Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 24-03-2025
Exécuté par fanti (administrateur) sur MARLEY (LENOVO 83GS) (27-03-2025 10:17:09)
Exécuté depuis C:\Users\fanti\Downloads\FRST64.exe
Profils chargés: fanti
Plate-forme: Microsoft Windows 11 Famille Version 24H2 26100.3476 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe" -noautoupdate -- "%1"
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Deploy\Idi.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files (x86)\Deploy\Idi.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.85\msedgewebview2.exe <7>
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <5>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\AI\ai.exe
(C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\fanti\AppData\Local\Programs\Opera GX\117.0.5408.140\opera_crashreporter.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(drivers\Lenovo\udc\Service\UDClientService.exe ->) (Lenovo -> ) C:\ProgramData\Lenovo\Udc\Hosts\24.10.0.10\x64\AppProvisioningPlugin.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_helper.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\FnHotkeyUtility.exe
(explorer.exe ->) () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Deploy\plasterboard.exe
(explorer.exe ->) (MARK OF THE UNICORN, INC. -> MOTU) C:\Program Files (x86)\MOTU\CoreUAC\MOTUMSeries.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(explorer.exe ->) (nordvpn s.a. -> NordVPN) C:\Program Files\NordVPN\NordVPN.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe <33>
(explorer.exe ->) (Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Ableton\USB Audio Driver\x64\AbletonAudioCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\Addins\SmartColorAddin\1.0.4.132\x64\SEGameTool.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(NahimicService.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicAPO4Volume.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (FOR TESTING ONLY - IPF_PreProd_Cert -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_683097297aaa9bb4\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8a3f88e34f6b8385\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_58a0ea2de06916f7\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6fa60c4b09f4675e\AS\IAS\IntelAudioService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo AvatarMaster\bin\LenovoAvatarService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (MARK OF THE UNICORN, INC. -> ) C:\Program Files (x86)\MOTU\CoreUAC\Service\MOTUCoreUACAudioPolicyMediator.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe
(services.exe ->) (nordvpn s.a. -> NordVPN) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_49d0373b6410e907\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9366beb5d0043df3\RtkAudUService64.exe <2>
(services.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (思必驰科技股份有限公司 -> AI Speech Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\aispeechapo.inf_amd64_c60dcb8babaf9b09\AISControlService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(SteelSeries France SASU -> A-Volute) C:\Users\fanti\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.4.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.282.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\fanti\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9366beb5d0043df3\RtkAudUService64.exe [1987544 2024-07-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MOTUMSeries.exe] => C:\Program Files (x86)\MOTU\CoreUAC\MOTUMSeries.exe [2775896 2024-10-01] (MARK OF THE UNICORN, INC. -> MOTU)
HKLM\...\Run: [Groen] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [Smolin] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [Snowmaking] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [SnowmakingSnowmaking] => C:\Program Files (x86)\Deploy\plasterboard.exe [225927 2025-03-17] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-12-24] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131432 2025-01-18] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Sunroom] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [Dana] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [Feta] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [FetaFeta] => C:\Program Files (x86)\Deploy\plasterboard.exe [225927 2025-03-17] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37091856 2025-03-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [87960 2025-01-22] (Lenovo -> Lenovo)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4693088 2025-03-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\fanti\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Oceanographic] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Antlers] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Allotted] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Rupee] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Intimacies] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Merica] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [MicrosoftEdgeAutoLaunch_2ADAE01FD40FEE197B86E74516CA0432] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291136 2025-03-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [559976 2025-01-20] (nordvpn s.a. -> NordVPN)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.167\Installer\chrmstp.exe [2025-03-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ableton USB Audio Control Panel Autostart.lnk [2025-03-16]
ShortcutTarget: Ableton USB Audio Control Panel Autostart.lnk -> C:\Program Files\Ableton\USB Audio Driver\x64\AbletonAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1DF767EE-4985-4010-8048-7435F6A4EC5C} - System32\Tasks\eartcs\2r2ljl\fxu6e7\rzq3b2\xrpyio\g1c4sh\f81tj1\445gg7\va4cku\w6zhz3\wm9xxn\e8fn7z\77vlg0\tndtoe\pyjrhy\8yjpnp\v8vwtg => C:\Program Files (x86)\Deploy\trendsetter.exe [70636 2025-03-17] () [Fichier non signé] <==== ATTENTION
Task: {D037042A-D6FF-4E79-8F63-597114AA2958} - System32\Tasks\fosjre\m0am5a\fl0j9f\itg3t9\4cwo3d\hreyo3\ghcat5\zqt7jt\azgviq\7wj9j0\ppmvk5\vdc6it\y8awzt\87g874\057s9v\a2socn\5d9dca => %localappdata%\compte.exe (Pas de fichier) <==== ATTENTION
Task: {6CD45E1E-A034-400D-BB34-CBA58C17A075} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{04A875ED-3644-432B-97BC-EB3CD1D95922} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {7F8DAFE2-33AE-40E2-A071-91B268A1400B} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194048 2025-02-23] (Adobe Inc. -> Adobe Inc.)
Task: {B8AAB995-816F-41BC-BE95-F1A6C5CB3477} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {7C8A59FC-C689-4963-8415-87A16CE69103} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {88938515-1AA8-4D26-9886-166E5D067ABA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c6fabf61-ecb0-4ebd-9557-0154bdd4e4d5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {58C99945-3201-416C-BD51-8AC5F99CBA6E} - System32\Tasks\Lenovo\LenovoNowLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [3560352 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task
Task: {ED32E9C5-7E0D-4F01-BE13-E2E5F5C52A87} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch
Task: {641DDA59-5FCD-493E-868B-01D41B3B31EA} - System32\Tasks\Lenovo\LenovoNowTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData)
Task: {2653904F-72A4-41EB-8C89-821D99F93C17} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {D18039F9-B511-4729-A796-E999D4D2D3B5} - System32\Tasks\Lenovo\UDC\Lenovo UDC Maintainance Task => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 220
Task: {80624FAC-125E-42D3-907F-404C9C724F20} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [196960 2024-10-24] (Lenovo -> Lenovo Group Ltd.)
