Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Marc (administrateur) sur MARCPC (01-09-2022 17:42:03)
Exécuté depuis C:\Users\Marc\Desktop
Profils chargés: Marc
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Assetto Corsa\AssettoCorsaArxApplet.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(C:\Program Files\Logitech\X52\X52_Profiler.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\X52\LAClient\laclient.exe
(C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\FlightSupport\FlightSupport.exe
(explorer.exe ->) (Logitech) [Fichier non signé] C:\Program Files\Logitech\X52\X52_Profiler.exe
(explorer.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.exe
(explorer.exe ->) (Suunto Oy -> ) C:\Users\Marc\AppData\Local\Suuntolink\app-4.0.5\resources\app\LaunchAgents\SuuntolinkLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_778512ee63a728ec\RstMwService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.Service.exe
(services.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\SurfsharkWireGuard\Surfshark.WireguardService.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (voidtools -> ) C:\Program Files (x86)\Everything\Everything.exe
(svchost.exe ->) () [Fichier non signé] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [FlightSupport] => C:\Program Files\Logitech\FlightSupport\FlightSupport.exe [368776 2018-09-04] (Logitech Inc -> Logitech)
HKLM\...\Run: [X52] => C:\Program Files\Logitech\X52\X52_Profiler.exe [17920 2018-09-04] (Logitech) [Fichier non signé]
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Pas de fichier)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6223200 2022-01-05] (Acronis International GmbH -> )
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [AppManHelper] => C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe [617984 2015-06-09] (Avid Technology, Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-01-26] (voidtools -> )
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6315480 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Surfshark] => C:\Program Files (x86)\Surfshark\Surfshark.exe [10363464 2022-08-18] (Surfshark B.V. -> Surfshark)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116058488 2022-03-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [BackupOutlook] => C:\Program Files (x86)\Wisco\BackupOutlook\BackupOutlook.exe [3717232 2013-08-30] (Wisco Computerservice -> Wisco)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Amazon Photos] => C:\Users\Marc\AppData\Local\Amazon Drive\AmazonPhotos.exe [10182800 2021-05-10] (Amazon.com Services LLC -> Amazon.com Inc.)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6315480 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [SuuntolinkLauncher] => C:\Users\Marc\AppData\Local\Suuntolink\app-4.0.5\resources\app\LaunchAgents\SuuntolinkLauncher.exe [831832 2021-12-31] (Suunto Oy -> )
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0E9BAF864A0DC7753C20802F74DF30B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827104 2022-08-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [] => [X]
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [224768 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP 5512 Status Monitor: C:\WINDOWS\system32\hpinksts5512LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 6500 E710a-f): C:\WINDOWS\system32\HPDiscoPM5512.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 6500 E710n-z): C:\WINDOWS\system32\HPDiscoPM5412.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\Windows\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2020-09-25] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-11-28] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-01-13]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2019-11-28]
ShortcutTarget: Avid Application Manager.lnk -> C:\Windows\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe (Flexera Software LLC) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Philips GoGear SA4RGA Device Manager.lnk [2020-01-27]
ShortcutTarget: Philips GoGear SA4RGA Device Manager.lnk -> C:\Program Files (x86)\Philips\GoGear SA4RGA Device Manager\GoGear_SA4RGA_DeviceManager.exe (Koninklijke Philips Electronics N.V. -> Philips)
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f (réseau).lnk [2021-12-30]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f (réseau).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15V321HK05JZ;CONNECTION=NW;MONITOR=1;
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f.lnk [2020-12-31]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15V321HK05JZ;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-01-16]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy-Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0ACB176E-3A64-4A16-8898-4D07BD8F47E0} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {132B710A-649E-4037-9124-0CBDBED161D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-28] (Google Inc -> Google Inc.)
Task: {1E99256B-E431-4FC7-9CD4-C21D46D39395} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {23B6E137-327C-4EE1-B8A9-8288463B61B1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DDE6448-5E57-4082-9CD4-EA6074CA81A8} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {345CC112-3840-4117-BB96-B239C667C584} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {4720F5D8-5FDD-4A8D-A7D0-4FF2ED4C7B77} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-25] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4FC9FC27-6EFB-49F1-9418-0EE920927ED8} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe /min (Pas de fichier)
Task: {57250585-ABB7-44CE-9A5A-61F5380DB6A6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {5814AB2A-C028-482A-98DF-2E2831E465CA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6100DADF-99D8-409B-A375-1B373E88832C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {69AA70CF-3429-47FB-89AC-4BE9A88E3BB9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D5089BD-BECD-491B-B9FA-6E55F60446E6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7701B4DA-5FE7-4DF8-BA96-CF7C8B97A025} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [6174816 2016-01-07] (Samsung Electronics Co., Ltd. -> Samsung Electronics.)
