Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-07-2022
Exécuté par morea (administrateur) sur DESKTOP-S1LIP93 (LENOVO 80WK) (21-07-2022 18:20:22)
Exécuté depuis C:\Users\morea\Downloads
Profils chargés: morea
Plate-forme: Microsoft Windows 10 Famille Version 1803 17134.1304 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Origin\Origin.exe ->) (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <3>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\WinZip\FAHWindow64.exe
(Discord Inc. -> Discord Inc.) C:\Users\morea\AppData\Local\Discord\app-1.0.9005\Discord.exe <6>
(DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxEM.exe
(explorer.exe ->) (Corel Corporation -> WinZip Computing) C:\WinZip\WzPreloader.exe
(explorer.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Mozilla Firefox\firefox.exe <30>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\rempl\sedsvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Tablet\Wacom\WTabletServicePro.exe
(Spotify AB -> Spotify Ltd) M:\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.1120_none_c3e5cafe697124bd\TiWorker.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Tous(tes)) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Riot Vanguard\vgtray.exe [3071232 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [WinZip UN] => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\WinZip\FAHConsole.exe [436704 2021-08-19] (Corel Corporation -> WinZip Computing, S.L.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (Pas de fichier)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [32256 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [4103224 2020-01-07] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [3755408 2020-01-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [OneDrive] => "C:\Microsoft OneDrive\OneDrive.exe" /background (Pas de fichier)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [Discord] => C:\Users\morea\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3148016 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Pas de fichier)
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [174080 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [836608 2018-09-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG2900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCB.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [44544 2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Appmon: C:\Windows\system32\AppMon.dll [114688 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2900 series: C:\Windows\system32\CNMLMCB.DLL [406016 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [1180672 2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\Windows\system32\FXSMON.DLL [46080 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [218112 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [333824 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\WSDMon.dll [568832 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\system32\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> C:\Windows\system32\themeui.dll [2018-09-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\system32\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> C:\Windows\system32\shell32.dll [2020-02-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\mscories.dll [2018-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-07] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\SysWOW64\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\mscories.dll [2018-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{01A30791-40AE-4653-AB2E-FD210019AE88}] -> C:\Windows\system32\mgmtrefreshcredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1b283861-754f-4022-ad47-a5eaaa618894}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1ee7337f-85ac-45e2-a23c-37c753209769}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2D8B3101-E025-480D-917C-835522C7F628}] -> C:\Windows\system32\fidocredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{48B4E58D-2791-456C-9091-D524C6C706F2}] -> C:\Windows\System32\devicengccredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{600e7adb-da3e-41a4-9225-3c0399e88c0c}] -> C:\Windows\system32\cngcredui.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8AF662BF-65A0-4D0A-A540-A338A999D36F}] -> C:\Windows\System32\FaceCredentialProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8FD7E19C-3BF7-489B-A72C-846AB3678C96}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{BEC09223-B018-416D-A0AC-523971B639F5}] -> C:\Windows\System32\BioCredProv.dll [2018-07-06] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> C:\Windows\System32\FaceCredentialProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{D6886603-9D2F-4EB2-B667-1971041FA96B}] -> C:\Windows\System32\ngccredprov.dll [2018-09-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Windows\system32\wlidcredprov.dll [2019-01-01] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\PLAP Providers: [{5537E283-B1E7-4EF8-9C6E-7AB0AFE5056D}] -> C:\Windows\system32\rasplap.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\system32\wlgpclnt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> C:\Windows\system32\auditcse.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\system32\fdeploy.dll [2018-08-09] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{3610eda5-77ef-11d2-8dc5-00c04fa31a66}] -> C:\Windows\System32\dskquota.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4bcd6cde-777b-48b6-9804-43568e23545d}] -> C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4D2F9B6F-1E52-4711-A382-6A8B1A003DE6}] -> C:\Windows\System32\tsworkspace.dll [2019-07-09] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> C:\Windows\system32\WorkFoldersGPExt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\system32\dmenrollengine.dll [2019-10-02] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7933F41E-56F8-41d6-A31C-4148A711EE93}] -> C:\Windows\System32\srchadmin.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7B849a69-220F-451E-B3FE-2CB811AF94AE}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\system32\scecli.dll [2018-10-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{8A28E2C5-8D06-49A4-A08C-632DAA493E17}] -> C:\Windows\system32\gpprnext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\system32\dot3gpclnt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> C:\Windows\system32\pwlauncher.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> C:\Windows\system32\pwlauncher.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{e437bc1c-aa7d-11d2-a382-00c04f991e27}] -> C:\Windows\System32\polstore.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> C:\Windows\system32\auditcse.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-09-21]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
BootExecute: autocheck autochk *
AlternateShell: cmd.exe
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05D7D96E-6639-4295-BC97-1229380EE137} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {08DCBC01-B004-4CA6-B0D3-280CB876D1C4} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\\CUAssistant\culauncher.exe (Pas de fichier)
Task: {0A7C0E9B-C406-4226-99B5-D589454C3930} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {0EE855BE-555F-4DB4-B5B5-BED0B985674A} - System32\Tasks\WinZip Update Notifier 1 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {108FEC50-076B-47AF-9B7E-8D3134F1D278} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {171EDD05-C80B-43DE-856C-BD88AB3135EC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C755CBF-B72C-4874-8AC7-2E411F304876} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-03] (Google Inc -> Google Inc.)
Task: {20B492B2-6748-4740-87A8-84E900FAD868} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-03] (Google Inc -> Google Inc.)
Task: {2A324063-3E49-45EB-9ECC-B1F7A14F8F23} - System32\Tasks\WinZip Update Notifier 2 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {309585ED-D73A-4E16-B62A-41A56CCB1B05} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\\rempl\sedlauncher.exe [352056 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {467AC835-9832-4B75-92B1-5A7F97934800} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\\Microsoft OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {47BB12A3-2246-4A99-A23A-C66F47E18773} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {607E0BA6-4E9D-4900-A4B5-0CDE77A7622E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {67B07CD8-196D-4CE7-9A14-62F7E7C8BAA1} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {68391DF1-9F07-49D5-ADA1-C1499CF2083C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {68E9C598-37E9-4D45-96F3-036E43F8778C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69D7DD65-1434-40DD-82C5-BE944BEE0A0E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\\Windows Media Player\wmpnscfg.exe [69120 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
Task: {75161F44-DD14-4B28-8F21-7DA251C074BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {7BB62935-B5AB-4A61-AA59-95AECEC5BC71} - System32\Tasks\WinZip Update Notifier 3 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {7E9E449A-04F9-4510-83EF-24E3A25C33D9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {849D78D4-9774-4E60-A9A1-EC1B04630BAE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BDB48F2-D119-491E-AD86-6CBD706EF819} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {991886BD-565B-4DEE-9F20-E8AC7D41779B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 9388B6559483FD17 => C:\Mozilla Firefox\default-browser-agent.exe do-task "9388B6559483FD17"
Task: {9CAEDABF-A457-4E4F-9154-5AA851FC8E2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B52E76EF-1D03-4AD9-AECB-0B2ECAF421B9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B55BD09A-41B5-47B7-916A-BC03EAC92BB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B79AD0F6-138E-4423-8EC9-94C6451D1600} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BC654BE5-CF80-4C0C-85CB-C9C655AE1336} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BE90D58C-3FE7-47FA-AED5-6650100D8FAB} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {CB8DA84F-48A9-405B-8FDA-9BCCEE7507CC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D436B0F2-E181-46E1-AB0F-D5A2184C74C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-15] (Adobe Inc. -> Adobe)
Task: {DCDA4D2F-466C-440E-8CB4-FDD56B286AF9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9DEFF60-2236-41BA-9D30-D0683BC31737} - System32\Tasks\Mozilla\Firefox Background Update 9388B6559483FD17 => C:\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\9388B6559483FD17\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EE489535-E2C1-4A04-89F4-2CD7E42E3758} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCA7DD1B-806F-4CA6-8492-E3D3649CA2F3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-15] (Adobe Inc. -> Adobe)
Task: {FE207087-C274-44A9-BF65-371C3464614C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0d56b384-c36c-4a02-8228-783a65ca6815}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{9024f56f-ed57-45f5-bbef-9a738b0c43b8}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{c93434b8-8cec-41c7-a1c3-2c167fdc76ba}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{ed21f762-d430-4cbe-ab11-def437d15384}: [NameServer] 199.85.126.10,199.85.127.10,192.168.0.1
Tcpip\..\Interfaces\{ed21f762-d430-4cbe-ab11-def437d15384}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-2303618883-3061153463-3321600128-1001 -> hxxp://www.accueil-nav.com/
FireFox:
========
FF DefaultProfile: 36nwpr8k.default
FF ProfilePath: C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\g0pas8v1.default-release [2022-07-21]
FF Notifications: Mozilla\Firefox\Profiles\g0pas8v1.default-release -> hxxps://mail.yahoo.com; hxxps://www.tiktok.com
FF ProfilePath: C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\36nwpr8k.default [2022-07-05]
FF DownloadDir: M:
FF Homepage: Mozilla\Firefox\Profiles\36nwpr8k.default -> hxxp://www.accueil-nav.com/
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\36nwpr8k.default\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2019-04-17]
FF Extension: (DoH Roll-Out) - C:\\Mozilla Firefox\browser\features\doh-rollout@mozilla.org.xpi [2022-04-06] [non signé]
FF Extension: (Form Autofill) - C:\\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (Picture-In-Picture) - C:\\Mozilla Firefox\browser\features\pictureinpicture@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (Firefox Screenshots) - C:\\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (WebCompat Reporter) - C:\\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2022-04-06] [non signé]
FF Extension: (Web Compatibility Interventions) - C:\\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [2022-06-30] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-15] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-15] (Adobe Inc. -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: Firefox-9388B6559483FD17 - C:\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR Profile: C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default [2022-06-23]
CHR DownloadDir: M:\
CHR HomePage: Default -> hxxp://www.accueil-nav.com/
CHR StartupUrls: Default -> "hxxp://www.accueil-nav.com/"
CHR NewTab: Default -> "active": true,
"entry": "chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxp://www.accueil-nav.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
CHR Extension: (Slides) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-03]
CHR Extension: (Docs) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-03]
CHR Extension: (Google Drive) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-09-21]
CHR Extension: (YouTube) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-03]
CHR Extension: (Ecosia Search) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2022-03-19]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-03-19]
CHR Extension: (Sheets) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-19]
CHR Extension: (Gmail) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-03-19]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
StartMenuInternet: Google Chrome - C:\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-15] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2022-07-04] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-26] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-06-19] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FvSvc; C:\\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410232 2022-06-24] (Nvidia Corporation -> NVIDIA)
S3 GoogleChromeElevationService; C:\Google\Chrome\Application\103.0.5060.114\elevation_service.exe [1646920 2022-07-02] (Google LLC -> Google LLC)
R2 NvContainerLocalSystem; C:\\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-06-26] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-09-01] (Rockstar Games, Inc. -> Rockstar Games)
R2 sedsvc; C:\rempl\sedsvc.exe [358712 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
S3 vgc; C:\\Riot Vanguard\vgc.exe [10477800 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WMPNetworkSvc; C:\\Windows Media Player\wmpnetwk.exe [1184256 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
R2 WTabletServicePro; C:\Tablet\Wacom\WTabletServicePro.exe [2123088 2019-12-12] (Wacom Technology Corporation -> Wacom Technology, Corp.)
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S3 FileSyncHelper; "C:\Microsoft OneDrive\21.119.0613.0001\FileSyncHelper.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 OneDrive Updater Service; "C:\Microsoft OneDrive\21.119.0613.0001\OneDriveUpdaterService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 MpKsl2c2599d8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6E0F8059-87D3-4D12-9509-74227F95598A}\MpKslDrv.sys [50448 2022-07-21] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 vgk; C:\Riot Vanguard\vgk.sys [8596792 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 Zherbongxshiu; \??\C:\Windows\system32\Zherbongxshiu.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-21 18:20 - 2022-07-21 18:20 - 000043103 _____ C:\Users\morea\Downloads\FRST.txt
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:19 - 2022-07-21 18:19 - 002369536 _____ (Farbar) C:\Users\morea\Downloads\FRST64.exe
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-05 19:32 - 2022-07-05 19:40 - 822821552 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\516.59-desktop-win10-win11-64bit-international-dch-whql(1).exe
2022-07-05 19:25 - 2022-07-06 20:10 - 000000000 ____D C:\Users\morea\OneDrive\Documents\My Games
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:12 - 2022-07-05 17:12 - 000077824 _____ C:\Users\morea\Downloads\BERCon(1).exe
2022-07-05 12:24 - 2022-07-05 20:56 - 000004228 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003924 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-07-05 12:24 - 2022-06-24 05:05 - 002859264 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 002200272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 001295104 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2022-07-05 12:23 - 2022-06-24 05:05 - 000168656 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2022-07-05 12:23 - 2022-06-24 05:05 - 000144592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2022-07-05 12:23 - 2021-11-01 05:00 - 000048552 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2022-07-05 12:21 - 2022-07-05 12:23 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(4).exe
2022-07-05 11:32 - 2022-07-05 11:32 - 023401912 _____ (Outbyte) C:\Users\morea\Downloads\0x0003-outbyte-pc-repair.exe
2022-07-05 11:28 - 2022-07-05 11:29 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(3).exe
2022-07-04 22:04 - 2022-07-04 22:05 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(2).exe
2022-07-04 21:03 - 2022-07-04 21:03 - 000077824 _____ C:\Users\morea\Downloads\BERCon.exe
2022-07-04 20:25 - 2022-06-24 17:22 - 000771560 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001905936 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001905936 _____ C:\Windows\system32\vulkaninfo.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001472552 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001432304 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001432304 _____ C:\Windows\system32\vulkan-1.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001213416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-07-04 20:24 - 2022-06-24 17:23 - 000866344 _____ C:\Windows\system32\nvofapi64.dll
2022-07-04 20:24 - 2022-06-24 17:23 - 000687592 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 001537064 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 001182696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 000715304 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-07-04 20:24 - 2022-06-24 17:21 - 002127864 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 001608232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 001059904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 000845304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 000456168 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-07-04 20:24 - 2022-06-24 17:20 - 010270256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 008804400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 005734392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 005363248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 003067440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-07-04 20:24 - 2022-06-24 17:19 - 000853568 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-07-04 20:24 - 2022-06-24 16:40 - 006366896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-07-04 20:24 - 2022-06-24 05:05 - 000093241 _____ C:\Windows\system32\nvinfo.pb
2022-07-04 20:16 - 2022-07-04 20:24 - 822821552 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\516.59-desktop-win10-win11-64bit-international-dch-whql.exe
2022-07-04 20:05 - 2022-03-16 23:57 - 000050272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2022-07-04 20:03 - 2022-07-04 20:05 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(1).exe
2022-07-04 19:41 - 2022-07-04 19:42 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27.exe
2022-07-04 10:19 - 2022-07-04 10:19 - 000000234 ____C C:\Users\morea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Watch Dogs Legion.url
2022-07-04 10:04 - 2022-07-04 10:05 - 238590072 _____ (Ubisoft) C:\Users\morea\Downloads\UbisoftConnectInstaller.exe
2022-06-29 11:42 - 2022-06-29 11:43 - 000000000 ____D C:\Users\morea\OneDrive\Documents\Battlefield 1
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:04 - 2022-06-23 18:04 - 000223878 _____ C:\Users\morea\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab
2022-06-23 17:51 - 2022-06-23 17:53 - 158863360 _____ C:\Users\morea\Downloads\EpicInstaller-13.3.0.msi
2022-06-23 12:24 - 2022-06-23 12:25 - 049290152 _____ (Piriform Software Ltd) C:\Users\morea\Downloads\ccsetup601_pro_trial.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-21 18:18 - 2019-04-17 19:50 - 000000000 ___DC C:\Users\morea\AppData\LocalLow\Mozilla
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2018-11-07 14:56 - 000000000 ___DC C:\Users\morea\AppData\Roaming\discord
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\winrm
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\WCN
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\slmgr
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\winrm
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\WCN
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\slmgr
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\F12
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\dsc
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\migwiz
2022-07-21 18:17 - 2018-04-11 23:04 - 000000000 ____D C:\Windows\servicing
2022-07-21 18:16 - 2022-02-09 13:10 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ___DC C:\Users\morea\AppData\Roaming\Origin
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ___DC C:\Users\morea\AppData\Local\Origin
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ____D C:\ProgramData\Origin
2022-07-21 18:16 - 2018-11-07 14:56 - 000000000 ___DC C:\Users\morea\AppData\Local\Discord
2022-07-21 18:16 - 2018-11-03 18:37 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-21 18:15 - 2018-11-03 18:30 - 000000000 __SHD C:\Users\morea\IntelGraphicsProfiles
2022-07-21 13:54 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp
2022-07-21 13:49 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-21 13:22 - 2021-07-06 10:11 - 000002036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-07-21 13:22 - 2020-09-03 17:50 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2022-07-21 13:22 - 2020-06-30 18:53 - 000000807 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-07-21 13:22 - 2019-11-30 19:09 - 000000262 _____ C:\ProgramData\fontcacheev1.dat
2022-07-21 13:22 - 2019-02-12 22:22 - 000005034 _____ C:\ProgramData\yubhinti.sju
2022-07-21 13:22 - 2019-02-12 22:22 - 000000016 _____ C:\ProgramData\mntemp
2022-07-21 13:22 - 2018-11-03 18:30 - 000002007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-21 13:22 - 2018-11-03 18:26 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-07-21 13:21 - 2020-09-01 19:39 - 000000000 ____D C:\ProgramData\Riot Games
2022-07-21 13:21 - 2018-11-04 01:22 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-07-21 12:51 - 2018-11-10 19:41 - 000000000 ___DC C:\Users\morea\AppData\Local\CrashDumps
2022-07-21 12:25 - 2018-11-04 01:21 - 000000000 ____D C:\Windows\Panther
2022-07-21 11:55 - 2022-06-01 20:24 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-07-21 11:55 - 2019-07-17 11:00 - 000000795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-21 11:55 - 2019-01-02 18:19 - 000000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2022-07-21 11:53 - 2018-11-03 21:03 - 000000000 ___DC C:\Users\morea\AppData\Local\NVIDIA Corporation
2022-07-20 11:04 - 2018-11-03 18:26 - 001766594 _____ C:\Windows\system32\PerfStringBackup.INI
2022-07-20 11:04 - 2018-04-12 18:18 - 000791208 _____ C:\Windows\system32\perfh00C.dat
2022-07-20 11:04 - 2018-04-12 18:18 - 000149704 _____ C:\Windows\system32\perfc00C.dat
2022-07-20 11:04 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2022-07-20 10:58 - 2020-12-17 19:47 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2018-11-04 01:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-19 11:50 - 2018-04-11 23:04 - 000786432 _____ C:\Windows\system32\config\BBI
2022-07-16 11:55 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness
2022-07-14 12:08 - 2018-11-04 17:23 - 000000000 ____D C:\Windows\system32\MRT
2022-07-14 12:06 - 2018-11-04 17:23 - 146546848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-07-13 11:10 - 2020-06-12 18:18 - 000000000 ____D C:\Windows\Minidump
2022-07-08 19:43 - 2021-10-24 18:37 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-07-06 20:32 - 2021-06-26 10:27 - 000226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2022-07-06 20:32 - 2021-06-26 10:27 - 000214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2022-07-06 20:06 - 2018-12-26 19:08 - 000000000 ___DC C:\Users\morea\AppData\Local\Ubisoft Game Launcher
2022-07-06 10:36 - 2018-11-04 18:27 - 000000000 ___DC C:\Users\morea\AppData\Local\NVIDIA
2022-07-05 20:57 - 2018-11-03 18:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:28 - 000003840 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 20:56 - 2021-05-03 20:28 - 000003600 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 17:38 - 2021-07-31 19:29 - 000000000 ____D C:\\Common Files\Microsoft Shared
2022-07-04 20:36 - 2018-11-03 19:15 - 000000000 ___DC C:\Users\morea\AppData\Local\D3DSCache
2022-07-04 18:41 - 2019-04-06 19:12 - 000000000 ___DC C:\Users\morea\AppData\Local\BattlEye
2022-07-04 10:06 - 2020-05-07 18:28 - 000000000 ___DC C:\Users\morea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-07-03 19:58 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\LiveKernelReports
2022-06-24 16:40 - 2021-05-03 20:19 - 007483904 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-06-24 05:05 - 2021-05-03 20:29 - 000082552 _____ C:\Windows\system32\FvSDK_x64.dll
2022-06-24 05:05 - 2021-05-03 20:29 - 000071288 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2022-06-23 18:07 - 2022-02-13 19:14 - 000000000 ___DC C:\Users\morea\AppData\Local\ElevatedDiagnostics
2022-06-22 20:30 - 2018-11-04 01:22 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2019-11-30 19:09 - 2022-07-21 13:22 - 000000262 _____ () C:\ProgramData\fontcacheev1.dat
2018-11-04 01:23 - 2022-07-21 18:15 - 2531745792 ___SH () C:\hiberfil.sys
2020-08-16 19:43 - 2022-07-20 10:56 - 2550136832 ___SH () C:\pagefile.sys
2018-11-04 01:22 - 2022-07-20 10:56 - 016777216 ___SH () C:\swapfile.sys
2018-11-04 01:23 - 2022-07-21 18:15 - 2531745792 ___SH () C:\hiberfil.sys
2020-08-16 19:43 - 2022-07-20 10:56 - 2550136832 ___SH () C:\pagefile.sys
2018-11-04 01:22 - 2022-07-20 10:56 - 016777216 ___SH () C:\swapfile.sys
2019-12-25 12:01 - 2021-05-26 19:39 - 000090039 ____C () C:\Users\morea\AppData\Local\krita.log
2020-01-05 21:18 - 2020-01-05 21:18 - 000013999 ____C () C:\Users\morea\AppData\Local\kritacrash.log
2021-05-26 19:39 - 2021-05-26 19:39 - 000000039 ____C () C:\Users\morea\AppData\Local\kritadisplayrc
2019-12-25 12:02 - 2021-05-26 19:39 - 000017235 ____C () C:\Users\morea\AppData\Local\kritarc
2020-12-17 20:01 - 2020-12-17 20:01 - 000000857 ____C () C:\Users\morea\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par morea (administrateur) sur DESKTOP-S1LIP93 (LENOVO 80WK) (21-07-2022 18:20:22)
Exécuté depuis C:\Users\morea\Downloads
Profils chargés: morea
Plate-forme: Microsoft Windows 10 Famille Version 1803 17134.1304 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Origin\Origin.exe ->) (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <3>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\WinZip\FAHWindow64.exe
(Discord Inc. -> Discord Inc.) C:\Users\morea\AppData\Local\Discord\app-1.0.9005\Discord.exe <6>
(DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxEM.exe
(explorer.exe ->) (Corel Corporation -> WinZip Computing) C:\WinZip\WzPreloader.exe
(explorer.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Mozilla Firefox\firefox.exe <30>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\rempl\sedsvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Tablet\Wacom\WTabletServicePro.exe
(Spotify AB -> Spotify Ltd) M:\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.1120_none_c3e5cafe697124bd\TiWorker.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Tous(tes)) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Riot Vanguard\vgtray.exe [3071232 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [WinZip UN] => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\WinZip\FAHConsole.exe [436704 2021-08-19] (Corel Corporation -> WinZip Computing, S.L.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (Pas de fichier)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [32256 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [4103224 2020-01-07] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [3755408 2020-01-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [OneDrive] => "C:\Microsoft OneDrive\OneDrive.exe" /background (Pas de fichier)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [Discord] => C:\Users\morea\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3148016 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2303618883-3061153463-3321600128-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Pas de fichier)
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [174080 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [836608 2018-09-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG2900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCB.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [44544 2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Appmon: C:\Windows\system32\AppMon.dll [114688 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2900 series: C:\Windows\system32\CNMLMCB.DLL [406016 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [1180672 2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\Windows\system32\FXSMON.DLL [46080 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [218112 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [333824 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\WSDMon.dll [568832 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\system32\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> C:\Windows\system32\themeui.dll [2018-09-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\system32\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> C:\Windows\system32\shell32.dll [2020-02-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\mscories.dll [2018-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-07] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\SysWOW64\unregmp2.exe [2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\mscories.dll [2018-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{01A30791-40AE-4653-AB2E-FD210019AE88}] -> C:\Windows\system32\mgmtrefreshcredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1b283861-754f-4022-ad47-a5eaaa618894}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1ee7337f-85ac-45e2-a23c-37c753209769}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2D8B3101-E025-480D-917C-835522C7F628}] -> C:\Windows\system32\fidocredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{48B4E58D-2791-456C-9091-D524C6C706F2}] -> C:\Windows\System32\devicengccredprov.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{600e7adb-da3e-41a4-9225-3c0399e88c0c}] -> C:\Windows\system32\cngcredui.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8AF662BF-65A0-4D0A-A540-A338A999D36F}] -> C:\Windows\System32\FaceCredentialProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8FD7E19C-3BF7-489B-A72C-846AB3678C96}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2019-03-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{BEC09223-B018-416D-A0AC-523971B639F5}] -> C:\Windows\System32\BioCredProv.dll [2018-07-06] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> C:\Windows\System32\FaceCredentialProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{D6886603-9D2F-4EB2-B667-1971041FA96B}] -> C:\Windows\System32\ngccredprov.dll [2018-09-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Windows\system32\wlidcredprov.dll [2019-01-01] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\PLAP Providers: [{5537E283-B1E7-4EF8-9C6E-7AB0AFE5056D}] -> C:\Windows\system32\rasplap.dll [2018-06-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\system32\wlgpclnt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> C:\Windows\system32\auditcse.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\system32\fdeploy.dll [2018-08-09] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{3610eda5-77ef-11d2-8dc5-00c04fa31a66}] -> C:\Windows\System32\dskquota.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4bcd6cde-777b-48b6-9804-43568e23545d}] -> C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4D2F9B6F-1E52-4711-A382-6A8B1A003DE6}] -> C:\Windows\System32\tsworkspace.dll [2019-07-09] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> C:\Windows\system32\WorkFoldersGPExt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\system32\dmenrollengine.dll [2019-10-02] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7933F41E-56F8-41d6-A31C-4148A711EE93}] -> C:\Windows\System32\srchadmin.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7B849a69-220F-451E-B3FE-2CB811AF94AE}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\system32\scecli.dll [2018-10-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{8A28E2C5-8D06-49A4-A08C-632DAA493E17}] -> C:\Windows\system32\gpprnext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\system32\dot3gpclnt.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> C:\Windows\system32\pwlauncher.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> C:\Windows\system32\pwlauncher.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}] -> C:\Windows\System32\iedkcs32.dll [2019-05-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{e437bc1c-aa7d-11d2-a382-00c04f991e27}] -> C:\Windows\System32\polstore.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> C:\Windows\system32\auditcse.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\system32\gptext.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-09-21]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
BootExecute: autocheck autochk *
AlternateShell: cmd.exe
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05D7D96E-6639-4295-BC97-1229380EE137} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {08DCBC01-B004-4CA6-B0D3-280CB876D1C4} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\\CUAssistant\culauncher.exe (Pas de fichier)
Task: {0A7C0E9B-C406-4226-99B5-D589454C3930} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {0EE855BE-555F-4DB4-B5B5-BED0B985674A} - System32\Tasks\WinZip Update Notifier 1 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {108FEC50-076B-47AF-9B7E-8D3134F1D278} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {171EDD05-C80B-43DE-856C-BD88AB3135EC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C755CBF-B72C-4874-8AC7-2E411F304876} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-03] (Google Inc -> Google Inc.)
Task: {20B492B2-6748-4740-87A8-84E900FAD868} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-03] (Google Inc -> Google Inc.)
Task: {2A324063-3E49-45EB-9ECC-B1F7A14F8F23} - System32\Tasks\WinZip Update Notifier 2 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {309585ED-D73A-4E16-B62A-41A56CCB1B05} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\\rempl\sedlauncher.exe [352056 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {467AC835-9832-4B75-92B1-5A7F97934800} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\\Microsoft OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {47BB12A3-2246-4A99-A23A-C66F47E18773} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {607E0BA6-4E9D-4900-A4B5-0CDE77A7622E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {67B07CD8-196D-4CE7-9A14-62F7E7C8BAA1} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {68391DF1-9F07-49D5-ADA1-C1499CF2083C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {68E9C598-37E9-4D45-96F3-036E43F8778C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69D7DD65-1434-40DD-82C5-BE944BEE0A0E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\\Windows Media Player\wmpnscfg.exe [69120 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
Task: {75161F44-DD14-4B28-8F21-7DA251C074BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {7BB62935-B5AB-4A61-AA59-95AECEC5BC71} - System32\Tasks\WinZip Update Notifier 3 => C:\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {7E9E449A-04F9-4510-83EF-24E3A25C33D9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {849D78D4-9774-4E60-A9A1-EC1B04630BAE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BDB48F2-D119-491E-AD86-6CBD706EF819} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {991886BD-565B-4DEE-9F20-E8AC7D41779B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 9388B6559483FD17 => C:\Mozilla Firefox\default-browser-agent.exe do-task "9388B6559483FD17"
Task: {9CAEDABF-A457-4E4F-9154-5AA851FC8E2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B52E76EF-1D03-4AD9-AECB-0B2ECAF421B9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B55BD09A-41B5-47B7-916A-BC03EAC92BB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B79AD0F6-138E-4423-8EC9-94C6451D1600} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BC654BE5-CF80-4C0C-85CB-C9C655AE1336} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BE90D58C-3FE7-47FA-AED5-6650100D8FAB} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {CB8DA84F-48A9-405B-8FDA-9BCCEE7507CC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D436B0F2-E181-46E1-AB0F-D5A2184C74C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-15] (Adobe Inc. -> Adobe)
Task: {DCDA4D2F-466C-440E-8CB4-FDD56B286AF9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9DEFF60-2236-41BA-9D30-D0683BC31737} - System32\Tasks\Mozilla\Firefox Background Update 9388B6559483FD17 => C:\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\9388B6559483FD17\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EE489535-E2C1-4A04-89F4-2CD7E42E3758} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCA7DD1B-806F-4CA6-8492-E3D3649CA2F3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-15] (Adobe Inc. -> Adobe)
Task: {FE207087-C274-44A9-BF65-371C3464614C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0d56b384-c36c-4a02-8228-783a65ca6815}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{9024f56f-ed57-45f5-bbef-9a738b0c43b8}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{c93434b8-8cec-41c7-a1c3-2c167fdc76ba}: [NameServer] 199.85.126.10,199.85.127.10
Tcpip\..\Interfaces\{ed21f762-d430-4cbe-ab11-def437d15384}: [NameServer] 199.85.126.10,199.85.127.10,192.168.0.1
Tcpip\..\Interfaces\{ed21f762-d430-4cbe-ab11-def437d15384}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-2303618883-3061153463-3321600128-1001 -> hxxp://www.accueil-nav.com/
FireFox:
========
FF DefaultProfile: 36nwpr8k.default
FF ProfilePath: C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\g0pas8v1.default-release [2022-07-21]
FF Notifications: Mozilla\Firefox\Profiles\g0pas8v1.default-release -> hxxps://mail.yahoo.com; hxxps://www.tiktok.com
FF ProfilePath: C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\36nwpr8k.default [2022-07-05]
FF DownloadDir: M:
FF Homepage: Mozilla\Firefox\Profiles\36nwpr8k.default -> hxxp://www.accueil-nav.com/
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\morea\AppData\Roaming\Mozilla\Firefox\Profiles\36nwpr8k.default\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2019-04-17]
FF Extension: (DoH Roll-Out) - C:\\Mozilla Firefox\browser\features\doh-rollout@mozilla.org.xpi [2022-04-06] [non signé]
FF Extension: (Form Autofill) - C:\\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (Picture-In-Picture) - C:\\Mozilla Firefox\browser\features\pictureinpicture@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (Firefox Screenshots) - C:\\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2022-06-30] [non signé]
FF Extension: (WebCompat Reporter) - C:\\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2022-04-06] [non signé]
FF Extension: (Web Compatibility Interventions) - C:\\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [2022-06-30] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-15] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-15] (Adobe Inc. -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Program Files (x86)\Program Files (x86)\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: Firefox-9388B6559483FD17 - C:\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR Profile: C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default [2022-06-23]
CHR DownloadDir: M:\
CHR HomePage: Default -> hxxp://www.accueil-nav.com/
CHR StartupUrls: Default -> "hxxp://www.accueil-nav.com/"
CHR NewTab: Default -> "active": true,
"entry": "chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxp://www.accueil-nav.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
CHR Extension: (Slides) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-03]
CHR Extension: (Docs) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-03]
CHR Extension: (Google Drive) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-09-21]
CHR Extension: (YouTube) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-03]
CHR Extension: (Ecosia Search) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2022-03-19]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-03-19]
CHR Extension: (Sheets) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-19]
CHR Extension: (Gmail) - C:\Users\morea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-03-19]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
StartMenuInternet: Google Chrome - C:\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-15] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2022-07-04] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-20] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-26] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-06-19] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FvSvc; C:\\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410232 2022-06-24] (Nvidia Corporation -> NVIDIA)
S3 GoogleChromeElevationService; C:\Google\Chrome\Application\103.0.5060.114\elevation_service.exe [1646920 2022-07-02] (Google LLC -> Google LLC)
R2 NvContainerLocalSystem; C:\\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-06-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-06-26] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-09-01] (Rockstar Games, Inc. -> Rockstar Games)
R2 sedsvc; C:\rempl\sedsvc.exe [358712 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
S3 vgc; C:\\Riot Vanguard\vgc.exe [10477800 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WMPNetworkSvc; C:\\Windows Media Player\wmpnetwk.exe [1184256 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
R2 WTabletServicePro; C:\Tablet\Wacom\WTabletServicePro.exe [2123088 2019-12-12] (Wacom Technology Corporation -> Wacom Technology, Corp.)
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S3 FileSyncHelper; "C:\Microsoft OneDrive\21.119.0613.0001\FileSyncHelper.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_318ac089fbaddcf6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 OneDrive Updater Service; "C:\Microsoft OneDrive\21.119.0613.0001\OneDriveUpdaterService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 MpKsl2c2599d8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6E0F8059-87D3-4D12-9509-74227F95598A}\MpKslDrv.sys [50448 2022-07-21] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 vgk; C:\Riot Vanguard\vgk.sys [8596792 2022-07-18] (Riot Games, Inc. -> Riot Games, Inc.)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 Zherbongxshiu; \??\C:\Windows\system32\Zherbongxshiu.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-21 18:20 - 2022-07-21 18:20 - 000043103 _____ C:\Users\morea\Downloads\FRST.txt
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:20 - 2022-07-21 18:20 - 000000000 ____D C:\FRST
2022-07-21 18:19 - 2022-07-21 18:19 - 002369536 _____ (Farbar) C:\Users\morea\Downloads\FRST64.exe
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:24 - 2022-07-21 12:24 - 000000000 ___HD C:\$WINDOWS.~BT
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-21 12:21 - 2022-07-21 12:21 - 000000000 ___HD C:\$WinREAgent
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-07 11:24 - 2022-07-11 11:52 - 000000000 ____D C:\Mozilla Firefox
2022-07-05 19:32 - 2022-07-05 19:40 - 822821552 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\516.59-desktop-win10-win11-64bit-international-dch-whql(1).exe
2022-07-05 19:25 - 2022-07-06 20:10 - 000000000 ____D C:\Users\morea\OneDrive\Documents\My Games
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-21 18:17 - 000000000 ____D C:\Windows Photo Viewer
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Security
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Portable Devices
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows NT
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\Windows Multimedia Platform
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:38 - 2022-07-05 17:38 - 000000000 ____D C:\MSBuild
2022-07-05 17:12 - 2022-07-05 17:12 - 000077824 _____ C:\Users\morea\Downloads\BERCon(1).exe
2022-07-05 12:24 - 2022-07-05 20:56 - 000004228 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003924 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 20:56 - 000003804 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 12:24 - 2022-07-05 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-07-05 12:24 - 2022-06-24 05:05 - 002859264 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 002200272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 001295104 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2022-07-05 12:24 - 2022-06-24 05:05 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2022-07-05 12:23 - 2022-06-24 05:05 - 000168656 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2022-07-05 12:23 - 2022-06-24 05:05 - 000144592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2022-07-05 12:23 - 2021-11-01 05:00 - 000048552 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2022-07-05 12:21 - 2022-07-05 12:23 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(4).exe
2022-07-05 11:32 - 2022-07-05 11:32 - 023401912 _____ (Outbyte) C:\Users\morea\Downloads\0x0003-outbyte-pc-repair.exe
2022-07-05 11:28 - 2022-07-05 11:29 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(3).exe
2022-07-04 22:04 - 2022-07-04 22:05 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(2).exe
2022-07-04 21:03 - 2022-07-04 21:03 - 000077824 _____ C:\Users\morea\Downloads\BERCon.exe
2022-07-04 20:25 - 2022-06-24 17:22 - 000771560 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001905936 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001905936 _____ C:\Windows\system32\vulkaninfo.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001478384 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-07-04 20:24 - 2022-06-24 17:26 - 001472552 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001432304 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001432304 _____ C:\Windows\system32\vulkan-1.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001213416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-07-04 20:24 - 2022-06-24 17:26 - 001145584 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-07-04 20:24 - 2022-06-24 17:23 - 000866344 _____ C:\Windows\system32\nvofapi64.dll
2022-07-04 20:24 - 2022-06-24 17:23 - 000687592 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 001537064 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 001182696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-07-04 20:24 - 2022-06-24 17:22 - 000715304 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-07-04 20:24 - 2022-06-24 17:21 - 002127864 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 001608232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 001059904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 000845304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-07-04 20:24 - 2022-06-24 17:21 - 000456168 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-07-04 20:24 - 2022-06-24 17:20 - 010270256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 008804400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 005734392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 005363248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-07-04 20:24 - 2022-06-24 17:20 - 003067440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-07-04 20:24 - 2022-06-24 17:19 - 000853568 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-07-04 20:24 - 2022-06-24 16:40 - 006366896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-07-04 20:24 - 2022-06-24 05:05 - 000093241 _____ C:\Windows\system32\nvinfo.pb
2022-07-04 20:16 - 2022-07-04 20:24 - 822821552 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\516.59-desktop-win10-win11-64bit-international-dch-whql.exe
2022-07-04 20:05 - 2022-03-16 23:57 - 000050272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2022-07-04 20:03 - 2022-07-04 20:05 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27(1).exe
2022-07-04 19:41 - 2022-07-04 19:42 - 131197472 _____ (NVIDIA Corporation) C:\Users\morea\Downloads\GeForce_Experience_v3.25.1.27.exe
2022-07-04 10:19 - 2022-07-04 10:19 - 000000234 ____C C:\Users\morea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Watch Dogs Legion.url
2022-07-04 10:04 - 2022-07-04 10:05 - 238590072 _____ (Ubisoft) C:\Users\morea\Downloads\UbisoftConnectInstaller.exe
2022-06-29 11:42 - 2022-06-29 11:43 - 000000000 ____D C:\Users\morea\OneDrive\Documents\Battlefield 1
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:05 - 2022-06-23 18:05 - 000000000 ____D C:\MATS
2022-06-23 18:04 - 2022-06-23 18:04 - 000223878 _____ C:\Users\morea\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab
2022-06-23 17:51 - 2022-06-23 17:53 - 158863360 _____ C:\Users\morea\Downloads\EpicInstaller-13.3.0.msi
2022-06-23 12:24 - 2022-06-23 12:25 - 049290152 _____ (Piriform Software Ltd) C:\Users\morea\Downloads\ccsetup601_pro_trial.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-21 18:18 - 2019-04-17 19:50 - 000000000 ___DC C:\Users\morea\AppData\LocalLow\Mozilla
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2019-06-13 20:53 - 000000000 ___RD C:\Windows Defender
2022-07-21 18:17 - 2018-11-07 14:56 - 000000000 ___DC C:\Users\morea\AppData\Roaming\discord
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\winrm
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\WCN
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\slmgr
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\winrm
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\WCN
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\slmgr
2022-07-21 18:17 - 2018-04-12 18:18 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\F12
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\dsc
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2022-07-21 18:17 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\migwiz
2022-07-21 18:17 - 2018-04-11 23:04 - 000000000 ____D C:\Windows\servicing
2022-07-21 18:16 - 2022-02-09 13:10 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ___DC C:\Users\morea\AppData\Roaming\Origin
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ___DC C:\Users\morea\AppData\Local\Origin
2022-07-21 18:16 - 2019-02-06 11:11 - 000000000 ____D C:\ProgramData\Origin
2022-07-21 18:16 - 2018-11-07 14:56 - 000000000 ___DC C:\Users\morea\AppData\Local\Discord
2022-07-21 18:16 - 2018-11-03 18:37 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-21 18:15 - 2018-11-03 18:30 - 000000000 __SHD C:\Users\morea\IntelGraphicsProfiles
2022-07-21 13:54 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp
2022-07-21 13:49 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-21 13:22 - 2021-07-06 10:11 - 000002036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-07-21 13:22 - 2020-12-17 19:47 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-07-21 13:22 - 2020-09-03 17:50 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2022-07-21 13:22 - 2020-06-30 18:53 - 000000807 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-07-21 13:22 - 2019-11-30 19:09 - 000000262 _____ C:\ProgramData\fontcacheev1.dat
2022-07-21 13:22 - 2019-02-12 22:22 - 000005034 _____ C:\ProgramData\yubhinti.sju
2022-07-21 13:22 - 2019-02-12 22:22 - 000000016 _____ C:\ProgramData\mntemp
2022-07-21 13:22 - 2018-11-03 18:30 - 000002007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-21 13:22 - 2018-11-03 18:26 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-07-21 13:21 - 2020-09-01 19:39 - 000000000 ____D C:\ProgramData\Riot Games
2022-07-21 13:21 - 2018-11-04 01:22 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-07-21 12:51 - 2018-11-10 19:41 - 000000000 ___DC C:\Users\morea\AppData\Local\CrashDumps
2022-07-21 12:25 - 2018-11-04 01:21 - 000000000 ____D C:\Windows\Panther
2022-07-21 11:55 - 2022-06-01 20:24 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-07-21 11:55 - 2019-07-17 11:00 - 000000795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-21 11:55 - 2019-01-02 18:19 - 000000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2022-07-21 11:53 - 2018-11-03 21:03 - 000000000 ___DC C:\Users\morea\AppData\Local\NVIDIA Corporation
2022-07-20 11:04 - 2018-11-03 18:26 - 001766594 _____ C:\Windows\system32\PerfStringBackup.INI
2022-07-20 11:04 - 2018-04-12 18:18 - 000791208 _____ C:\Windows\system32\perfh00C.dat
2022-07-20 11:04 - 2018-04-12 18:18 - 000149704 _____ C:\Windows\system32\perfc00C.dat
2022-07-20 11:04 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2022-07-20 10:58 - 2020-12-17 19:47 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2020-09-01 19:49 - 000000000 ____D C:\Riot Vanguard
2022-07-20 10:56 - 2018-11-04 01:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-20 10:56 - 2018-11-03 18:29 - 000000000 ___DC C:\Intel
2022-07-19 11:50 - 2018-04-11 23:04 - 000786432 _____ C:\Windows\system32\config\BBI
2022-07-16 11:55 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness
2022-07-14 12:08 - 2018-11-04 17:23 - 000000000 ____D C:\Windows\system32\MRT
2022-07-14 12:06 - 2018-11-04 17:23 - 146546848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-07-13 11:10 - 2020-06-12 18:18 - 000000000 ____D C:\Windows\Minidump
2022-07-08 19:43 - 2021-10-24 18:37 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-07-06 20:32 - 2021-06-26 10:27 - 000226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2022-07-06 20:32 - 2021-06-26 10:27 - 000214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2022-07-06 20:06 - 2018-12-26 19:08 - 000000000 ___DC C:\Users\morea\AppData\Local\Ubisoft Game Launcher
2022-07-06 10:36 - 2018-11-04 18:27 - 000000000 ___DC C:\Users\morea\AppData\Local\NVIDIA
2022-07-05 20:57 - 2018-11-03 18:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:28 - 000003840 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 20:56 - 2021-05-03 20:28 - 000003600 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 20:56 - 2021-05-03 20:20 - 000000000 ____D C:\NVIDIA Corporation
2022-07-05 17:38 - 2021-07-31 19:29 - 000000000 ____D C:\\Common Files\Microsoft Shared
2022-07-04 20:36 - 2018-11-03 19:15 - 000000000 ___DC C:\Users\morea\AppData\Local\D3DSCache
2022-07-04 18:41 - 2019-04-06 19:12 - 000000000 ___DC C:\Users\morea\AppData\Local\BattlEye
2022-07-04 10:06 - 2020-05-07 18:28 - 000000000 ___DC C:\Users\morea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-07-03 19:58 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\LiveKernelReports
2022-06-24 16:40 - 2021-05-03 20:19 - 007483904 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-06-24 05:05 - 2021-05-03 20:29 - 000082552 _____ C:\Windows\system32\FvSDK_x64.dll
2022-06-24 05:05 - 2021-05-03 20:29 - 000071288 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2022-06-23 18:07 - 2022-02-13 19:14 - 000000000 ___DC C:\Users\morea\AppData\Local\ElevatedDiagnostics
2022-06-22 20:30 - 2018-11-04 01:22 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2019-11-30 19:09 - 2022-07-21 13:22 - 000000262 _____ () C:\ProgramData\fontcacheev1.dat
2018-11-04 01:23 - 2022-07-21 18:15 - 2531745792 ___SH () C:\hiberfil.sys
2020-08-16 19:43 - 2022-07-20 10:56 - 2550136832 ___SH () C:\pagefile.sys
2018-11-04 01:22 - 2022-07-20 10:56 - 016777216 ___SH () C:\swapfile.sys
2018-11-04 01:23 - 2022-07-21 18:15 - 2531745792 ___SH () C:\hiberfil.sys
2020-08-16 19:43 - 2022-07-20 10:56 - 2550136832 ___SH () C:\pagefile.sys
2018-11-04 01:22 - 2022-07-20 10:56 - 016777216 ___SH () C:\swapfile.sys
2019-12-25 12:01 - 2021-05-26 19:39 - 000090039 ____C () C:\Users\morea\AppData\Local\krita.log
2020-01-05 21:18 - 2020-01-05 21:18 - 000013999 ____C () C:\Users\morea\AppData\Local\kritacrash.log
2021-05-26 19:39 - 2021-05-26 19:39 - 000000039 ____C () C:\Users\morea\AppData\Local\kritadisplayrc
2019-12-25 12:02 - 2021-05-26 19:39 - 000017235 ____C () C:\Users\morea\AppData\Local\kritarc
2020-12-17 20:01 - 2020-12-17 20:01 - 000000857 ____C () C:\Users\morea\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================