Task: {F026FFE3-AAFE-40D9-978E-DD92E38686CD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {A2344684-3C8D-4E7F-910C-E40DD379EB27} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {E6E8EDA2-3D03-46CA-84F8-34DE56F3AA6A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {CB4F3EF9-9AB6-47CF-AFF7-034E40A4E982} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {5A4D7EC9-3054-4B84-8825-4678EDF43E48} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {389AE4B7-2558-49A4-8FFB-1360CB93851C} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {9CD8D88B-DBD0-42C5-BC79-0D0142DC02EA} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0D4B7CF5-F7DE-4D3F-826E-1F5733B2AE4B} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {047F95FC-2307-440C-903F-F4B56FB0A5D5} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {7FC148FE-E533-4252-B48B-BC6B5FB74A59} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0E3D24C0-B7EE-42B6-A8C9-9BD2B44DD30B} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {DF5232F1-F685-48E8-AA5A-2D4328493457} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask => C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe [143768 2025-01-17] (Lenovo -> )
Task: {450B9128-BFEC-4ABA-9ACF-D9374213595B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {A3522832-6988-45A4-AF51-18244E38BAC6} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe /repair (Pas de fichier)
Task: {6942123C-9F63-4C97-84BC-A4FF793BA14F} - System32\Tasks\McAfee\DAD.WPS.Execute.Updates => "C:\Program Files\McAfee\WPS\1.7.209.1\dad\mc-dad.exe" (Pas de fichier)
Task: {8B3D49D2-5E1A-4DAA-9BD6-C36F50A0A375} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {C08108FD-7FE8-4690-BC8D-05725D6D9280} - System32\Tasks\McAfee\WPS\McAfee Anti-Tracker Scanner => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {833C2668-419A-487A-9379-75CEE06B8E6D} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {94AA4E34-5A76-4843-8218-7C61EB91DFB0} - System32\Tasks\McAfee\WPS\McAfee Message Check => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {8ED7A028-F97E-4932-91FB-476948B61D0D} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {70ADF6EC-4C5A-4EF0-937C-B04486A8385B} - System32\Tasks\McAfee\WPS\McAfee restart of PC => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {9AAFD65C-52A0-4FF4-A051-7160FB22B66E} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {EEFDC827-61F3-444C-8EE6-C342596C2BF9} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FFCCC82D-95F8-48C6-9B75-01E2BA34793F} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {3752092F-BE1B-46EA-8F12-B840CE06A2E4} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {8CA2CB49-00BF-4081-8A6D-10B3953C5505} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3475515-94A1-4F18-BD51-E034A7A78E46} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895464 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {33833D83-5A62-49A6-BF11-7084B5876874} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895464 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5611DE3A-5C76-44B8-91A7-FE95EB6671B4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {355B99BE-3595-4A1F-974E-B9D72F866857} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0000F6BB-13BE-4F59-8FC4-137511A6DB28} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [197256 2025-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {A40AB111-DAF0-4E88-8593-6B115E4C8F8C} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1118128 0] (SteelSeries France SASU -> Nahimic)
Task: {1331016B-AD4D-48F8-984D-33D81F51D52B} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1438128 0] (SteelSeries France SASU -> Nahimic)
Task: {1F661811-4280-4AC5-926D-74F15FB946EA} - System32\Tasks\o0vtf2\47qjxe\8566kz\fznvm5\dfixxe\6p62t4\ntaoqs\3gzjra\qoqley\8ci4l6\ir522d\9n8txq\afffbt\9z194s\cczhi7\pjiadh\ul6e69 => %localappdata%\winning.exe "000h000t000t000p000:000/000/000w000w000w000.000a000l000l000t000i000p000i000.000c000o000m000/000l2so0so2so0005so0yq3yq1000l7lsoaspqM0008V2AhILQ0z000BRaUm1tg" (Pas de fichier) <==== ATTENTION
Task: {7E5BA073-215A-41E4-A7D8-F4AE681F11BD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-148919295-3635598345-763458970-1001 => C:\Users\fanti\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\OneDriveLauncher.exe [670528 2025-03-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {4862EF31-FF54-4865-B93B-64C709DB0AE7} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1738797420 => C:\Users\fanti\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\fanti\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {5EF86377-930D-422C-8AAC-FA7A65E4E914} - System32\Tasks\Opera GX scheduled Autoupdate 1732297191 => C:\Users\fanti\AppData\Local\Programs\Opera GX\autoupdate\opera_autoupdate.exe [5660568 2025-03-19] (Opera Norway AS -> Opera Software)
Task: {037EB1B0-D2E1-47D3-B47A-A476590D5B8B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397440 2025-03-17] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\356425F554236383F5537484A5: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\6416E64796E67237020586F6E65602D447866627: [DhcpNameServer] 192.168.249.28
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\6427565626F687D2142333431473: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fc01fcd5-2b9d-2fd8-78d8-cb78b313e2b2}: [NameServer] 103.86.96.100,103.86.99.100
Edge:
=======
Edge Profile: C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2025-03-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (McAfee® WebAdvisor) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-03-09]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Google Docs hors connexion) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-09]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-11-22]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2025-01-18] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2025-01-18] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default [2025-03-17]
CHR StartupUrls: Default -> "hxxps://www.bing.com/?PC=W931"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?PC=K413&q={searchTerms}&FORM=K413DF
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (McAfee® WebAdvisor) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-12-24]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Google Docs hors connexion) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-17]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-12-24]hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-148919295-3635598345-763458970-1001) Opera GXStable - "C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944040 2025-01-18] (Adobe Inc. -> Adobe Inc.)
R2 AISpeechService; C:\WINDOWS\System32\DriverStore\FileRepository\aispeechapo.inf_amd64_c60dcb8babaf9b09\AISControlService.exe [322952 2024-11-02] (思必驰科技股份有限公司 -> AI Speech Co., Ltd.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18991400 2024-12-08] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13768912 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_683097297aaa9bb4\ipfsvc.exe [562040 2024-10-29] (FOR TESTING ONLY - IPF_PreProd_Cert -> Intel Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19147360 2025-02-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-03-24] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2025-03-25] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [345904 2024-12-17] (Underwriters Laboratories Inc. -> Futuremark)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_740dc8aba9846dbb\lib\PlatformLicenseManagerService.exe [741600 2024-05-07] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6fa60c4b09f4675e\AS\IAS\IntelAudioService.exe [531048 2024-11-02] (Intel Corporation -> Intel)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe [3084992 2024-10-29] (Intel Corporation -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe [180704 2024-12-05] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe [34816 2025-02-20] (Lenovo -> Lenovo)
R2 Lenovo_Avatar_Service; C:\Program Files\Lenovo\Lenovo AvatarMaster\bin\LenovoAvatarService.exe [54552 2024-04-25] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9486464 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [943216 2025-03-19] (McAfee, LLC -> McAfee, LLC)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MOTUCoreUACAudioPolicyMediator; C:\Program Files (x86)\MOTU\CoreUAC\Service\MOTUCoreUACAudioPolicyMediator.exe [93016 2024-10-01] (MARK OF THE UNICORN, INC. -> )
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1910192 2024-05-20] (SteelSeries France SASU -> Nahimic)
R3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-12-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [2509280 2025-01-20] (nordvpn s.a. -> NordVPN)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_49d0373b6410e907\Display.NvContainer\NVDisplay.Container.exe [1275552 2024-12-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397440 2025-03-17] (Overwolf Ltd -> Overwolf LTD)
R2 UDCService; C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe [72520 2024-10-24] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12285272 2024-12-08] (KRAFTON, Inc. -> KRAFTON, Inc)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3823288 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_6f8ae740d22247ce\iaLPSS2_GPIO2_ADL.sys [141288 2024-05-15] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_563fbcd35feb69a6\iaLPSS2_I2C_ADL.sys [211432 2024-05-15] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_c4581e5c36b81f6c\ipf_acpi.sys [88656 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_cpu.sys [88144 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_lf.sys [499392 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
R0 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-03-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [236728 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\System32\Drivers\mbam.sys [80448 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
S3 MOTUCoreUAC; C:\WINDOWS\System32\Drivers\MOTUCoreUAC.sys [317864 2024-10-01] (MARK OF THE UNICORN, INC. -> MOTU, Inc)
R3 mshield; C:\Program Files\NordVPN\NordSec ThreatProtection\1.4.36.8\mshield.sys [45384 2025-02-25] (nordvpn s.a. -> Nordvpn S.A.)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [95856 2024-05-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 NahimicXVAD; C:\WINDOWS\System32\drivers\NahimicXVAD.sys [95896 2024-05-16] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [95896 2024-05-16] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R2 NDivert; C:\Program Files\NordVPN\7.36.1.0\Drivers\NDivert.sys [188752 2025-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Nordvpn S.A.)