Task: {80218C4C-392B-4758-8D39-BBB1AE9879A8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {82AE78CD-97CD-4E1B-8DDA-EAD0B6D58C40} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1235968 2021-10-06] () [Fichier non signé]
Task: {88B46433-3504-4136-B6CC-D7A468259BC6} - System32\Tasks\CCleanerSkipUAC - Marc => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {89B792F6-CE88-4243-A896-59AFF3D13F49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-28] (Google Inc -> Google Inc.)
Task: {8DC237CD-4A96-4BDA-98AF-9A9174DBB250} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9016C937-6CFE-40A5-89CB-6092B7E5CC81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {AB669C3E-7288-4BE2-8FA4-05F69BAA478C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9B6FB4B-6273-4D88-A525-9B158035E27D} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32624 2020-10-22] (Microsoft Corporation -> Microsoft)
Task: {D11B59EE-9F00-4045-B4D7-BA719B0A1DB2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E48F6D10-F0D6-4E03-96B4-16021963DDE5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E9E331E3-EDFD-457C-B778-203B57EC1AD4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA3AD3A2-707F-434A-B157-F578A05ECCE8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FA7D4753-678A-4CE3-A5D0-E8579769BF06} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{253ecd10-36de-4203-93e2-85d434af57de}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8d69708d-ddec-a599-bb02-0475a5d2150e}: [NameServer] 162.252.172.57,149.154.159.92
Tcpip\..\Interfaces\{ba6550ed-fa36-4115-bad9-e749131d41e5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d83b20ac-2956-4dbb-8956-75ebb2b819e9}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2022-09-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-01]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 4byowv6t.default
FF ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default [2022-09-01]
FF DownloadDir: H:\Reception
FF Notifications: Mozilla\Firefox\Profiles\4byowv6t.default -> hxxps://www.tameteo.com; hxxps://messages.google.com; hxxps://www.musicdiffusion.com; hxxps://www.facebook.com
FF Extension: (Avira Browser Safety) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\abs@avira.com [2019-11-28]
FF Extension: (Protection Web Avira) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\abs@avira.com.xpi [2019-11-14]
FF Extension: (AdSwap) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{4582aaa7-9688-4038-a9ef-06345fa0f400}.xpi [2019-11-13]
FF Extension: (Surfshark VPN proxy) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{732216ec-0dab-43bb-ac85-4b5e1977599d}.xpi [2019-11-05]
FF Extension: (Video DownloadHelper) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-09-27]
FF ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\foxl963v.default-release-1601650998019 [2022-09-01]
FF Notifications: Mozilla\Firefox\Profiles\foxl963v.default-release-1601650998019 -> hxxps://www.lesnumeriques.com; hxxps://www.castorama.fr; hxxps://www.medisite.fr; hxxps://calendar.google.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default [2022-09-01]
CHR DownloadDir: H:\Reception
CHR Notifications: Default -> hxxps://business.facebook.com; hxxps://captchaless.top
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-29]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-01]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-09-01]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-03]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-06-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-03]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-01]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12978544 2022-01-05] (Acronis International GmbH -> )
R2 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [467928 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2022-07-29] (Acronis International GmbH -> )
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-12] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1097624 2022-09-01] (ASUSTeK Computer Inc. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-01-26] (voidtools -> )
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-06-27] (HP Inc. -> HP Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-08-30] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2022-01-05] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-11-18] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2130296 2022-01-05] (Acronis International GmbH -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-09-24] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-09-24] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R2 Surfshark Service; C:\Program Files (x86)\Surfshark\Surfshark.Service.exe [3238984 2022-08-18] (Surfshark B.V. -> Surfshark)
R3 Surfshark WireGuard; C:\Program Files (x86)\Surfshark\SurfsharkWireGuard\Surfshark.WireGuardService.exe [476232 2022-08-18] (Surfshark B.V. -> Surfshark)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7402528 2022-01-05] (Acronis International GmbH -> )
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253912 2019-10-30] (Synology Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
S2 AviraSecurity; "C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe" [X]
S2 AviraSecurityUpdater; "C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [94720 2021-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2020-11-23] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [284672 2021-04-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [726160 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2020-12-02] (Acronis International GmbH -> Acronis International GmbH)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2020-12-16] (Martin Malik - REALiX -> REALiX(tm))
R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [39432 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [68864 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [26520 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
R3 LSaiMini; C:\WINDOWS\System32\drivers\LSaiMini.sys [20720 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 LSaiNtBus; C:\WINDOWS\system32\drivers\LSaiBus.sys [60336 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl6a3cb3b3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{27D5A86B-9B07-4B7D-BFA4-3EA3078BA888}\MpKslDrv.sys [141576 2022-09-01] (Microsoft Windows -> Microsoft Corporation)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [16344 2022-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-09-10] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-12-15] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 RDID1117; C:\WINDOWS\system32\Drivers\RDWM1117.SYS [182296 2021-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Roland Corporation)
S3 SaiK0255; C:\WINDOWS\system32\DRIVERS\SaiK0255.sys [217408 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S3 SaiU0255; C:\WINDOWS\system32\DRIVERS\SaiU0255.sys [24816 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SmbIch; C:\WINDOWS\System32\drivers\SmbIch.sys [30248 2020-11-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SurfsharkSplitTunnelDriver; C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkSplitTunnelCalloutDriver.sys [39648 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2019-05-22] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420072 2021-04-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-04-07] (Microsoft Windows -> Microsoft Corporation)
R3 wintunshark; C:\WINDOWS\system32\DRIVERS\wintunshark.sys [31096 2020-09-17] (WDKTestCert nikod,132409123292239223 -> Surfshark Ltd)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 17:30 - 2022-09-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2022-09-01 17:15 - 2022-09-01 17:15 - 000000893 _____ C:\Users\Marc\Desktop\ZHPFix2.lnk
2022-09-01 15:39 - 2022-09-01 15:39 - 011847936 _____ (Tim Kosse) C:\Users\Marc\Downloads\FileZilla_3.60.2_win64-setup.exe
2022-09-01 10:56 - 2022-09-01 10:56 - 000094369 _____ C:\Users\Marc\Desktop\Shortcut.txt
2022-09-01 10:54 - 2022-09-01 10:54 - 000044926 _____ C:\Users\Marc\Desktop\Addition.txt
2022-09-01 10:52 - 2022-09-01 17:42 - 000041178 _____ C:\Users\Marc\Desktop\FRST.txt
2022-09-01 10:51 - 2022-09-01 17:42 - 000000000 ____D C:\FRST
2022-09-01 10:48 - 2022-09-01 02:03 - 002371072 _____ (Farbar) C:\Users\Marc\Desktop\FRST64 (1).exe
2022-09-01 01:50 - 2022-09-01 01:50 - 000000900 _____ C:\Users\Marc\Desktop\ZHPDiag.lnk
2022-08-31 11:30 - 2022-08-31 11:30 - 000000965 _____ C:\Users\Marc\Desktop\avidemux.lnk
2022-08-31 10:02 - 2022-09-01 17:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-08-31 01:13 - 2022-08-31 09:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-30 18:13 - 2022-08-30 18:13 - 000000000 ____D C:\Users\Marc\AppData\Roaming\17204
2022-08-30 15:25 - 2022-08-31 15:26 - 000000000 ____D C:\Users\Marc\AppData\Roaming\avidemux
2022-08-30 15:25 - 2022-08-30 15:25 - 000000000 ____D C:\Users\Marc\AppData\Local\avidemux
2022-08-30 15:24 - 2022-08-30 15:24 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avidemux 2.8 VC++ 64bits
2022-08-30 15:24 - 2022-08-30 15:24 - 000000000 ____D C:\Program Files\Avidemux 2.8 VC++ 64bits
2022-08-30 14:58 - 2022-08-30 14:59 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2022-08-30 14:58 - 2022-08-30 14:58 - 000001140 _____ C:\Users\Marc\Desktop\Format Factory.lnk
2022-08-30 14:58 - 2022-08-30 14:58 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2022-08-30 14:56 - 2022-08-30 14:56 - 000003636 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-08-29 09:05 - 2022-08-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Surfshark
2022-08-29 09:05 - 2022-08-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\New Folder
2022-08-14 11:32 - 2022-08-14 11:32 - 000000000 ___HD C:\$SysReset
2022-08-10 13:44 - 2022-08-10 13:44 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-10 13:44 - 2022-08-10 13:44 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-10 13:44 - 2022-08-10 13:44 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-10 13:44 - 2022-08-10 13:44 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-10 13:44 - 2022-08-10 13:44 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-10 13:43 - 2022-08-10 13:43 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-10 13:43 - 2022-08-10 13:43 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 13:43 - 2022-08-10 13:43 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 13:40 - 2022-08-10 13:40 - 000000000 ___HD C:\$WinREAgent
2022-08-08 14:55 - 2022-08-08 14:55 - 000002179 _____ C:\Users\Public\Desktop\Start PaperScan 3 Free Edition.lnk
2022-08-08 14:55 - 2022-08-08 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaperScan 3 Free Edition
2022-08-08 14:55 - 2022-08-08 14:55 - 000000000 ____D C:\Program Files (x86)\ORPALIS
2022-08-08 13:38 - 2022-08-08 13:44 - 000000000 ____D C:\Users\Marc\Downloads\Elvis (2022) [1080p] [WEBRip] [5.1] [YTS.MX]
2022-08-06 12:32 - 2022-08-30 14:57 - 000000000 ____D C:\Users\Marc\AppData\Local\Free_Time_Co.,_Ltd
2022-08-06 12:32 - 2022-08-06 12:32 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_08_06
2022-08-06 12:30 - 2022-08-06 12:30 - 110490832 ____N (Free Time Co., Ltd) C:\Users\Marc\Downloads\formatfactory-5-11-0-0.exe
2022-08-01 14:52 - 2022-08-01 14:52 - 000303905 _____ C:\Users\Marc\Downloads\Fact 48 M Bernard.pdf
2022-08-01 14:52 - 2022-08-01 14:52 - 000303905 _____ C:\Users\Marc\Downloads\Fact 48 M Bernard (1).pdf
2022-07-29 03:04 - 2022-07-29 03:04 - 000001654 _____ C:\Users\Marc\Desktop\Kontakt.exe - Raccourci.lnk
2022-07-29 03:01 - 2022-07-29 03:01 - 000001087 _____ C:\Users\Public\Desktop\Creator Tools.lnk
2022-07-29 03:01 - 2022-07-29 03:01 - 000000000 __HDC C:\ProgramData\{100F529D-71F2-4383-BC9C-510B98D2BEF1}
2022-07-29 02:54 - 2022-07-29 02:54 - 000001023 _____ C:\Users\Public\Desktop\Kontakt.lnk
2022-07-29 02:54 - 2022-07-29 02:54 - 000000000 __HDC C:\ProgramData\{7274A0FE-FB8C-4441-AB02-027346252DB4}
2022-07-29 02:52 - 2022-07-29 02:52 - 000000000 ____D C:\Program Files (x86)\Native Instruments Kontakt 6.7.1
2022-07-29 00:31 - 2022-07-29 00:31 - 000008834 _____ C:\Users\Marc\Downloads\Native Instruments - Kontakt 6 v7 7 1 UNLOCKED FiXED OS X.torrent
2022-07-28 23:39 - 2022-07-28 23:39 - 006858841 _____ C:\Users\Marc\Downloads\Setup_open.rar
2022-07-28 23:24 - 2022-07-28 23:24 - 000971875 _____ C:\Users\Marc\Downloads\Shepherd.zip
2022-07-28 23:20 - 2022-07-28 23:20 - 000013408 _____ C:\Users\Marc\Downloads\Impact-Soundworks-Ventus-Ethnic-Winds-Pan-Flutes-KONTAKT (1).torrent
2022-07-28 23:05 - 2022-07-28 23:05 - 000013408 _____ C:\Users\Marc\Downloads\Impact-Soundworks-Ventus-Ethnic-Winds-Pan-Flutes-KONTAKT.torrent
2022-07-28 22:46 - 2022-07-28 22:46 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (4).torrent
2022-07-28 22:45 - 2022-07-28 22:45 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (3).torrent
2022-07-28 20:37 - 2022-07-28 20:37 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (2).torrent
2022-07-28 20:35 - 2022-07-28 20:35 - 000150886 _____ C:\Users\Marc\Downloads\Yellowstone.2018.S01.DVDRip.Z2.BluRay.FR.zip
2022-07-28 20:35 - 2022-07-28 20:35 - 000036277 _____ C:\Users\Marc\Downloads\Yellowstone.S01.DVDRip.WiHD.FR.zip
2022-07-28 20:32 - 2022-07-28 20:32 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (1).torrent
2022-07-28 20:31 - 2022-07-28 20:31 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv].torrent
2022-07-26 15:03 - 2022-07-26 15:03 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-26 15:03 - 2022-07-26 15:03 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-26 15:03 - 2022-07-26 15:03 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-26 15:02 - 2022-07-26 15:02 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-26 10:45 - 2022-08-29 09:05 - 000001018 _____ C:\Users\Public\Desktop\Surfshark.lnk
2022-07-09 22:53 - 2022-07-09 22:53 - 000000000 ____D C:\Program Files\Google
2022-07-08 08:56 - 2022-07-08 08:56 - 000000380 _____ C:\Users\Marc\Desktop\Authorization Request.html
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\Program Files\Common Files\Celemony
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\Program Files\Celemony
2022-07-03 02:33 - 2022-07-29 11:42 - 000000263 _____ C:\Users\Marc\Desktop\R2RAUTH.ttauth
2022-07-03 02:30 - 2022-07-03 02:30 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Toontrack
2022-07-03 02:24 - 2022-07-03 02:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontrack
2022-07-03 02:24 - 2022-07-03 02:24 - 000001974 _____ C:\Users\Public\Desktop\EZbass.lnk
2022-07-03 02:24 - 2022-07-03 02:24 - 000000000 ____D C:\ProgramData\Toontrack
2022-07-03 02:24 - 2022-07-03 02:24 - 000000000 ____D C:\Program Files\Toontrack
2022-07-03 01:43 - 2022-07-03 01:43 - 000000900 _____ C:\Users\Marc\Desktop\sc3.tmp
2022-06-29 15:47 - 2022-09-01 17:21 - 004091632 _____ C:\WINDOWS\system32\rtp.db
2022-06-27 17:22 - 2022-06-27 17:22 - 000000000 ____D C:\Users\Marc\AppData\Local\AviraWebView2Cache
2022-06-25 08:58 - 2022-06-25 08:58 - 000000000 ____D C:\Users\Marc\.ms-ad
2022-06-16 18:35 - 2022-06-16 18:35 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-06-12 09:39 - 2022-06-12 09:39 - 000000000 ____D C:\Program Files (x86)\Surfshark TAP Driver Windows
2022-06-11 09:53 - 2022-06-11 09:53 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_06_11
2022-06-11 09:43 - 2022-06-11 09:43 - 000017443 _____ C:\Users\Marc\Desktop\Harmo dia en D pour Blues en A.pdf
2022-06-04 17:17 - 2022-06-04 17:17 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_06_04
2022-06-04 16:29 - 2022-06-04 16:29 - 000000000 ____D C:\Program Files\MediaInfo.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 17:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-01 17:40 - 2020-11-05 04:31 - 001769358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-01 17:40 - 2019-12-07 16:50 - 000790592 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-01 17:40 - 2019-12-07 16:50 - 000149762 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-01 17:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-01 17:35 - 2022-01-06 17:54 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-01 17:35 - 2020-11-07 02:34 - 000000000 ____D C:\Program Files\CCleaner
2022-09-01 17:35 - 2019-11-28 00:17 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-01 17:33 - 2022-03-11 12:49 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-01 17:33 - 2021-06-20 11:59 - 000000000 ____D C:\ProgramData\Adguard
2022-09-01 17:33 - 2020-12-18 17:54 - 001136496 _____ C:\WINDOWS\system32\wpbbin.exe
2022-09-01 17:33 - 2020-12-18 17:54 - 001097624 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2022-09-01 17:33 - 2020-11-05 04:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-01 17:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-01 17:33 - 2019-11-28 09:51 - 000000000 ____D C:\Program Files (x86)\Avira
2022-09-01 17:33 - 2019-11-27 19:15 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-01 17:32 - 2020-11-05 04:29 - 000000000 ____D C:\Users\Marc
2022-09-01 17:32 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-01 17:31 - 2019-11-28 20:11 - 000000000 ____D C:\Users\Marc\AppData\Local\CrashDumps
2022-09-01 17:31 - 2019-11-28 09:51 - 000000000 ____D C:\ProgramData\Avira
2022-09-01 17:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-01 17:27 - 2020-11-05 04:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-01 17:22 - 2019-11-27 20:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-01 17:21 - 2022-01-01 15:18 - 000008010 _____ C:\Users\Marc\Desktop\ZHPFix.txt
2022-09-01 17:19 - 2019-11-28 19:50 - 000000000 ____D C:\Users\Marc\AppData\Roaming\ZHP
2022-09-01 17:15 - 2021-12-30 15:53 - 000000000 ____D C:\Users\Marc\AppData\Local\ZHP
2022-09-01 16:52 - 2019-11-27 20:25 - 000000000 ____D C:\Users\Marc\AppData\LocalLow\Mozilla
2022-09-01 16:37 - 2021-12-30 17:20 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1884309661-4178977230-3774313253-1001
2022-09-01 16:37 - 2020-11-05 04:36 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1884309661-4178977230-3774313253-1001
2022-09-01 16:37 - 2020-11-05 04:29 - 000002454 _____ C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-01 16:18 - 2019-11-27 20:25 - 000000000 ____D C:\ProgramData\Mozilla
2022-09-01 15:39 - 2019-11-28 18:47 - 000000000 ____D C:\Users\Marc\AppData\Roaming\FileZilla
2022-09-01 14:49 - 2020-11-05 04:36 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{42B0454E-F3AA-4953-94A8-90CBAD59F792}
2022-09-01 12:15 - 2022-01-09 00:14 - 000000000 ____D C:\Users\Public\Logi
2022-09-01 11:54 - 2019-11-28 15:15 - 000000000 ____D C:\ProgramData\Surfshark
2022-09-01 01:57 - 2019-11-29 14:17 - 000000000 ____D C:\Users\Marc\AppData\Roaming\vlc
2022-09-01 01:56 - 2022-01-01 15:12 - 000674083 _____ C:\Users\Marc\Desktop\ZHPDiag.html
2022-09-01 01:56 - 2022-01-01 15:12 - 000558437 _____ C:\Users\Marc\Desktop\ZHPDiag.txt
2022-09-01 01:38 - 2019-11-28 18:35 - 000000000 ____D C:\Users\Marc\AppData\Roaming\obs-studio
2022-09-01 00:01 - 2019-11-28 01:39 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-08-31 23:17 - 2020-11-11 20:49 - 000000000 ____D C:\Users\Marc\AppData\Roaming\WhatsApp
2022-08-31 23:05 - 2021-04-09 18:08 - 000000000 ____D C:\Users\Marc\AppData\Roaming\PaperScan Free
2022-08-31 08:13 - 2022-04-02 13:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-31 08:13 - 2019-11-27 20:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 19:51 - 2019-11-28 01:39 - 000000000 ____D C:\Users\Marc\AppData\Roaming\DVDFab11
2022-08-30 18:12 - 2019-11-28 01:43 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Filmotech_prefs
2022-08-30 18:12 - 2019-11-28 01:43 - 000000000 ____D C:\Users\Marc\AppData\Roaming\CEFCache
2022-08-30 17:31 - 2019-11-28 15:14 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Surfshark
2022-08-30 17:03 - 2020-11-05 04:36 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 17:03 - 2020-11-05 04:36 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 15:18 - 2022-04-02 13:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-08-30 15:17 - 2021-06-24 23:42 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-08-30 15:17 - 2021-06-24 23:42 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-08-30 15:17 - 2021-06-24 23:42 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-08-30 15:17 - 2019-11-28 19:59 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-08-30 15:17 - 2019-11-28 19:59 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-08-30 15:17 - 2019-11-28 19:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-08-30 15:17 - 2019-11-28 19:58 - 000000000 ____D C:\Program Files\Malwarebytes
2022-08-30 14:58 - 2022-01-10 14:16 - 000000000 ____D C:\Users\Marc\AppData\Local\luminati
2022-08-29 18:49 - 2021-12-30 16:05 - 000010077 _____ C:\Users\Marc\Desktop\ZHPCleaner (R).html
2022-08-29 18:49 - 2021-12-30 16:05 - 000003136 _____ C:\Users\Marc\Desktop\ZHPCleaner (R).txt
2022-08-29 18:48 - 2021-12-30 16:02 - 000009356 _____ C:\Users\Marc\Desktop\ZHPCleaner (S).html
2022-08-29 18:48 - 2021-12-30 16:02 - 000002593 _____ C:\Users\Marc\Desktop\ZHPCleaner (S).txt
2022-08-29 14:49 - 2019-11-28 18:53 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Celemony Software GmbH
2022-08-29 09:05 - 2019-11-28 15:14 - 000000000 ____D C:\Program Files (x86)\Surfshark
2022-08-27 11:43 - 2020-04-03 13:23 - 000010240 _____ C:\Users\Marc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-08-26 18:07 - 2019-11-28 00:19 - 000000000 ____D C:\Users\Marc\AppData\Roaming\audacity
2022-08-26 13:47 - 2021-06-08 01:08 - 000000015 _____ C:\Users\Marc\AppData\Roaming\obs-virtualcam.txt
2022-08-26 07:25 - 2020-06-10 11:06 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-26 07:25 - 2020-06-10 11:06 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-26 07:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-26 07:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-24 02:26 - 2020-11-05 04:36 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-23 08:20 - 2020-11-05 04:36 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 08:20 - 2020-11-05 04:36 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-22 09:23 - 2021-12-30 15:30 - 000001078 _____ C:\Users\Public\Desktop\Avira.lnk
2022-08-22 09:23 - 2021-12-30 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2022-08-19 11:11 - 2020-11-11 20:50 - 000000000 ____D C:\Users\Marc\AppData\Local\WhatsApp
2022-08-16 19:17 - 2020-12-18 19:16 - 000007598 _____ C:\Users\Marc\AppData\Local\Resmon.ResmonCfg
2022-08-12 19:38 - 2020-01-13 12:58 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2022-08-11 11:37 - 2022-03-18 01:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-11 11:37 - 2022-03-18 01:06 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-08-11 11:37 - 2021-06-20 09:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-08-10 17:53 - 2020-11-05 04:27 - 000542544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-10 17:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-10 17:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-10 13:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-10 13:43 - 2020-11-05 04:28 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-10 13:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-10 13:39 - 2019-11-28 01:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2022-08-10 13:39 - 2019-03-19 06:49 - 000000167 _____ C:\WINDOWS\win.ini
2022-08-10 13:38 - 2019-11-27 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-10 13:36 - 2019-11-27 22:27 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-10 10:49 - 2022-01-06 14:20 - 000001407 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-08-10 10:49 - 2022-01-06 14:19 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2019-11-27 19:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-08-10 10:49 - 2019-11-27 19:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-08-10 10:49 - 2019-11-27 18:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-08-06 12:30 - 2022-05-14 09:36 - 000000000 ____D C:\Users\Marc\AppData\Local\_
==================== Fichiers à la racine de certains dossiers ========
2021-06-24 20:06 - 2021-06-24 20:06 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat
2019-11-28 01:39 - 2019-11-28 01:39 - 000000171 _____ () C:\Users\Marc\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2019-11-28 15:34 - 2019-11-28 15:34 - 001236762 _____ () C:\Users\Marc\AppData\Roaming\AvidApplicationManager_Install.log
2021-06-08 01:08 - 2022-08-26 13:47 - 000000015 _____ () C:\Users\Marc\AppData\Roaming\obs-virtualcam.txt
2021-05-18 13:56 - 2021-05-18 13:56 - 000038479 _____ () C:\Users\Marc\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-05-18 14:28 - 2021-05-18 14:40 - 000013009 _____ () C:\Users\Marc\AppData\Roaming\Valeurs séparées par une virgule.CAL
2020-04-03 13:23 - 2022-08-27 11:43 - 000010240 _____ () C:\Users\Marc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-18 19:16 - 2022-08-16 19:17 - 000007598 _____ () C:\Users\Marc\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2019-11-28 18:39 - 2012-06-20 18:38 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71u.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp70.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2019-11-28 18:32 - 2019-11-28 18:32 - 000116736 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2019-11-28 10:07 - 2008-10-16 18:55 - 003799951 _____ C:\WINDOWS\SysWOW64\erdmpg-6.dll
2020-05-05 12:01 - 2020-05-05 12:01 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2020-12-02 11:23 - 2007-07-22 16:20 - 000184832 _____ (hxxp://www.dimastr.com/redemption) C:\WINDOWS\SysWOW64\ProfMan.dll
2019-10-19 21:50 - 2019-10-19 21:50 - 002649600 _____ (Python Software Foundation) C:\WINDOWS\SysWOW64\python27.dll
2019-11-28 19:41 - 2011-12-30 21:52 - 000233472 _____ (Propellerhead Software AB) C:\WINDOWS\SysWOW64\REX Shared Library.dll
2019-11-28 10:07 - 2009-09-29 21:57 - 000758018 _____ C:\WINDOWS\SysWOW64\xvidcore.dll
2019-11-28 10:07 - 2008-12-04 22:46 - 000180224 _____ C:\WINDOWS\SysWOW64\xvidvfw.dll
2020-12-19 16:29 - 2020-12-19 16:29 - 000003812 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe
2020-12-19 16:29 - 2020-12-19 16:29 - 000003210 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2020-12-19 16:29 - 2020-12-19 16:29 - 000003206 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2022-09-01 10:48 - 2022-09-01 02:03 - 002371072 _____ (Farbar) C:\Users\Marc\Desktop\FRST64 (1).exe
2019-11-28 15:31 - 2016-01-19 13:15 - 044520368 ____N (Native Instruments GmbH) C:\Users\Marc\Desktop\Kontakt 5.exe
2019-11-28 01:42 - 2019-11-28 01:42 - 000326656 _____ () C:\Users\Marc\Desktop\VOBMerge252.exe
2020-04-28 01:55 - 2020-04-28 01:56 - 000815655 _____ (Piston Software ) C:\Users\Marc\Downloads\BPMdetector_setup.exe
2020-04-23 10:19 - 2020-04-23 10:19 - 025967804 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.4_x64_setup(1).exe
2020-04-23 01:31 - 2020-04-23 01:31 - 025967804 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.4_x64_setup.exe
2020-04-25 09:11 - 2020-04-25 09:12 - 025981603 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.5_x64_setup.exe
2020-10-29 11:42 - 2020-10-29 11:43 - 026032700 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.3.0.1_x64_setup.exe
2022-01-02 11:51 - 2022-01-02 11:51 - 027590526 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.3.9_x64_setup.exe
2022-03-12 02:25 - 2022-03-12 02:25 - 030298985 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.1_x64_setup.exe
2022-05-24 13:21 - 2022-05-24 13:21 - 027862107 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.3_setup.exe
2022-05-24 13:20 - 2022-05-24 13:20 - 030108422 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.3_x64_setup.exe
2020-10-10 19:31 - 2020-10-10 19:31 - 017822512 _____ (Corel Corporation) C:\Users\Marc\Downloads\SimpleDriverUpdaterSetup_ppc3.exe
2022-03-11 17:21 - 2022-03-11 17:21 - 003293848 _____ (Nicolas Coolman) C:\Users\Marc\Downloads\ZHPCleaner.exe
2022-01-01 15:04 - 2022-01-01 15:04 - 003478168 _____ (Nicolas Coolman) C:\Users\Marc\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Marc (administrateur) sur MARCPC (01-09-2022 17:42:03)
Exécuté depuis C:\Users\Marc\Desktop
Profils chargés: Marc
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Assetto Corsa\AssettoCorsaArxApplet.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(C:\Program Files\Logitech\X52\X52_Profiler.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\X52\LAClient\laclient.exe
(C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\FlightSupport\FlightSupport.exe
(explorer.exe ->) (Logitech) [Fichier non signé] C:\Program Files\Logitech\X52\X52_Profiler.exe
(explorer.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.exe
(explorer.exe ->) (Suunto Oy -> ) C:\Users\Marc\AppData\Local\Suuntolink\app-4.0.5\resources\app\LaunchAgents\SuuntolinkLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_778512ee63a728ec\RstMwService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\Surfshark.Service.exe
(services.exe ->) (Surfshark B.V. -> Surfshark) C:\Program Files (x86)\Surfshark\SurfsharkWireGuard\Surfshark.WireguardService.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (voidtools -> ) C:\Program Files (x86)\Everything\Everything.exe
(svchost.exe ->) () [Fichier non signé] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [FlightSupport] => C:\Program Files\Logitech\FlightSupport\FlightSupport.exe [368776 2018-09-04] (Logitech Inc -> Logitech)
HKLM\...\Run: [X52] => C:\Program Files\Logitech\X52\X52_Profiler.exe [17920 2018-09-04] (Logitech) [Fichier non signé]
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Pas de fichier)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6223200 2022-01-05] (Acronis International GmbH -> )
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [AppManHelper] => C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe [617984 2015-06-09] (Avid Technology, Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-01-26] (voidtools -> )
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6315480 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Surfshark] => C:\Program Files (x86)\Surfshark\Surfshark.exe [10363464 2022-08-18] (Surfshark B.V. -> Surfshark)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116058488 2022-03-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [BackupOutlook] => C:\Program Files (x86)\Wisco\BackupOutlook\BackupOutlook.exe [3717232 2013-08-30] (Wisco Computerservice -> Wisco)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Amazon Photos] => C:\Users\Marc\AppData\Local\Amazon Drive\AmazonPhotos.exe [10182800 2021-05-10] (Amazon.com Services LLC -> Amazon.com Inc.)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6315480 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [SuuntolinkLauncher] => C:\Users\Marc\AppData\Local\Suuntolink\app-4.0.5\resources\app\LaunchAgents\SuuntolinkLauncher.exe [831832 2021-12-31] (Suunto Oy -> )
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [MicrosoftEdgeAutoLaunch_E0E9BAF864A0DC7753C20802F74DF30B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827104 2022-08-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\...\Run: [] => [X]
HKU\S-1-5-21-1884309661-4178977230-3774313253-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [224768 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP 5512 Status Monitor: C:\WINDOWS\system32\hpinksts5512LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 6500 E710a-f): C:\WINDOWS\system32\HPDiscoPM5512.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 6500 E710n-z): C:\WINDOWS\system32\HPDiscoPM5412.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\Windows\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2020-09-25] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-11-28] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-01-13]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2019-11-28]
ShortcutTarget: Avid Application Manager.lnk -> C:\Windows\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe (Flexera Software LLC) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Philips GoGear SA4RGA Device Manager.lnk [2020-01-27]
ShortcutTarget: Philips GoGear SA4RGA Device Manager.lnk -> C:\Program Files (x86)\Philips\GoGear SA4RGA Device Manager\GoGear_SA4RGA_DeviceManager.exe (Koninklijke Philips Electronics N.V. -> Philips)
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f (réseau).lnk [2021-12-30]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f (réseau).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15V321HK05JZ;CONNECTION=NW;MONITOR=1;
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f.lnk [2020-12-31]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 6500 E710a-f.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15V321HK05JZ;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-01-16]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy-Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0ACB176E-3A64-4A16-8898-4D07BD8F47E0} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {132B710A-649E-4037-9124-0CBDBED161D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-28] (Google Inc -> Google Inc.)
Task: {1E99256B-E431-4FC7-9CD4-C21D46D39395} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {23B6E137-327C-4EE1-B8A9-8288463B61B1} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DDE6448-5E57-4082-9CD4-EA6074CA81A8} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {345CC112-3840-4117-BB96-B239C667C584} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {4720F5D8-5FDD-4A8D-A7D0-4FF2ED4C7B77} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-25] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4FC9FC27-6EFB-49F1-9418-0EE920927ED8} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe /min (Pas de fichier)
Task: {57250585-ABB7-44CE-9A5A-61F5380DB6A6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {5814AB2A-C028-482A-98DF-2E2831E465CA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6100DADF-99D8-409B-A375-1B373E88832C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {69AA70CF-3429-47FB-89AC-4BE9A88E3BB9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D5089BD-BECD-491B-B9FA-6E55F60446E6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7701B4DA-5FE7-4DF8-BA96-CF7C8B97A025} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [6174816 2016-01-07] (Samsung Electronics Co., Ltd. -> