230B625} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {C41DD313-D516-4403-B6EE-06477650CD34} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.10 196.47.182.11 196.47.128.9
Tcpip\..\Interfaces\{5100bff1-b442-4dce-81b4-c74383289b84}: [DhcpNameServer] 192.168.1.10 196.47.182.11 196.47.128.9
Tcpip\..\Interfaces\{860f1220-776e-4908-b136-c497d35d649e}: [NameServer] 198.51.100.1,198.51.100.2
Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-04]
Edge Notifications: Default -> hxxps://www.msn.com
Edge Session Restore: Default -> est activé.
Edge Extension: (Kaspersky Protection) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-08-29]
Edge Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gehmmocbbkpblljhkekmfhjpfbkclbph [2023-09-21]
Edge Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
Edge Extension: (Edge relevant text changes) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-05-27] (Nitro Software, Inc. -> Nitro PDF)
Chrome:
=======
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2023-10-04]
CHR Notifications: Default -> hxxps://www.evernote.com; hxxps://www.youtube.com
CHR Session Restore: Default -> est activé.
CHR Extension: (Kaspersky Protection) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-08-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-02]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
Opera:
=======
OPR DefaultProfile: Default
OPR Profile: C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable [2023-10-04]
OPR Notifications: Opera Stable -> hxxps://business.facebook.com; hxxps://www.facebook.com; hxxps://www.france24.com; hxxps://www.rfi.fr; hxxps://www.youtube.com
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-08-02]
OPR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2023-08-19]
OPR Extension: (Opera Wallet) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-08-24]
OPR Extension: (Aria) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-08-16]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2022-08-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\Windows\System32\CloudRestoreLauncher.dll [1261568 2023-09-26] (Microsoft Windows -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_682ef613b3830b4d\DAX3API.exe [1900504 2020-08-23] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-08] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_service_23.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 23.1\kpm_service.exe [520960 2023-07-12] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.13; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.13\ksde.exe [32008 2023-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe [295904 2023-08-17] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
R2 LITSSVC; C:\Windows\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlservr.exe [624544 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\launchpad.exe [1222600 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-27] (Nitro Software, Inc. -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-27] (Nitro Software, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SHAREitService; C:\Program Files (x86)\SHAREit Technologies\SHAREit\shareitservice.exe [3246272 2023-08-24] (Smart Media4U Technology Pte. Ltd. -> )
S4 SQLAgent$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\SQLAGENT.EXE [690120 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlceip.exe [284616 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20856632 2023-09-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 BHTPCRDR; C:\Windows\system32\DRIVERS\bhtpcrdr.sys [184416 2020-08-31] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [237288 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 iaLPSS2_GPIO2_ICL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 IntcAudioBus; C:\Windows\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_2b27d88d994fb23c\IntcAudioBus.sys [300864 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcDMic; C:\Windows\System32\DriverStore\FileRepository\intcdmic.inf_amd64_eaaa84e011a30923\IntcDMic.sys [674608 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcOED; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_687314a06853d3c2\IntcOED.sys [1278272 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [105280 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [206600 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [119568 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [522504 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [739984 2023-08-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1860408 2023-08-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235704 2023-08-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1049864 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [90896 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [104728 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [107328 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78088 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [88328 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltun; C:\Windows\system32\DRIVERS\kltun.sys [86776 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [384656 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_arkmon_3EAA902C; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\3EAA902C0B5097D0258FD5FE1D8A2AA9\klupd_klif_arkmon.sys [384656 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [354760 2023-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_klark_C526585C; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\C526585CB8BA25FF3FC34D84E86679FD\klupd_klif_klark.sys [354640 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [183120 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [260512 2023-08-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_mark_F2E96205; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\F2E962050AC83670BCD4BC24CAD7B7DB\klupd_klif_mark.sys [262712 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [150280 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [325400 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [294680 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 UCPD; C:\Windows\System32\drivers\UCPD.sys [29184 2023-08-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55704 2023-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [572656 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-04 14:00 - 2023-10-04 14:02 - 000039376 _____ C:\Users\PC\Desktop\FRST.txt
2023-10-04 13:54 - 2023-10-04 13:54 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2023-10-04 13:52 - 2023-10-04 14:01 - 000000000 ____D C:\FRST
2023-10-04 13:51 - 2023-10-04 13:54 - 002382848 _____ (Farbar) C:\Users\PC\Desktop\FRST64-2.1.exe
2023-10-04 13:20 - 2023-10-04 13:20 - 000000000 ___HD C:\Users\PC\Downloads\.opera
2023-10-04 13:20 - 2023-10-04 13:20 - 000000000 ___HD C:\Users\PC\.opera
2023-10-04 10:35 - 2023-10-04 10:37 - 000131072 ___HT C:\Users\PC\Documents\~jcavoaka@agosoftci.com.pst.tmp
2023-10-04 10:32 - 2023-10-04 10:32 - 000151566 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-04 at 10.22.00.jpeg
2023-10-04 10:29 - 2023-10-04 10:29 - 000078511 _____ C:\Users\PC\Downloads\NOTIFICATION 78011202428.pdf
2023-10-04 10:11 - 2023-10-04 10:11 - 001560512 _____ C:\Users\PC\Downloads\NOTIFICATION BUDGETAIRE DGBF_0001.pdf
2023-10-04 09:52 - 2023-10-04 09:52 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2023-10-04 09:52 - 2023-10-04 09:52 - 000000877 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2023-10-04 09:52 - 2023-10-04 09:52 - 000000000 ____D C:\Users\PC\AppData\Local\TeamViewer
2023-10-04 09:51 - 2023-10-04 09:52 - 000039811 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-04 at 09.30.03.jpeg
2023-10-04 09:29 - 2023-10-04 09:52 - 000000000 ____D C:\Program Files\TeamViewer
2023-10-04 09:06 - 2023-10-04 09:10 - 061144928 _____ (TeamViewer Germany GmbH) C:\Users\PC\Downloads\TeamViewer_Setup_x64.exe
2023-10-03 17:30 - 2023-10-03 17:30 - 000154076 _____ C:\Users\PC\Downloads\CamScanner 03-10-2023 16.42.pdf
2023-10-03 17:27 - 2023-10-03 17:27 - 000349218 _____ C:\Users\PC\Downloads\CamScanner 03-10-2023 16.40.pdf
2023-10-03 11:34 - 2023-10-03 15:04 - 000342330 _____ C:\Users\PC\Downloads\NOTIFICATION 78013300482.pdf
2023-10-03 10:38 - 2023-10-03 10:34 - 000378483 _____ C:\Users\PC\Downloads\Engagement 367.pdf
2023-10-02 18:07 - 2023-10-02 16:07 - 000192885 _____ C:\Users\PC\Downloads\Budget activité 90041290133 du MPJIPSC.pdf
2023-10-02 14:08 - 2023-10-02 14:08 - 000082478 _____ C:\Users\PC\Downloads\CABINET 2023_78081000120.pdf
2023-10-02 13:13 - 2023-10-02 13:13 - 000028389 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-02 at 12.05.06.jpeg
2023-10-02 11:28 - 2023-10-02 11:28 - 000055570 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-02 at 11.13.18.jpeg
2023-10-02 06:40 - 2023-10-02 06:40 - 002070746 _____ C:\Users\PC\Downloads\Cumbria-m.pdf
2023-10-01 15:13 - 2023-10-01 15:13 - 000618926 _____ C:\Users\PC\Downloads\20230901-communiqu-mteess-et-maee.pdf
2023-09-30 12:08 - 2023-09-30 12:08 - 000699934 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-09-29 at 04.55.08.jpeg
2023-09-29 12:09 - 2023-09-29 12:09 - 000392479 _____ C:\Users\PC\Downloads\LIQUIDATION 90033000003.pdf
2023-09-29 08:46 - 2023-09-29 08:46 - 000496758 _____ C:\Users\PC\Downloads\CamScanner 28-09-2023 12.04.pdf
2023-09-28 13:25 - 2023-09-28 13:25 - 000431949 _____ C:\Users\PC\Downloads\NOTIFICATION 78047100396.pdf
2023-09-28 10:26 - 2023-09-28 10:26 - 000339010 _____ C:\Users\PC\Downloads\Adobe Scan 28 sept. 2023 (1).pdf
2023-09-28 10:16 - 2023-09-28 10:16 - 000078179 _____ C:\Users\PC\Downloads\2023_78098000773.pdf
2023-09-28 09:32 - 2023-09-28 09:32 - 000399939 _____ C:\Users\PC\Downloads\Adobe Scan 28 sept. 2023.pdf
2023-09-28 09:29 - 2023-09-28 09:29 - 000027215 _____ C:\Users\PC\Downloads\FICHIER DCF.xlsx
2023-09-28 08:49 - 2023-09-28 08:49 - 000926994 _____ C:\Windows\system32\perfh00C.dat
2023-09-28 08:49 - 2023-09-28 08:49 - 000204712 _____ C:\Windows\system32\perfc00C.dat
2023-09-28 07:36 - 2023-09-28 07:36 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2023-09-26 22:43 - 2023-09-26 22:43 - 000060462 _____ C:\Windows\SysWOW64\ctac.json
2023-09-26 22:42 - 2023-09-26 22:42 - 000060462 _____ C:\Windows\system32\ctac.json
2023-09-26 22:42 - 2023-09-26 22:42 - 000016239 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-09-26 22:31 - 2023-09-26 22:36 - 000000000 ___HD C:\$WinREAgent
2023-09-26 16:30 - 2023-09-26 16:30 - 000421544 _____ C:\Users\PC\Downloads\CamScanner 26-09-2023 16.10.pdf
2023-09-26 11:59 - 2023-09-26 12:35 - 000157123 _____ C:\Users\PC\Downloads\NOTIFICATION 25063000007.pdf
2023-09-25 12:40 - 2023-09-26 22:37 - 000421687 _____ C:\Users\PC\Downloads\ACTIVITE 90098090216.pdf
2023-09-22 08:44 - 2023-09-22 08:44 - 000029867 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-09-22 at 08.43.04.jpeg
2023-09-21 06:12 - 2023-09-21 06:12 - 000320537 _____ C:\Users\PC\Downloads\Deloitte CI_L'Essentiel de la réforme des Impôts sur Salaires - L'Essentiel.pdf
2023-09-20 09:19 - 2023-09-20 10:19 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2023-09-18 12:14 - 2023-10-03 17:21 - 000185009 _____ C:\Users\PC\Downloads\Liste Village doublon.xlsx
2023-09-18 11:35 - 2023-09-28 07:34 - 000042759 _____ C:\Users\PC\Downloads\Calculs des impôts (réforme 2023).xlsx
2023-09-16 10:31 - 2023-10-02 13:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2023-09-15 20:43 - 2023-09-15 20:43 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2023-09-15 20:43 - 2023-09-15 20:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-09-15 20:42 - 2023-09-15 20:42 - 000000000 ____D C:\Program Files\VideoLAN
2023-09-15 13:55 - 2023-09-15 14:05 - 044283624 _____ C:\Users\PC\Downloads\vlc-3.0.18-win64.exe
2023-09-13 15:37 - 2023-09-13 15:37 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Document Building Blocks
2023-09-13 14:38 - 2023-09-13 14:38 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\PowerPoint
2023-09-13 14:38 - 2023-09-05 09:27 - 005023407 _____ C:\Users\PC\Desktop\Formation SID CF Agents de l intérieur.pptx
2023-09-13 14:27 - 2023-09-13 14:27 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Bibliography
2023-09-13 14:23 - 2023-09-13 14:23 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\QuickStyles
2023-09-07 19:47 - 2023-09-07 19:47 - 000000000 ____D C:\Users\PC\AppData\Local\cache
2023-09-07 19:46 - 2023-09-07 19:46 - 000000000 ____D C:\Users\PC\.fontconfig
2023-09-07 19:45 - 2023-09-07 19:45 - 000012737 _____ C:\ProgramData\sguasgrp.vby
2023-09-07 19:45 - 2023-09-07 19:45 - 000000016 _____ C:\ProgramData\mntemp
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\Users\PC\AppData\Local\Movavi
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\Users\PC\AppData\Local\converter
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\ProgramData\movavi
2023-09-07 19:17 - 2023-09-07 19:17 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2023-09-05 18:47 - 2023-09-05 18:47 - 000001501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit.lnk
2023-09-05 18:47 - 2023-09-05 18:47 - 000001283 _____ C:\Users\Public\Desktop\SHAREit.lnk
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\Users\PC\AppData\Local\SHAREit Technologies
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\Program Files (x86)\SHAREit Technologies
2023-09-05 18:41 - 2023-09-05 18:41 - 023823656 _____ (SmartMedia4U Technology Pte.Ltd ) C:\Users\PC\Downloads\SHAREit-KCWEB.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-04 14:03 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SystemTemp
2023-10-04 14:02 - 2023-08-03 11:10 - 806568960 _____ C:\Users\PC\Documents\jcavoaka@agosoftci.com.pst
2023-10-04 14:01 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\AppReadiness
2023-10-04 14:01 - 2022-05-07 05:22 - 000000000 ____D C:\Windows\INF
2023-10-04 14:00 - 2022-05-07 05:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-04 14:00 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-04 13:59 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-04 13:44 - 2022-05-07 05:17 - 000000000 ____D C:\Windows\CbsTemp
2023-10-04 13:26 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2023-10-04 13:20 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC
2023-10-04 13:19 - 2023-08-02 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-04 11:02 - 2022-05-07 04:25 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-04 10:56 - 2023-08-03 11:04 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Excel
2023-10-04 09:04 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2023-10-03 16:54 - 2023-08-02 13:36 - 000000000 ____D C:\Users\PC\Documents\DCF
2023-10-02 23:17 - 2023-08-02 16:59 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Word
2023-10-02 13:29 - 2023-08-24 19:10 - 000000000 ____D C:\Users\PC\AppData\Local\canva-updater
2023-10-02 11:23 - 2023-08-02 16:47 - 000004212 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1690994854
2023-10-02 11:23 - 2023-08-02 16:47 - 000001400 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-10-01 14:47 - 2022-05-07 04:26 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-01 14:47 - 2022-05-07 04:26 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-29 18:04 - 2023-08-02 16:28 - 000000000 __SHD C:\Users\PC\IntelGraphicsProfiles
2023-09-29 18:04 - 2022-05-07 04:34 - 000000000 ___RD C:\Users\PC\OneDrive
2023-09-29 11:21 - 2023-08-25 12:34 - 000004434 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1692966896
2023-09-28 08:49 - 2023-08-02 12:41 - 002137384 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-28 08:39 - 2023-08-02 16:28 - 000000000 ____D C:\Intel
2023-09-28 08:39 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ServiceState
2023-09-28 08:39 - 2022-05-07 04:25 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-09-28 07:41 - 2022-05-07 05:17 - 000786432 _____ C:\Windows\system32\config\BBI
2023-09-28 07:39 - 2022-05-07 04:25 - 000479520 _____ C:\Windows\system32\FNTCACHE.DAT
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\UUS
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-09-28 07:36 - 2022-05-07 07:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SystemResources
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\setup
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\oobe
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\migwiz
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\Dism
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ShellComponents
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\Provisioning
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\bcastdvr
2023-09-26 22:43 - 2022-05-07 04:27 - 003210752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-09-26 07:02 - 2023-08-05 20:16 - 000000000 ____D C:\Windows\Minidump
2023-09-26 07:02 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\LiveKernelReports
2023-09-26 00:59 - 2022-05-07 04:36 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4116799045-3929637237-3320613135-1001
2023-09-26 00:59 - 2022-05-07 04:34 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4116799045-3929637237-3320613135-1001
2023-09-26 00:59 - 2022-05-07 04:34 - 000002412 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-22 11:25 - 2023-08-03 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server Tools 19
2023-09-22 11:21 - 2023-08-03 13:07 - 000000000 ____D C:\Windows\SysWOW64\1036
2023-09-22 11:21 - 2023-08-03 13:07 - 000000000 ____D C:\Windows\system32\1036
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\Windows\SysWOW64\1033
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\Windows\system32\1033
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-20 17:24 - 2022-05-07 05:17 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-09-18 21:36 - 2023-08-02 17:32 - 000003790 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{BB9619C5-D09C-44CF-9F09-2D1600C72129}
2023-09-18 21:36 - 2023-08-02 17:32 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{015789D1-511A-4B54-B11E-528121AF7D02}
2023-09-17 05:16 - 2023-08-02 13:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-09-17 05:15 - 2022-05-07 04:25 - 000012288 ___SH C:\DumpStack.log.tmp
2023-09-15 06:43 - 2023-08-06 05:38 - 002688512 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000483328 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000210536 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000181864 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000145000 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000095848 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2023-09-15 06:43 - 2023-08-06 05:38 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2023-09-15 06:43 - 2023-08-06 05:38 - 000000000 ____D C:\XboxGames
2023-09-14 06:16 - 2023-08-08 20:09 - 000000000 ____D C:\Users\PC\AppData\Roaming\Evernote
2023-09-13 13:25 - 2023-08-02 13:13 - 000000000 ____D C:\Windows\system32\MRT
2023-09-13 13:21 - 2023-08-02 13:13 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-09-13 06:58 - 2023-08-18 11:41 - 000000000 ____D C:\Program Files (x86)\dotnet
2023-09-08 03:07 - 2023-08-04 10:25 - 000000000 ____D C:\Windows\system32\Tasks\HP
2023-09-08 03:07 - 2023-08-04 10:25 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-06 11:59 - 2023-08-02 13:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par PC (administrateur) sur DESKTOP-I6I21NA (LENOVO 81YH) (04-10-2023 14:00:13)
Exécuté depuis C:\Users\PC\Desktop\FRST64-2.1.exe
Profils chargés: PC & MSSQLFDLauncher$SID_CF & SQLTELEMETRY$SID_CF & MSSQL$SID_CF & MSSQLLaunchpad$SID_CF
Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.2361 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(536BC709-8EE1-4478-AF22-F0F0F26FF64A -> Telegram FZ-LLC) C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_4.9.7.0_x64__t4vj0pshhgkwm\Telegram.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdhost.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23247.1113.2398.2671_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.43\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\msedgewebview2.exe <7>
(C:\Users\PC\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\PC\AppData\Local\Programs\Opera\102.0.4880.78\opera_crashreporter.exe
(C:\Windows\ImmersiveControlPanel\SystemSettings.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe <2>
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\PC\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\FnHotkeyUtility.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2307.27.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server Management Studio 19\Common7\IDE\Ssms.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Nitro Software, Inc. -> Nitro PDF) C:\Program Files\Nitro\Pro 10\NitroPDF.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Opera Norway AS -> Opera Software) C:\Users\PC\AppData\Local\Programs\Opera\opera.exe <33>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_b117548b2e075ba1\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxCUIServiceN.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_55bf1834336e8765\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_27e3f997fcc85a29\IntelCpHDCPSvc.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\Launchpad.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(services.exe ->) (Nitro Software, Inc. -> Nitro PDF Software) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Media4U Technology Pte. Ltd. -> ) C:\Program Files (x86)\SHAREit Technologies\SHAREit\shareitservice.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\IAS\IntelAudioService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2309.1001.3.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2338.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> ) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\PC\AppData\Local\Microsoft\OneDrive\23.189.0910.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.2351_none_e954da1242d4c911\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1158944 2020-09-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.47\Installer\setup.exe [3796520 2023-10-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [MicrosoftEdgeAutoLaunch_B47356396DDD0FAAE76D0ED141F5CEA2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [Opera Stable] => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [LenovoVantage] => C:\ProgramData\Lenovo\Vantage\Addins\LenovoCompanionAppAddin\1.0.0.35\LenovoVantage.exe [23976 2023-06-14] (Lenovo -> Lenovo)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [108456 2023-06-29] (Lenovo -> Lenovo)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [com.evernote.Evernote] => C:\Users\PC\AppData\Local\Programs\Evernote\Evernote.exe --was-opened-with-auto-launch (Pas de fichier)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\Run: [Opera Browser Assistant] => C:\Users\PC\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [5100960 2023-09-27] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\...\MountPoints2: {4adb344d-cdbe-11ec-aabf-fe77073bd118} - "E:\setup.EXE" /AUTORUN
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Fichier non signé]
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon10.dll [31896 2015-05-27] (Nitro Software, Inc. -> Nitro PDF Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.132\Installer\chrmstp.exe [2023-09-28] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [VerifierDlls]
IFEO\SppExtComObj.exe: [VerifierDlls]
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2023-10-02]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {552A8CA2-B64F-4374-A391-8A6BF6A81CF8} - System32\Tasks\GoogleUpdateTaskMachineCore{015789D1-511A-4B54-B11E-528121AF7D02} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-02] (Google LLC -> Google LLC)
Task: {DCFD6592-1470-4BAE-8694-CA4A3A90263D} - System32\Tasks\GoogleUpdateTaskMachineUA{BB9619C5-D09C-44CF-9F09-2D1600C72129} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-02] (Google LLC -> Google LLC)
Task: {79F16D03-2238-4342-8C4B-5450A218B87A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {AA22509C-A902-4276-A7B8-EF6B8AC21A28} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {38660B03-51B0-4F27-A0B1-07881E1A72D1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5beb4d69-2499-425e-8045-19423c7544f7 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {0B877257-E193-4B7A-B165-0E0ABE8A5889} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bea0d953-92cf-46bd-b3b8-28201f2e5aaf => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {50619ACE-D3BF-46BF-A9E2-57BB154F5895} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ef8205ed-e955-48c2-8ab9-8b1bd1097569 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {1D2FFC4F-E600-47DE-B7A5-E6F5C771A90E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fae7f9a1-8fe3-47be-9024-ff59e3586b3f => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C4098E9A-DC4B-4A5B-8F8F-3BB8CF74A70E} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4116799045-3929637237-3320613135-1001 => C:\Users\PC\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {6A43BEFF-2540-449A-A392-EE0804A3FFBD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {82C5BFA9-99FA-461E-A8FF-94EEB8289D02} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {32C5EEA3-D593-4C6C-8140-202B30233E9C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {60A8E152-DFA0-40D5-B5FD-B22181E73B3C} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2C3FB4A5-884D-405A-9384-F2D31D629A6A} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {364854CA-EA9E-4D53-A94C-1A33A9753C5D} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {642F9181-1029-4F98-BA43-389A2F69316B} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {A65936F6-F35D-45A1-B01A-FAB9975E7F77} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B84D7EAA-F1D1-46DA-A9B5-96DE7E5A6076} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5263D493-58C6-4C76-90D9-AA6E1D256A45} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {B9538E04-EACC-4C81-B176-BA089EF6ABCE} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {BEB4D2A8-D845-4063-A108-12551D78ADD3} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {78F60C81-6210-4401-B818-122B13B8D820} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {94A851D6-A983-43D1-BB34-5B85A58619B7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {42B257DE-016C-4C08-8CDD-A2C4B3B0081E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F90630A-6AA1-4A80-9EEA-97CD3472194E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {48114F01-6166-4A03-B03E-D4493F663E7B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD775B5E-C69B-4A87-B7F7-8B309F0536DD} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [58880 2023-08-23] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {76B1BC12-CDC9-4073-ABF1-56B7C2F29F49} - System32\Tasks\Opera scheduled assistant Autoupdate 1692966896 => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\PC\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D88141E7-D8E2-4923-A9CB-BAE143A4A532} - System32\Tasks\Opera scheduled Autoupdate 1690994854 => C:\Users\PC\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
Task: {EFEE03C4-858A-4981-B70C-ABD9F230B625} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {C41DD313-D516-4403-B6EE-06477650CD34} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.10 196.47.182.11 196.47.128.9
Tcpip\..\Interfaces\{5100bff1-b442-4dce-81b4-c74383289b84}: [DhcpNameServer] 192.168.1.10 196.47.182.11 196.47.128.9
Tcpip\..\Interfaces\{860f1220-776e-4908-b136-c497d35d649e}: [NameServer] 198.51.100.1,198.51.100.2
Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-04]
Edge Notifications: Default -> hxxps://www.msn.com
Edge Session Restore: Default -> est activé.
Edge Extension: (Kaspersky Protection) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-08-29]
Edge Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gehmmocbbkpblljhkekmfhjpfbkclbph [2023-09-21]
Edge Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
Edge Extension: (Edge relevant text changes) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKU\S-1-5-21-4116799045-3929637237-3320613135-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-05-27] (Nitro Software, Inc. -> Nitro PDF)
Chrome:
=======
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2023-10-04]
CHR Notifications: Default -> hxxps://www.evernote.com; hxxps://www.youtube.com
CHR Session Restore: Default -> est activé.
CHR Extension: (Kaspersky Protection) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-08-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-02]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
Opera:
=======
OPR DefaultProfile: Default
OPR Profile: C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable [2023-10-04]
OPR Notifications: Opera Stable -> hxxps://business.facebook.com; hxxps://www.facebook.com; hxxps://www.france24.com; hxxps://www.rfi.fr; hxxps://www.youtube.com
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-08-02]
OPR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2023-08-19]
OPR Extension: (Opera Wallet) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-08-24]
OPR Extension: (Aria) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-08-16]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2022-08-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\Windows\System32\CloudRestoreLauncher.dll [1261568 2023-09-26] (Microsoft Windows -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_682ef613b3830b4d\DAX3API.exe [1900504 2020-08-23] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-08] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_service_23.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 23.1\kpm_service.exe [520960 2023-07-12] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.13; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.13\ksde.exe [32008 2023-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_9c2a9014dc4e8797\LenovoUtilityService.exe [295904 2023-08-17] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
R2 LITSSVC; C:\Windows\System32\LNBITSSvc.exe [1831672 2022-08-17] (Lenovo -> Lenovo(beijing) Limited)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [161040 2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlservr.exe [624544 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R3 MSSQLFDLauncher$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\fdlauncher.exe [85600 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLLaunchpad$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\launchpad.exe [1222600 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-27] (Nitro Software, Inc. -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-27] (Nitro Software, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SHAREitService; C:\Program Files (x86)\SHAREit Technologies\SHAREit\shareitservice.exe [3246272 2023-08-24] (Smart Media4U Technology Pte. Ltd. -> )
S4 SQLAgent$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\SQLAGENT.EXE [690120 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$SID_CF; C:\Program Files\Microsoft SQL Server\MSSQL15.SID_CF\MSSQL\Binn\sqlceip.exe [284616 2023-01-23] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20856632 2023-09-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 BHTPCRDR; C:\Windows\system32\DRIVERS\bhtpcrdr.sys [184416 2020-08-31] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [237288 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 iaLPSS2_GPIO2_ICL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 IntcAudioBus; C:\Windows\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_2b27d88d994fb23c\IntcAudioBus.sys [300864 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcDMic; C:\Windows\System32\DriverStore\FileRepository\intcdmic.inf_amd64_eaaa84e011a30923\IntcDMic.sys [674608 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcOED; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_687314a06853d3c2\IntcOED.sys [1278272 2021-01-27] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [105280 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [206600 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [119568 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [522504 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [739984 2023-08-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1860408 2023-08-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235704 2023-08-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1049864 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [90896 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [104728 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [107328 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78088 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [88328 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltun; C:\Windows\system32\DRIVERS\kltun.sys [86776 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [384656 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_arkmon_3EAA902C; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\3EAA902C0B5097D0258FD5FE1D8A2AA9\klupd_klif_arkmon.sys [384656 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [354760 2023-09-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_klark_C526585C; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\C526585CB8BA25FF3FC34D84E86679FD\klupd_klif_klark.sys [354640 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [183120 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [260512 2023-08-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_mark_F2E96205; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\F2E962050AC83670BCD4BC24CAD7B7DB\klupd_klif_mark.sys [262712 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [150280 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [325400 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [294680 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S4 RsFx0600; C:\Windows\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S4 UCPD; C:\Windows\System32\drivers\UCPD.sys [29184 2023-08-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55704 2023-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [572656 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-04 14:00 - 2023-10-04 14:02 - 000039376 _____ C:\Users\PC\Desktop\FRST.txt
2023-10-04 13:54 - 2023-10-04 13:54 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2023-10-04 13:52 - 2023-10-04 14:01 - 000000000 ____D C:\FRST
2023-10-04 13:51 - 2023-10-04 13:54 - 002382848 _____ (Farbar) C:\Users\PC\Desktop\FRST64-2.1.exe
2023-10-04 13:20 - 2023-10-04 13:20 - 000000000 ___HD C:\Users\PC\Downloads\.opera
2023-10-04 13:20 - 2023-10-04 13:20 - 000000000 ___HD C:\Users\PC\.opera
2023-10-04 10:35 - 2023-10-04 10:37 - 000131072 ___HT C:\Users\PC\Documents\~jcavoaka@agosoftci.com.pst.tmp
2023-10-04 10:32 - 2023-10-04 10:32 - 000151566 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-04 at 10.22.00.jpeg
2023-10-04 10:29 - 2023-10-04 10:29 - 000078511 _____ C:\Users\PC\Downloads\NOTIFICATION 78011202428.pdf
2023-10-04 10:11 - 2023-10-04 10:11 - 001560512 _____ C:\Users\PC\Downloads\NOTIFICATION BUDGETAIRE DGBF_0001.pdf
2023-10-04 09:52 - 2023-10-04 09:52 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2023-10-04 09:52 - 2023-10-04 09:52 - 000000877 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2023-10-04 09:52 - 2023-10-04 09:52 - 000000000 ____D C:\Users\PC\AppData\Local\TeamViewer
2023-10-04 09:51 - 2023-10-04 09:52 - 000039811 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-04 at 09.30.03.jpeg
2023-10-04 09:29 - 2023-10-04 09:52 - 000000000 ____D C:\Program Files\TeamViewer
2023-10-04 09:06 - 2023-10-04 09:10 - 061144928 _____ (TeamViewer Germany GmbH) C:\Users\PC\Downloads\TeamViewer_Setup_x64.exe
2023-10-03 17:30 - 2023-10-03 17:30 - 000154076 _____ C:\Users\PC\Downloads\CamScanner 03-10-2023 16.42.pdf
2023-10-03 17:27 - 2023-10-03 17:27 - 000349218 _____ C:\Users\PC\Downloads\CamScanner 03-10-2023 16.40.pdf
2023-10-03 11:34 - 2023-10-03 15:04 - 000342330 _____ C:\Users\PC\Downloads\NOTIFICATION 78013300482.pdf
2023-10-03 10:38 - 2023-10-03 10:34 - 000378483 _____ C:\Users\PC\Downloads\Engagement 367.pdf
2023-10-02 18:07 - 2023-10-02 16:07 - 000192885 _____ C:\Users\PC\Downloads\Budget activité 90041290133 du MPJIPSC.pdf
2023-10-02 14:08 - 2023-10-02 14:08 - 000082478 _____ C:\Users\PC\Downloads\CABINET 2023_78081000120.pdf
2023-10-02 13:13 - 2023-10-02 13:13 - 000028389 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-02 at 12.05.06.jpeg
2023-10-02 11:28 - 2023-10-02 11:28 - 000055570 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-10-02 at 11.13.18.jpeg
2023-10-02 06:40 - 2023-10-02 06:40 - 002070746 _____ C:\Users\PC\Downloads\Cumbria-m.pdf
2023-10-01 15:13 - 2023-10-01 15:13 - 000618926 _____ C:\Users\PC\Downloads\20230901-communiqu-mteess-et-maee.pdf
2023-09-30 12:08 - 2023-09-30 12:08 - 000699934 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-09-29 at 04.55.08.jpeg
2023-09-29 12:09 - 2023-09-29 12:09 - 000392479 _____ C:\Users\PC\Downloads\LIQUIDATION 90033000003.pdf
2023-09-29 08:46 - 2023-09-29 08:46 - 000496758 _____ C:\Users\PC\Downloads\CamScanner 28-09-2023 12.04.pdf
2023-09-28 13:25 - 2023-09-28 13:25 - 000431949 _____ C:\Users\PC\Downloads\NOTIFICATION 78047100396.pdf
2023-09-28 10:26 - 2023-09-28 10:26 - 000339010 _____ C:\Users\PC\Downloads\Adobe Scan 28 sept. 2023 (1).pdf
2023-09-28 10:16 - 2023-09-28 10:16 - 000078179 _____ C:\Users\PC\Downloads\2023_78098000773.pdf
2023-09-28 09:32 - 2023-09-28 09:32 - 000399939 _____ C:\Users\PC\Downloads\Adobe Scan 28 sept. 2023.pdf
2023-09-28 09:29 - 2023-09-28 09:29 - 000027215 _____ C:\Users\PC\Downloads\FICHIER DCF.xlsx
2023-09-28 08:49 - 2023-09-28 08:49 - 000926994 _____ C:\Windows\system32\perfh00C.dat
2023-09-28 08:49 - 2023-09-28 08:49 - 000204712 _____ C:\Windows\system32\perfc00C.dat
2023-09-28 07:36 - 2023-09-28 07:36 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2023-09-26 22:43 - 2023-09-26 22:43 - 000060462 _____ C:\Windows\SysWOW64\ctac.json
2023-09-26 22:42 - 2023-09-26 22:42 - 000060462 _____ C:\Windows\system32\ctac.json
2023-09-26 22:42 - 2023-09-26 22:42 - 000016239 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-09-26 22:31 - 2023-09-26 22:36 - 000000000 ___HD C:\$WinREAgent
2023-09-26 16:30 - 2023-09-26 16:30 - 000421544 _____ C:\Users\PC\Downloads\CamScanner 26-09-2023 16.10.pdf
2023-09-26 11:59 - 2023-09-26 12:35 - 000157123 _____ C:\Users\PC\Downloads\NOTIFICATION 25063000007.pdf
2023-09-25 12:40 - 2023-09-26 22:37 - 000421687 _____ C:\Users\PC\Downloads\ACTIVITE 90098090216.pdf
2023-09-22 08:44 - 2023-09-22 08:44 - 000029867 _____ C:\Users\PC\Downloads\WhatsApp Image 2023-09-22 at 08.43.04.jpeg
2023-09-21 06:12 - 2023-09-21 06:12 - 000320537 _____ C:\Users\PC\Downloads\Deloitte CI_L'Essentiel de la réforme des Impôts sur Salaires - L'Essentiel.pdf
2023-09-20 09:19 - 2023-09-20 10:19 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2023-09-18 12:14 - 2023-10-03 17:21 - 000185009 _____ C:\Users\PC\Downloads\Liste Village doublon.xlsx
2023-09-18 11:35 - 2023-09-28 07:34 - 000042759 _____ C:\Users\PC\Downloads\Calculs des impôts (réforme 2023).xlsx
2023-09-16 10:31 - 2023-10-02 13:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2023-09-15 20:43 - 2023-09-15 20:43 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2023-09-15 20:43 - 2023-09-15 20:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-09-15 20:42 - 2023-09-15 20:42 - 000000000 ____D C:\Program Files\VideoLAN
2023-09-15 13:55 - 2023-09-15 14:05 - 044283624 _____ C:\Users\PC\Downloads\vlc-3.0.18-win64.exe
2023-09-13 15:37 - 2023-09-13 15:37 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Document Building Blocks
2023-09-13 14:38 - 2023-09-13 14:38 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\PowerPoint
2023-09-13 14:38 - 2023-09-05 09:27 - 005023407 _____ C:\Users\PC\Desktop\Formation SID CF Agents de l intérieur.pptx
2023-09-13 14:27 - 2023-09-13 14:27 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Bibliography
2023-09-13 14:23 - 2023-09-13 14:23 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\QuickStyles
2023-09-07 19:47 - 2023-09-07 19:47 - 000000000 ____D C:\Users\PC\AppData\Local\cache
2023-09-07 19:46 - 2023-09-07 19:46 - 000000000 ____D C:\Users\PC\.fontconfig
2023-09-07 19:45 - 2023-09-07 19:45 - 000012737 _____ C:\ProgramData\sguasgrp.vby
2023-09-07 19:45 - 2023-09-07 19:45 - 000000016 _____ C:\ProgramData\mntemp
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\Users\PC\AppData\Local\Movavi
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\Users\PC\AppData\Local\converter
2023-09-07 19:45 - 2023-09-07 19:45 - 000000000 ____D C:\ProgramData\movavi
2023-09-07 19:17 - 2023-09-07 19:17 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2023-09-05 18:47 - 2023-09-05 18:47 - 000001501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit.lnk
2023-09-05 18:47 - 2023-09-05 18:47 - 000001283 _____ C:\Users\Public\Desktop\SHAREit.lnk
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\Users\PC\AppData\Local\SHAREit Technologies
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit
2023-09-05 18:47 - 2023-09-05 18:47 - 000000000 ____D C:\Program Files (x86)\SHAREit Technologies
2023-09-05 18:41 - 2023-09-05 18:41 - 023823656 _____ (SmartMedia4U Technology Pte.Ltd ) C:\Users\PC\Downloads\SHAREit-KCWEB.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-04 14:03 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SystemTemp
2023-10-04 14:02 - 2023-08-03 11:10 - 806568960 _____ C:\Users\PC\Documents\jcavoaka@agosoftci.com.pst
2023-10-04 14:01 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\AppReadiness
2023-10-04 14:01 - 2022-05-07 05:22 - 000000000 ____D C:\Windows\INF
2023-10-04 14:00 - 2022-05-07 05:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-04 14:00 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-04 13:59 - 2022-05-07 05:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-04 13:44 - 2022-05-07 05:17 - 000000000 ____D C:\Windows\CbsTemp
2023-10-04 13:26 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2023-10-04 13:20 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC
2023-10-04 13:19 - 2023-08-02 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-04 11:02 - 2022-05-07 04:25 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-04 10:56 - 2023-08-03 11:04 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Excel
2023-10-04 09:04 - 2022-05-07 04:32 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2023-10-03 16:54 - 2023-08-02 13:36 - 000000000 ____D C:\Users\PC\Documents\DCF
2023-10-02 23:17 - 2023-08-02 16:59 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Word
2023-10-02 13:29 - 2023-08-24 19:10 - 000000000 ____D C:\Users\PC\AppData\Local\canva-updater
2023-10-02 11:23 - 2023-08-02 16:47 - 000004212 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1690994854
2023-10-02 11:23 - 2023-08-02 16:47 - 000001400 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-10-01 14:47 - 2022-05-07 04:26 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-01 14:47 - 2022-05-07 04:26 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-29 18:04 - 2023-08-02 16:28 - 000000000 __SHD C:\Users\PC\IntelGraphicsProfiles
2023-09-29 18:04 - 2022-05-07 04:34 - 000000000 ___RD C:\Users\PC\OneDrive
2023-09-29 11:21 - 2023-08-25 12:34 - 000004434 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1692966896
2023-09-28 08:49 - 2023-08-02 12:41 - 002137384 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-28 08:39 - 2023-08-02 16:28 - 000000000 ____D C:\Intel
2023-09-28 08:39 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ServiceState
2023-09-28 08:39 - 2022-05-07 04:25 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-09-28 07:41 - 2022-05-07 05:17 - 000786432 _____ C:\Windows\system32\config\BBI
2023-09-28 07:39 - 2022-05-07 04:25 - 000479520 _____ C:\Windows\system32\FNTCACHE.DAT
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\UUS
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-09-28 07:37 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-09-28 07:36 - 2022-05-07 07:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\SystemResources
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\setup
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\oobe
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\migwiz
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\Dism
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\ShellComponents
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\Provisioning
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-28 07:36 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\bcastdvr
2023-09-26 22:43 - 2022-05-07 04:27 - 003210752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-09-26 07:02 - 2023-08-05 20:16 - 000000000 ____D C:\Windows\Minidump
2023-09-26 07:02 - 2022-05-07 05:24 - 000000000 ____D C:\Windows\LiveKernelReports
2023-09-26 00:59 - 2022-05-07 04:36 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4116799045-3929637237-3320613135-1001
2023-09-26 00:59 - 2022-05-07 04:34 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4116799045-3929637237-3320613135-1001
2023-09-26 00:59 - 2022-05-07 04:34 - 000002412 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-22 11:25 - 2023-08-03 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server Tools 19
2023-09-22 11:21 - 2023-08-03 13:07 - 000000000 ____D C:\Windows\SysWOW64\1036
2023-09-22 11:21 - 2023-08-03 13:07 - 000000000 ____D C:\Windows\system32\1036
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\Windows\SysWOW64\1033
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\Windows\system32\1033
2023-09-22 11:21 - 2023-08-03 12:46 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-20 17:24 - 2022-05-07 05:17 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-09-18 21:36 - 2023-08-02 17:32 - 000003790 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{BB9619C5-D09C-44CF-9F09-2D1600C72129}
2023-09-18 21:36 - 2023-08-02 17:32 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{015789D1-511A-4B54-B11E-528121AF7D02}
2023-09-17 05:16 - 2023-08-02 13:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-09-17 05:15 - 2022-05-07 04:25 - 000012288 ___SH C:\DumpStack.log.tmp
2023-09-15 06:43 - 2023-08-06 05:38 - 002688512 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000483328 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000210536 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000181864 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000145000 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2023-09-15 06:43 - 2023-08-06 05:38 - 000095848 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2023-09-15 06:43 - 2023-08-06 05:38 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2023-09-15 06:43 - 2023-08-06 05:38 - 000000000 ____D C:\XboxGames
2023-09-14 06:16 - 2023-08-08 20:09 - 000000000 ____D C:\Users\PC\AppData\Roaming\Evernote
2023-09-13 13:25 - 2023-08-02 13:13 - 000000000 ____D C:\Windows\system32\MRT
2023-09-13 13:21 - 2023-08-02 13:13 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-09-13 06:58 - 2023-08-18 11:41 - 000000000 ____D C:\Program Files (x86)\dotnet
2023-09-08 03:07 - 2023-08-04 10:25 - 000000000 ____D C:\Windows\system32\Tasks\HP
2023-09-08 03:07 - 2023-08-04 10:25 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-06 11:59 - 2023-08-02 13:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================