R4 NordDivert10; C:\Program Files\NordVPN\NordSec ThreatProtection\1.4.36.8\NordDivert1064.sys [97104 2025-02-25] (nordvpn s.a. -> NordVPN/Basil)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [237216 2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 ovpn-dco; C:\WINDOWS\System32\drivers\ovpn-dco.sys [104600 2024-10-01] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_16d0e5f2b3759518\rt68cx21x64.sys [845256 2024-08-27] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [51192 2024-11-22] (OpenVPN Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [53088 2024-10-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2024-11-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-11-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\WPS\1.25.208.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-27 10:17 - 2025-03-27 10:17 - 000044413 _____ C:\Users\fanti\Downloads\FRST.txt
2025-03-27 09:53 - 2025-03-27 09:54 - 000000000 ____D C:\AdwCleaner
2025-03-27 09:53 - 2025-03-27 09:53 - 009566696 _____ (Malwarebytes) C:\Users\fanti\Downloads\adwcleaner.exe
2025-03-26 17:06 - 2025-03-26 17:06 - 000756836 _____ C:\WINDOWS\system32\perfh00C.dat
2025-03-26 17:06 - 2025-03-26 17:06 - 000151172 _____ C:\WINDOWS\system32\perfc00C.dat
2025-03-26 16:58 - 2025-03-26 16:58 - 000236728 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2025-03-26 16:58 - 2025-03-26 16:58 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2025-03-26 16:27 - 2025-03-26 16:27 - 001245181 _____ C:\Users\fanti\Downloads\Bulletins 1er et 2ème semestre 1ère Mode_20250326_0001.pdf
2025-03-26 14:53 - 2025-03-27 10:17 - 000000000 ____D C:\FRST
2025-03-26 14:52 - 2025-03-26 14:52 - 002404352 _____ (Farbar) C:\Users\fanti\Downloads\FRST64.exe
2025-03-26 02:11 - 2025-03-27 10:05 - 000000000 ____D C:\Users\fanti\AppData\Local\Malwarebytes
2025-03-26 02:10 - 2025-03-26 02:10 - 000002104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-03-26 02:09 - 2025-03-26 02:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-03-26 02:09 - 2025-03-26 02:09 - 000000000 ____D C:\Program Files\Malwarebytes
2025-03-26 02:08 - 2025-03-26 02:08 - 002834160 _____ (Malwarebytes) C:\Users\fanti\Downloads\MBSetup.exe
2025-03-25 15:04 - 2025-03-25 15:08 - 000000000 ____D C:\Users\fanti\AppData\Local\Athena
2025-03-25 15:03 - 2025-03-25 15:03 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2025-03-24 12:09 - 2025-03-24 12:09 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\Secrétariat
2025-03-24 11:35 - 2025-03-24 11:42 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\nikon coolpiX
2025-03-24 11:34 - 2025-03-24 11:35 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\AIPTEK cam
2025-03-23 18:31 - 2025-03-23 18:31 - 000705877 _____ C:\Users\fanti\Downloads\Abel 31 x amne house type beat real me @bi2lprod.mp3.asd
2025-03-21 17:23 - 2025-03-21 17:23 - 000467661 _____ C:\Users\fanti\Downloads\Sound of West Papua.mp3.asd
2025-03-21 15:36 - 2025-03-21 15:36 - 002681965 _____ C:\Users\fanti\Downloads\Réaction à Ptite Soeur & Gemroz - KAYFABE (il y aura des suites soyez en sûr).mp3.asd
2025-03-20 12:29 - 2025-03-20 16:37 - 000099968 _____ C:\Users\fanti\Downloads\FEU #10 Briquet (bruitage gratuit).mp3.asd
2025-03-20 12:27 - 2025-03-20 12:27 - 000037652 _____ C:\Users\fanti\Downloads\bruit de briquet.mp3.asd
2025-03-20 11:15 - 2025-03-20 17:33 - 001450109 _____ C:\Users\fanti\Downloads\Freya Nordic Vocals Royalty Free Music.mp3.asd
2025-03-20 00:33 - 2025-03-20 16:38 - 003912472 _____ (Alexander Roshal) C:\Users\fanti\Downloads\bpm.exe
2025-03-20 00:20 - 2025-03-20 00:24 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Fat Blob
2025-03-20 00:13 - 2025-03-20 00:13 - 000000000 ____D C:\Users\fanti\AppData\Roaming\BlobAudio
2025-03-20 00:09 - 2025-03-20 00:09 - 000000000 ____D C:\Users\fanti\AppData\Roaming\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\Program Files\WinRAR
2025-03-20 00:07 - 2025-03-20 00:07 - 003912472 _____ (Alexander Roshal) C:\Users\fanti\Downloads\winrar-x64-710fr.exe
2025-03-19 17:34 - 2025-03-21 14:51 - 000787577 _____ C:\Users\fanti\Downloads\(FREE) ThaHomey Type Beat ~ Mauve.mp3.asd
2025-03-17 16:32 - 2025-03-17 16:32 - 000661949 _____ C:\Users\fanti\Downloads\[FREE] Hyperpop Type Beat x Midwxst x Glaive - Infinity.mp3.asd
2025-03-17 16:01 - 2025-03-17 16:01 - 000806289 _____ C:\Users\fanti\Downloads\(free) type beat amne + irko + femtogo ~ spirit b2..mp3.asd
2025-03-17 13:07 - 2025-03-17 13:07 - 000798121 _____ C:\Users\fanti\Downloads\(free) luther + amne type beat last chapter.mp3.asd
2025-03-17 12:58 - 2025-03-17 12:58 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Xfer
2025-03-17 12:58 - 2025-03-17 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\Xfer
2025-03-17 12:55 - 2025-03-17 12:55 - 000009835 _____ C:\Users\fanti\Downloads\33507_Xfer_Records-OT.torrent
2025-03-17 12:53 - 2025-03-17 12:53 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Antares
2025-03-17 12:52 - 2025-03-17 12:52 - 000000000 ____D C:\Program Files\Common Files\Avid
2025-03-17 12:48 - 2025-03-17 12:58 - 000000000 ____D C:\Program Files\Common Files\VST3
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antares
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\ProgramData\Antares
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\Program Files\Antares Audio Technologies
2025-03-17 12:38 - 2025-03-17 12:38 - 000018109 _____ C:\Users\fanti\Downloads\26766_Antares-Auto-Tu.torrent
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ___HD C:\Program Files (x86)\Caicos
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\v1vlho
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\o0vtf2
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\mp3l0y
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\fosjre
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\eartcs
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\runtimes
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Users\fanti\AppData\Local\runtimes
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\epsilon
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\Deploy
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\batavia
2025-03-17 11:59 - 2025-03-17 11:59 - 000016896 _____ () C:\WINDOWS\fosco.exe
2025-03-16 23:25 - 2025-03-24 16:57 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Max 8
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Cycling '74
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Local\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\ProgramData\Max 8
2025-03-16 23:24 - 2025-03-16 23:24 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ableton Live 12 Lite.lnk
2025-03-16 23:23 - 2025-03-16 23:23 - 000000290 __RSH C:\ProgramData\ntuser.pol
2025-03-16 23:21 - 2025-03-16 23:21 - 000000000 ____D C:\ProgramData\Ableton
2025-03-16 23:19 - 2025-03-16 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Ableton
2025-03-16 23:19 - 2025-03-16 23:19 - 000000000 ____D C:\Program Files\Ableton
2025-03-16 21:41 - 2025-03-16 21:41 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-03-12 19:42 - 2025-03-12 19:43 - 000038809 _____ C:\Users\fanti\Downloads\attestation_070168658hf_2059341.pdf
2025-03-11 09:26 - 2025-03-11 09:27 - 000000000 ____D C:\WINDOWS\Windows.SystemToast.PresenceSensing.OnlookerDetection
2025-03-10 10:12 - 2025-03-10 10:12 - 000403036 _____ C:\Users\fanti\Downloads\Releve_de_Notes_Bac_2023.pdf
2025-03-10 01:09 - 2025-03-27 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-10 00:51 - 2025-03-10 00:51 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-03-10 00:51 - 2025-03-10 00:51 - 000070484 _____ C:\WINDOWS\system32\ctac.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-27 10:14 - 2024-11-28 16:13 - 000000000 ____D C:\Program Files (x86)\Steam
2025-03-27 10:04 - 2024-12-26 00:16 - 000003546 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2025-03-27 09:58 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-27 09:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-27 09:35 - 2024-11-26 12:17 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Microsoft\Word
2025-03-27 09:04 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\Packages
2025-03-26 17:06 - 2024-12-26 00:22 - 001684136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-26 17:06 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-03-26 17:00 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\D3DSCache
2025-03-26 16:58 - 2024-12-26 00:16 - 000003108 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2025-03-26 16:58 - 2024-12-26 00:16 - 000003088 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2025-03-26 16:58 - 2024-12-26 00:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-26 16:58 - 2024-12-26 00:14 - 000003066 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-03-26 16:58 - 2024-12-26 00:12 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-03-26 16:58 - 2024-08-27 12:26 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Registration
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-26 16:58 - 2022-05-25 20:05 - 000012288 ___SH C:\DumpStack.log.tmp
2025-03-26 16:57 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-03-26 16:57 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-26 15:04 - 2024-11-25 17:49 - 000000000 ____D C:\Program Files\Common Files\VST2
2025-03-26 15:02 - 2024-11-29 13:34 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\son
2025-03-26 14:39 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-26 14:14 - 2024-11-30 14:20 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-26 02:17 - 2024-11-25 15:35 - 000000000 ____D C:\Users\fanti\AppData\Roaming\utorrent
2025-03-26 02:17 - 2024-11-24 15:54 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\info
2025-03-26 02:10 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-26 00:17 - 2024-12-24 14:45 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-25 15:08 - 2024-11-26 14:39 - 000000000 ____D C:\Users\fanti\AppData\Roaming\EasyAntiCheat
2025-03-25 15:04 - 2024-11-22 19:54 - 000000000 ____D C:\Users\fanti\AppData\Local\UnrealEngine
2025-03-25 14:54 - 2025-02-06 00:16 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-12-26 00:16 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-12-26 00:16 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-11-22 13:02 - 000002428 _____ C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-24 23:53 - 2024-11-25 12:51 - 000000000 ____D C:\Users\fanti\AppData\Local\Ubisoft Game Launcher
2025-03-24 20:40 - 2024-11-24 14:25 - 000000000 ____D C:\XboxGames
2025-03-24 20:40 - 2022-05-25 20:06 - 000000000 ____D C:\ProgramData\Packages
2025-03-24 12:31 - 2024-12-26 00:16 - 000004250 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1732297191
2025-03-24 12:31 - 2024-11-22 18:39 - 000001426 _____ C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2025-03-24 11:11 - 2024-11-25 12:31 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\games
2025-03-22 20:18 - 2024-12-26 00:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-20 13:46 - 2024-11-22 11:23 - 000000000 ____D C:\Users\fanti\AppData\Local\CrashDumps
2025-03-19 23:54 - 2024-11-25 17:37 - 000000000 ____D C:\Users\fanti\AppData\Local\BitTorrentHelper
2025-03-19 19:26 - 2024-11-24 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2025-03-19 19:26 - 2024-11-24 14:07 - 000000000 ____D C:\Program Files\NordVPN
2025-03-17 17:53 - 2024-11-24 15:53 - 000000000 ____D C:\Program Files (x86)\Overwolf
2025-03-17 12:50 - 2024-11-24 14:07 - 000000000 ____D C:\ProgramData\NordVPN
2025-03-16 23:19 - 2024-08-27 12:29 - 000000000 ____D C:\ProgramData\Package Cache
2025-03-16 21:45 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-16 21:43 - 2024-11-24 14:25 - 002897472 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-03-16 21:43 - 2024-11-24 14:25 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-03-16 21:43 - 2024-11-24 14:25 - 000124480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-03-16 21:43 - 2024-11-24 14:25 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-03-16 21:42 - 2024-11-24 14:25 - 000788008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-03-16 21:42 - 2024-11-24 14:25 - 000267816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-03-16 21:42 - 2024-11-24 14:25 - 000243264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-03-16 21:40 - 2024-08-27 12:12 - 000000000 ____D C:\Program Files\Microsoft Office
2025-03-16 21:29 - 2024-12-26 00:12 - 000474432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-16 21:28 - 2024-04-01 17:37 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-16 21:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-16 21:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 19:53 - 2024-12-26 00:15 - 003346432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-03-12 17:04 - 2024-08-27 12:39 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Now.lnk
2025-03-12 17:04 - 2024-08-27 12:38 - 000000000 ____D C:\WINDOWS\TempInst
2025-03-11 11:24 - 2024-11-24 14:14 - 000000000 ____D C:\Users\fanti\AppData\Local\NordVPN
2025-03-11 11:23 - 2024-11-22 16:50 - 000000000 ____D C:\ProgramData\Nahimic
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-03-11 09:26 - 2024-12-26 00:08 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-11 09:26 - 2024-04-01 17:37 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-11 09:26 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-03-10 13:02 - 2024-12-24 14:51 - 000000000 ____D C:\Users\fanti\AppData\Local\Adobe
2025-03-10 13:02 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Adobe
2025-03-10 01:15 - 2024-04-01 08:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-03-09 23:53 - 2022-05-25 20:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-03-09 23:44 - 2024-11-24 14:07 - 000000000 ____D C:\Program Files\NordUpdater
2025-03-09 23:43 - 2024-12-26 00:16 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-09 23:43 - 2024-12-26 00:16 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-03-01 20:04 - 2024-12-25 17:29 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2025.lnk
2025-03-01 20:04 - 2024-12-24 15:05 - 000000000 ___HD C:\adobeTemp
==================== Fichiers à la racine de certains dossiers ========
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\App.exe.config
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\Cine.exe.config
2023-12-26 15:18 - 2023-12-26 15:18 - 000004096 _____ (Class) C:\Users\fanti\AppData\Local\Class.dll
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\Idi.exe.config
2021-11-20 17:07 - 2021-11-20 17:07 - 000274848 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.Core.dll
2021-11-20 17:07 - 2021-11-20 17:07 - 000033704 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.WinForms.dll
2021-11-20 17:07 - 2021-11-20 17:07 - 000039864 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.Wpf.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par fanti (administrateur) sur MARLEY (LENOVO 83GS) (27-03-2025 10:17:09)
Exécuté depuis C:\Users\fanti\Downloads\FRST64.exe
Profils chargés: fanti
Plate-forme: Microsoft Windows 11 Famille Version 24H2 26100.3476 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe" -noautoupdate -- "%1"
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Deploy\Idi.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files (x86)\Deploy\Idi.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.85\msedgewebview2.exe <7>
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <5>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\AI\ai.exe
(C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\fanti\AppData\Local\Programs\Opera GX\117.0.5408.140\opera_crashreporter.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(drivers\Lenovo\udc\Service\UDClientService.exe ->) (Lenovo -> ) C:\ProgramData\Lenovo\Udc\Hosts\24.10.0.10\x64\AppProvisioningPlugin.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_helper.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\FnHotkeyUtility.exe
(explorer.exe ->) () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Deploy\plasterboard.exe
(explorer.exe ->) (MARK OF THE UNICORN, INC. -> MOTU) C:\Program Files (x86)\MOTU\CoreUAC\MOTUMSeries.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(explorer.exe ->) (nordvpn s.a. -> NordVPN) C:\Program Files\NordVPN\NordVPN.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe <33>
(explorer.exe ->) (Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Ableton\USB Audio Driver\x64\AbletonAudioCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\Vantage\Addins\SmartColorAddin\1.0.4.132\x64\SEGameTool.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(NahimicService.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicAPO4Volume.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (FOR TESTING ONLY - IPF_PreProd_Cert -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_683097297aaa9bb4\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8a3f88e34f6b8385\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_58a0ea2de06916f7\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6fa60c4b09f4675e\AS\IAS\IntelAudioService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo AvatarMaster\bin\LenovoAvatarService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (MARK OF THE UNICORN, INC. -> ) C:\Program Files (x86)\MOTU\CoreUAC\Service\MOTUCoreUACAudioPolicyMediator.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe
(services.exe ->) (nordvpn s.a. -> NordVPN) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_49d0373b6410e907\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9366beb5d0043df3\RtkAudUService64.exe <2>
(services.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (思必驰科技股份有限公司 -> AI Speech Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\aispeechapo.inf_amd64_c60dcb8babaf9b09\AISControlService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(SteelSeries France SASU -> A-Volute) C:\Users\fanti\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.4.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.282.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\fanti\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (SteelSeries France SASU -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9366beb5d0043df3\RtkAudUService64.exe [1987544 2024-07-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MOTUMSeries.exe] => C:\Program Files (x86)\MOTU\CoreUAC\MOTUMSeries.exe [2775896 2024-10-01] (MARK OF THE UNICORN, INC. -> MOTU)
HKLM\...\Run: [Groen] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [Smolin] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [Snowmaking] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM\...\Run: [SnowmakingSnowmaking] => C:\Program Files (x86)\Deploy\plasterboard.exe [225927 2025-03-17] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-12-24] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131432 2025-01-18] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Sunroom] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [Dana] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [Feta] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKLM-x32\...\Run: [FetaFeta] => C:\Program Files (x86)\Deploy\plasterboard.exe [225927 2025-03-17] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37091856 2025-03-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [LenovoVantageToolbar] => C:\ProgramData\Lenovo\Vantage\AddinData\LenovoBatteryGaugeAddin\x64\QSHelper.exe [87960 2025-01-22] (Lenovo -> Lenovo)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4693088 2025-03-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\fanti\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Oceanographic] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Antlers] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Allotted] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Rupee] => C:\Program Files (x86)\Deploy\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Intimacies] => C:\Program Files (x86)\batavia\Cine.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [Merica] => C:\Program Files (x86)\Caicos\Idi.exe [16896 2025-03-17] () [Fichier non signé]
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [MicrosoftEdgeAutoLaunch_2ADAE01FD40FEE197B86E74516CA0432] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291136 2025-03-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-148919295-3635598345-763458970-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [559976 2025-01-20] (nordvpn s.a. -> NordVPN)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.167\Installer\chrmstp.exe [2025-03-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ableton USB Audio Control Panel Autostart.lnk [2025-03-16]
ShortcutTarget: Ableton USB Audio Control Panel Autostart.lnk -> C:\Program Files\Ableton\USB Audio Driver\x64\AbletonAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1DF767EE-4985-4010-8048-7435F6A4EC5C} - System32\Tasks\eartcs\2r2ljl\fxu6e7\rzq3b2\xrpyio\g1c4sh\f81tj1\445gg7\va4cku\w6zhz3\wm9xxn\e8fn7z\77vlg0\tndtoe\pyjrhy\8yjpnp\v8vwtg => C:\Program Files (x86)\Deploy\trendsetter.exe [70636 2025-03-17] () [Fichier non signé] <==== ATTENTION
Task: {D037042A-D6FF-4E79-8F63-597114AA2958} - System32\Tasks\fosjre\m0am5a\fl0j9f\itg3t9\4cwo3d\hreyo3\ghcat5\zqt7jt\azgviq\7wj9j0\ppmvk5\vdc6it\y8awzt\87g874\057s9v\a2socn\5d9dca => %localappdata%\compte.exe (Pas de fichier) <==== ATTENTION
Task: {6CD45E1E-A034-400D-BB34-CBA58C17A075} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{04A875ED-3644-432B-97BC-EB3CD1D95922} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {7F8DAFE2-33AE-40E2-A071-91B268A1400B} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194048 2025-02-23] (Adobe Inc. -> Adobe Inc.)
Task: {B8AAB995-816F-41BC-BE95-F1A6C5CB3477} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {7C8A59FC-C689-4963-8415-87A16CE69103} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {88938515-1AA8-4D26-9886-166E5D067ABA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c6fabf61-ecb0-4ebd-9557-0154bdd4e4d5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {58C99945-3201-416C-BD51-8AC5F99CBA6E} - System32\Tasks\Lenovo\LenovoNowLauncher => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.exe [3560352 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/task
Task: {ED32E9C5-7E0D-4F01-BE13-E2E5F5C52A87} - System32\Tasks\Lenovo\LenovoNowQuarterlyLaunch => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\/QuarterlyLaunch
Task: {641DDA59-5FCD-493E-868B-01D41B3B31EA} - System32\Tasks\Lenovo\LenovoNowTask => C:\Program Files (x86)\Lenovo\LenovoNow\x86\LenovoNow.Task.exe [2360224 2025-02-17] (Lenovo -> Lenovo) -> C:\Program Files (x86)\Lenovo\LenovoNow\x86\$(EventData)
Task: {2653904F-72A4-41EB-8C89-821D99F93C17} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {D18039F9-B511-4729-A796-E999D4D2D3B5} - System32\Tasks\Lenovo\UDC\Lenovo UDC Maintainance Task => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 220
Task: {80624FAC-125E-42D3-907F-404C9C724F20} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [196960 2024-10-24] (Lenovo -> Lenovo Group Ltd.)
Task: {F026FFE3-AAFE-40D9-978E-DD92E38686CD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [102400 2024-12-25] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {A2344684-3C8D-4E7F-910C-E40DD379EB27} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {E6E8EDA2-3D03-46CA-84F8-34DE56F3AA6A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {CB4F3EF9-9AB6-47CF-AFF7-034E40A4E982} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {5A4D7EC9-3054-4B84-8825-4678EDF43E48} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {389AE4B7-2558-49A4-8FFB-1360CB93851C} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {9CD8D88B-DBD0-42C5-BC79-0D0142DC02EA} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0D4B7CF5-F7DE-4D3F-826E-1F5733B2AE4B} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {047F95FC-2307-440C-903F-F4B56FB0A5D5} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {7FC148FE-E533-4252-B48B-BC6B5FB74A59} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {0E3D24C0-B7EE-42B6-A8C9-9BD2B44DD30B} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {DF5232F1-F685-48E8-AA5A-2D4328493457} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask => C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe [143768 2025-01-17] (Lenovo -> )
Task: {450B9128-BFEC-4ABA-9ACF-D9374213595B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe [278016 2025-02-20] (Lenovo -> Lenovo)
Task: {A3522832-6988-45A4-AF51-18244E38BAC6} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe /repair (Pas de fichier)
Task: {6942123C-9F63-4C97-84BC-A4FF793BA14F} - System32\Tasks\McAfee\DAD.WPS.Execute.Updates => "C:\Program Files\McAfee\WPS\1.7.209.1\dad\mc-dad.exe" (Pas de fichier)
Task: {8B3D49D2-5E1A-4DAA-9BD6-C36F50A0A375} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {C08108FD-7FE8-4690-BC8D-05725D6D9280} - System32\Tasks\McAfee\WPS\McAfee Anti-Tracker Scanner => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {833C2668-419A-487A-9379-75CEE06B8E6D} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {94AA4E34-5A76-4843-8218-7C61EB91DFB0} - System32\Tasks\McAfee\WPS\McAfee Message Check => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {8ED7A028-F97E-4932-91FB-476948B61D0D} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {70ADF6EC-4C5A-4EF0-937C-B04486A8385B} - System32\Tasks\McAfee\WPS\McAfee restart of PC => {1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D}
Task: {9AAFD65C-52A0-4FF4-A051-7160FB22B66E} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {EEFDC827-61F3-444C-8EE6-C342596C2BF9} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FFCCC82D-95F8-48C6-9B75-01E2BA34793F} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {3752092F-BE1B-46EA-8F12-B840CE06A2E4} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {8CA2CB49-00BF-4081-8A6D-10B3953C5505} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3475515-94A1-4F18-BD51-E034A7A78E46} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895464 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {33833D83-5A62-49A6-BF11-7084B5876874} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895464 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5611DE3A-5C76-44B8-91A7-FE95EB6671B4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {355B99BE-3595-4A1F-974E-B9D72F866857} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314512 2025-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0000F6BB-13BE-4F59-8FC4-137511A6DB28} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [197256 2025-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {A40AB111-DAF0-4E88-8593-6B115E4C8F8C} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1118128 0] (SteelSeries France SASU -> Nahimic)
Task: {1331016B-AD4D-48F8-984D-33D81F51D52B} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1438128 0] (SteelSeries France SASU -> Nahimic)
Task: {1F661811-4280-4AC5-926D-74F15FB946EA} - System32\Tasks\o0vtf2\47qjxe\8566kz\fznvm5\dfixxe\6p62t4\ntaoqs\3gzjra\qoqley\8ci4l6\ir522d\9n8txq\afffbt\9z194s\cczhi7\pjiadh\ul6e69 => %localappdata%\winning.exe "000h000t000t000p000:000/000/000w000w000w000.000a000l000l000t000i000p000i000.000c000o000m000/000l2so0so2so0005so0yq3yq1000l7lsoaspqM0008V2AhILQ0z000BRaUm1tg" (Pas de fichier) <==== ATTENTION
Task: {7E5BA073-215A-41E4-A7D8-F4AE681F11BD} - System32\Tasks\OneDrive Startup Task-S-1-5-21-148919295-3635598345-763458970-1001 => C:\Users\fanti\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\OneDriveLauncher.exe [670528 2025-03-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {4862EF31-FF54-4865-B93B-64C709DB0AE7} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1738797420 => C:\Users\fanti\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\fanti\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {5EF86377-930D-422C-8AAC-FA7A65E4E914} - System32\Tasks\Opera GX scheduled Autoupdate 1732297191 => C:\Users\fanti\AppData\Local\Programs\Opera GX\autoupdate\opera_autoupdate.exe [5660568 2025-03-19] (Opera Norway AS -> Opera Software)
Task: {037EB1B0-D2E1-47D3-B47A-A476590D5B8B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397440 2025-03-17] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\356425F554236383F5537484A5: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\6416E64796E67237020586F6E65602D447866627: [DhcpNameServer] 192.168.249.28
Tcpip\..\Interfaces\{74de0f14-a073-4edd-87a5-6e0232823546}\6427565626F687D2142333431473: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fc01fcd5-2b9d-2fd8-78d8-cb78b313e2b2}: [NameServer] 103.86.96.100,103.86.99.100
Edge:
=======
Edge Profile: C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2025-03-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (McAfee® WebAdvisor) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-03-09]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Google Docs hors connexion) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-09]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\fanti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-11-22]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2025-01-18] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2025-01-18] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default [2025-03-17]
CHR StartupUrls: Default -> "hxxps://www.bing.com/?PC=W931"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?PC=K413&q={searchTerms}&FORM=K413DF
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (McAfee® WebAdvisor) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-12-24]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Google Docs hors connexion) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-17]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fanti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-12-24]hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-148919295-3635598345-763458970-1001) Opera GXStable - "C:\Users\fanti\AppData\Local\Programs\Opera GX\opera.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944040 2025-01-18] (Adobe Inc. -> Adobe Inc.)
R2 AISpeechService; C:\WINDOWS\System32\DriverStore\FileRepository\aispeechapo.inf_amd64_c60dcb8babaf9b09\AISControlService.exe [322952 2024-11-02] (思必驰科技股份有限公司 -> AI Speech Co., Ltd.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18991400 2024-12-08] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13768912 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_683097297aaa9bb4\ipfsvc.exe [562040 2024-10-29] (FOR TESTING ONLY - IPF_PreProd_Cert -> Intel Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19147360 2025-02-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-03-24] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2025-03-25] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [345904 2024-12-17] (Underwriters Laboratories Inc. -> Futuremark)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_740dc8aba9846dbb\lib\PlatformLicenseManagerService.exe [741600 2024-05-07] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6fa60c4b09f4675e\AS\IAS\IntelAudioService.exe [531048 2024-11-02] (Intel Corporation -> Intel)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_uf.exe [3084992 2024-10-29] (Intel Corporation -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_835bd694f1ef7154\LenovoUtilityService.exe [180704 2024-12-05] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe [34816 2025-02-20] (Lenovo -> Lenovo)
R2 Lenovo_Avatar_Service; C:\Program Files\Lenovo\Lenovo AvatarMaster\bin\LenovoAvatarService.exe [54552 2024-04-25] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9486464 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [943216 2025-03-19] (McAfee, LLC -> McAfee, LLC)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MOTUCoreUACAudioPolicyMediator; C:\Program Files (x86)\MOTU\CoreUAC\Service\MOTUCoreUACAudioPolicyMediator.exe [93016 2024-10-01] (MARK OF THE UNICORN, INC. -> )
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1910192 2024-05-20] (SteelSeries France SASU -> Nahimic)
R3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-12-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [2509280 2025-01-20] (nordvpn s.a. -> NordVPN)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_49d0373b6410e907\Display.NvContainer\NVDisplay.Container.exe [1275552 2024-12-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397440 2025-03-17] (Overwolf Ltd -> Overwolf LTD)
R2 UDCService; C:\WINDOWS\System32\drivers\Lenovo\udc\Service\UDClientService.exe [72520 2024-10-24] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12285272 2024-12-08] (KRAFTON, Inc. -> KRAFTON, Inc)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3823288 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_6f8ae740d22247ce\iaLPSS2_GPIO2_ADL.sys [141288 2024-05-15] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_563fbcd35feb69a6\iaLPSS2_I2C_ADL.sys [211432 2024-05-15] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_c4581e5c36b81f6c\ipf_acpi.sys [88656 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_cpu.sys [88144 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_fe2967a6eb0d3a7d\ipf_lf.sys [499392 2024-10-29] (Intel Corporation -> Intel Corporation)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
R0 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-03-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [236728 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\System32\Drivers\mbam.sys [80448 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2025-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2025-03-26] (Malwarebytes Inc. -> Malwarebytes)
S3 MOTUCoreUAC; C:\WINDOWS\System32\Drivers\MOTUCoreUAC.sys [317864 2024-10-01] (MARK OF THE UNICORN, INC. -> MOTU, Inc)
R3 mshield; C:\Program Files\NordVPN\NordSec ThreatProtection\1.4.36.8\mshield.sys [45384 2025-02-25] (nordvpn s.a. -> Nordvpn S.A.)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [95856 2024-05-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 NahimicXVAD; C:\WINDOWS\System32\drivers\NahimicXVAD.sys [95896 2024-05-16] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [95896 2024-05-16] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R2 NDivert; C:\Program Files\NordVPN\7.36.1.0\Drivers\NDivert.sys [188752 2025-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Nordvpn S.A.)
R4 NordDivert10; C:\Program Files\NordVPN\NordSec ThreatProtection\1.4.36.8\NordDivert1064.sys [97104 2025-02-25] (nordvpn s.a. -> NordVPN/Basil)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [237216 2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 ovpn-dco; C:\WINDOWS\System32\drivers\ovpn-dco.sys [104600 2024-10-01] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_16d0e5f2b3759518\rt68cx21x64.sys [845256 2024-08-27] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [51192 2024-11-22] (OpenVPN Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [53088 2024-10-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2024-11-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-11-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\WPS\1.25.208.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-27 10:17 - 2025-03-27 10:17 - 000044413 _____ C:\Users\fanti\Downloads\FRST.txt
2025-03-27 09:53 - 2025-03-27 09:54 - 000000000 ____D C:\AdwCleaner
2025-03-27 09:53 - 2025-03-27 09:53 - 009566696 _____ (Malwarebytes) C:\Users\fanti\Downloads\adwcleaner.exe
2025-03-26 17:06 - 2025-03-26 17:06 - 000756836 _____ C:\WINDOWS\system32\perfh00C.dat
2025-03-26 17:06 - 2025-03-26 17:06 - 000151172 _____ C:\WINDOWS\system32\perfc00C.dat
2025-03-26 16:58 - 2025-03-26 16:58 - 000236728 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2025-03-26 16:58 - 2025-03-26 16:58 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2025-03-26 16:27 - 2025-03-26 16:27 - 001245181 _____ C:\Users\fanti\Downloads\Bulletins 1er et 2ème semestre 1ère Mode_20250326_0001.pdf
2025-03-26 14:53 - 2025-03-27 10:17 - 000000000 ____D C:\FRST
2025-03-26 14:52 - 2025-03-26 14:52 - 002404352 _____ (Farbar) C:\Users\fanti\Downloads\FRST64.exe
2025-03-26 02:11 - 2025-03-27 10:05 - 000000000 ____D C:\Users\fanti\AppData\Local\Malwarebytes
2025-03-26 02:10 - 2025-03-26 02:10 - 000002104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-03-26 02:09 - 2025-03-26 02:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-03-26 02:09 - 2025-03-26 02:09 - 000000000 ____D C:\Program Files\Malwarebytes
2025-03-26 02:08 - 2025-03-26 02:08 - 002834160 _____ (Malwarebytes) C:\Users\fanti\Downloads\MBSetup.exe
2025-03-25 15:04 - 2025-03-25 15:08 - 000000000 ____D C:\Users\fanti\AppData\Local\Athena
2025-03-25 15:03 - 2025-03-25 15:03 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2025-03-24 12:09 - 2025-03-24 12:09 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\Secrétariat
2025-03-24 11:35 - 2025-03-24 11:42 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\nikon coolpiX
2025-03-24 11:34 - 2025-03-24 11:35 - 000000000 ____D C:\Users\fanti\OneDrive\Bureau\AIPTEK cam
2025-03-23 18:31 - 2025-03-23 18:31 - 000705877 _____ C:\Users\fanti\Downloads\Abel 31 x amne house type beat real me @bi2lprod.mp3.asd
2025-03-21 17:23 - 2025-03-21 17:23 - 000467661 _____ C:\Users\fanti\Downloads\Sound of West Papua.mp3.asd
2025-03-21 15:36 - 2025-03-21 15:36 - 002681965 _____ C:\Users\fanti\Downloads\Réaction à Ptite Soeur & Gemroz - KAYFABE (il y aura des suites soyez en sûr).mp3.asd
2025-03-20 12:29 - 2025-03-20 16:37 - 000099968 _____ C:\Users\fanti\Downloads\FEU #10 Briquet (bruitage gratuit).mp3.asd
2025-03-20 12:27 - 2025-03-20 12:27 - 000037652 _____ C:\Users\fanti\Downloads\bruit de briquet.mp3.asd
2025-03-20 11:15 - 2025-03-20 17:33 - 001450109 _____ C:\Users\fanti\Downloads\Freya Nordic Vocals Royalty Free Music.mp3.asd
2025-03-20 00:33 - 2025-03-20 16:38 - 003912472 _____ (Alexander Roshal) C:\Users\fanti\Downloads\bpm.exe
2025-03-20 00:20 - 2025-03-20 00:24 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Fat Blob
2025-03-20 00:13 - 2025-03-20 00:13 - 000000000 ____D C:\Users\fanti\AppData\Roaming\BlobAudio
2025-03-20 00:09 - 2025-03-20 00:09 - 000000000 ____D C:\Users\fanti\AppData\Roaming\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-20 00:08 - 2025-03-20 00:08 - 000000000 ____D C:\Program Files\WinRAR
2025-03-20 00:07 - 2025-03-20 00:07 - 003912472 _____ (Alexander Roshal) C:\Users\fanti\Downloads\winrar-x64-710fr.exe
2025-03-19 17:34 - 2025-03-21 14:51 - 000787577 _____ C:\Users\fanti\Downloads\(FREE) ThaHomey Type Beat ~ Mauve.mp3.asd
2025-03-17 16:32 - 2025-03-17 16:32 - 000661949 _____ C:\Users\fanti\Downloads\[FREE] Hyperpop Type Beat x Midwxst x Glaive - Infinity.mp3.asd
2025-03-17 16:01 - 2025-03-17 16:01 - 000806289 _____ C:\Users\fanti\Downloads\(free) type beat amne + irko + femtogo ~ spirit b2..mp3.asd
2025-03-17 13:07 - 2025-03-17 13:07 - 000798121 _____ C:\Users\fanti\Downloads\(free) luther + amne type beat last chapter.mp3.asd
2025-03-17 12:58 - 2025-03-17 12:58 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Xfer
2025-03-17 12:58 - 2025-03-17 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\Xfer
2025-03-17 12:55 - 2025-03-17 12:55 - 000009835 _____ C:\Users\fanti\Downloads\33507_Xfer_Records-OT.torrent
2025-03-17 12:53 - 2025-03-17 12:53 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Antares
2025-03-17 12:52 - 2025-03-17 12:52 - 000000000 ____D C:\Program Files\Common Files\Avid
2025-03-17 12:48 - 2025-03-17 12:58 - 000000000 ____D C:\Program Files\Common Files\VST3
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antares
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\ProgramData\Antares
2025-03-17 12:48 - 2025-03-17 12:52 - 000000000 ____D C:\Program Files\Antares Audio Technologies
2025-03-17 12:38 - 2025-03-17 12:38 - 000018109 _____ C:\Users\fanti\Downloads\26766_Antares-Auto-Tu.torrent
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ___HD C:\Program Files (x86)\Caicos
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\v1vlho
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\o0vtf2
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\mp3l0y
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\fosjre
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\eartcs
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\WINDOWS\runtimes
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Users\fanti\AppData\Local\runtimes
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\epsilon
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\Deploy
2025-03-17 12:30 - 2025-03-17 12:30 - 000000000 ____D C:\Program Files (x86)\batavia
2025-03-17 11:59 - 2025-03-17 11:59 - 000016896 _____ () C:\WINDOWS\fosco.exe
2025-03-16 23:25 - 2025-03-24 16:57 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Max 8
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\OneDrive\Documents\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Cycling '74
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\Users\fanti\AppData\Local\Ableton
2025-03-16 23:25 - 2025-03-16 23:25 - 000000000 ____D C:\ProgramData\Max 8
2025-03-16 23:24 - 2025-03-16 23:24 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ableton Live 12 Lite.lnk
2025-03-16 23:23 - 2025-03-16 23:23 - 000000290 __RSH C:\ProgramData\ntuser.pol
2025-03-16 23:21 - 2025-03-16 23:21 - 000000000 ____D C:\ProgramData\Ableton
2025-03-16 23:19 - 2025-03-16 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Ableton
2025-03-16 23:19 - 2025-03-16 23:19 - 000000000 ____D C:\Program Files\Ableton
2025-03-16 21:41 - 2025-03-16 21:41 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-03-12 19:42 - 2025-03-12 19:43 - 000038809 _____ C:\Users\fanti\Downloads\attestation_070168658hf_2059341.pdf
2025-03-11 09:26 - 2025-03-11 09:27 - 000000000 ____D C:\WINDOWS\Windows.SystemToast.PresenceSensing.OnlookerDetection
2025-03-10 10:12 - 2025-03-10 10:12 - 000403036 _____ C:\Users\fanti\Downloads\Releve_de_Notes_Bac_2023.pdf
2025-03-10 01:09 - 2025-03-27 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-10 00:51 - 2025-03-10 00:51 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-03-10 00:51 - 2025-03-10 00:51 - 000070484 _____ C:\WINDOWS\system32\ctac.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-03-27 10:14 - 2024-11-28 16:13 - 000000000 ____D C:\Program Files (x86)\Steam
2025-03-27 10:04 - 2024-12-26 00:16 - 000003546 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2025-03-27 09:58 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-27 09:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-27 09:35 - 2024-11-26 12:17 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Microsoft\Word
2025-03-27 09:04 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\Packages
2025-03-26 17:06 - 2024-12-26 00:22 - 001684136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-26 17:06 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-03-26 17:00 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Local\D3DSCache
2025-03-26 16:58 - 2024-12-26 00:16 - 000003108 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2025-03-26 16:58 - 2024-12-26 00:16 - 000003088 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2025-03-26 16:58 - 2024-12-26 00:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-26 16:58 - 2024-12-26 00:14 - 000003066 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-03-26 16:58 - 2024-12-26 00:12 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-03-26 16:58 - 2024-08-27 12:26 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Registration
2025-03-26 16:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-26 16:58 - 2022-05-25 20:05 - 000012288 ___SH C:\DumpStack.log.tmp
2025-03-26 16:57 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-03-26 16:57 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-26 15:04 - 2024-11-25 17:49 - 000000000 ____D C:\Program Files\Common Files\VST2
2025-03-26 15:02 - 2024-11-29 13:34 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\son
2025-03-26 14:39 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-26 14:14 - 2024-11-30 14:20 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-26 02:17 - 2024-11-25 15:35 - 000000000 ____D C:\Users\fanti\AppData\Roaming\utorrent
2025-03-26 02:17 - 2024-11-24 15:54 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\info
2025-03-26 02:10 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-26 00:17 - 2024-12-24 14:45 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-25 15:08 - 2024-11-26 14:39 - 000000000 ____D C:\Users\fanti\AppData\Roaming\EasyAntiCheat
2025-03-25 15:04 - 2024-11-22 19:54 - 000000000 ____D C:\Users\fanti\AppData\Local\UnrealEngine
2025-03-25 14:54 - 2025-02-06 00:16 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-12-26 00:16 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-12-26 00:16 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-148919295-3635598345-763458970-1001
2025-03-25 14:54 - 2024-11-22 13:02 - 000002428 _____ C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-24 23:53 - 2024-11-25 12:51 - 000000000 ____D C:\Users\fanti\AppData\Local\Ubisoft Game Launcher
2025-03-24 20:40 - 2024-11-24 14:25 - 000000000 ____D C:\XboxGames
2025-03-24 20:40 - 2022-05-25 20:06 - 000000000 ____D C:\ProgramData\Packages
2025-03-24 12:31 - 2024-12-26 00:16 - 000004250 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1732297191
2025-03-24 12:31 - 2024-11-22 18:39 - 000001426 _____ C:\Users\fanti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2025-03-24 11:11 - 2024-11-25 12:31 - 000000000 ___RD C:\Users\fanti\OneDrive\Bureau\games
2025-03-22 20:18 - 2024-12-26 00:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-20 13:46 - 2024-11-22 11:23 - 000000000 ____D C:\Users\fanti\AppData\Local\CrashDumps
2025-03-19 23:54 - 2024-11-25 17:37 - 000000000 ____D C:\Users\fanti\AppData\Local\BitTorrentHelper
2025-03-19 19:26 - 2024-11-24 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2025-03-19 19:26 - 2024-11-24 14:07 - 000000000 ____D C:\Program Files\NordVPN
2025-03-17 17:53 - 2024-11-24 15:53 - 000000000 ____D C:\Program Files (x86)\Overwolf
2025-03-17 12:50 - 2024-11-24 14:07 - 000000000 ____D C:\ProgramData\NordVPN
2025-03-16 23:19 - 2024-08-27 12:29 - 000000000 ____D C:\ProgramData\Package Cache
2025-03-16 21:45 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-16 21:43 - 2024-11-24 14:25 - 002897472 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-03-16 21:43 - 2024-11-24 14:25 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-03-16 21:43 - 2024-11-24 14:25 - 000124480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-03-16 21:43 - 2024-11-24 14:25 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-03-16 21:42 - 2024-11-24 14:25 - 000788008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-03-16 21:42 - 2024-11-24 14:25 - 000267816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-03-16 21:42 - 2024-11-24 14:25 - 000243264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-03-16 21:40 - 2024-08-27 12:12 - 000000000 ____D C:\Program Files\Microsoft Office
2025-03-16 21:29 - 2024-12-26 00:12 - 000474432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-16 21:28 - 2024-04-01 17:37 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-16 21:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-16 21:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 19:53 - 2024-12-26 00:15 - 003346432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-03-12 17:04 - 2024-08-27 12:39 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Now.lnk
2025-03-12 17:04 - 2024-08-27 12:38 - 000000000 ____D C:\WINDOWS\TempInst
2025-03-11 11:24 - 2024-11-24 14:14 - 000000000 ____D C:\Users\fanti\AppData\Local\NordVPN
2025-03-11 11:23 - 2024-11-22 16:50 - 000000000 ____D C:\ProgramData\Nahimic
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-11 09:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-03-11 09:26 - 2024-12-26 00:08 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-11 09:26 - 2024-04-01 17:37 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-11 09:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-11 09:26 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-03-10 13:02 - 2024-12-24 14:51 - 000000000 ____D C:\Users\fanti\AppData\Local\Adobe
2025-03-10 13:02 - 2024-11-22 12:58 - 000000000 ____D C:\Users\fanti\AppData\Roaming\Adobe
2025-03-10 01:15 - 2024-04-01 08:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-03-09 23:53 - 2022-05-25 20:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-03-09 23:44 - 2024-11-24 14:07 - 000000000 ____D C:\Program Files\NordUpdater
2025-03-09 23:43 - 2024-12-26 00:16 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-09 23:43 - 2024-12-26 00:16 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-03-01 20:04 - 2024-12-25 17:29 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2025.lnk
2025-03-01 20:04 - 2024-12-24 15:05 - 000000000 ___HD C:\adobeTemp
==================== Fichiers à la racine de certains dossiers ========
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\App.exe.config
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\Cine.exe.config
2023-12-26 15:18 - 2023-12-26 15:18 - 000004096 _____ (Class) C:\Users\fanti\AppData\Local\Class.dll
2024-02-09 20:57 - 2024-02-09 20:57 - 000000182 _____ () C:\Users\fanti\AppData\Local\Idi.exe.config
2021-11-20 17:07 - 2021-11-20 17:07 - 000274848 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.Core.dll
2021-11-20 17:07 - 2021-11-20 17:07 - 000033704 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.WinForms.dll
2021-11-20 17:07 - 2021-11-20 17:07 - 000039864 _____ (Microsoft) C:\Users\fanti\AppData\Local\Microsoft.Web.WebView2.Wpf.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================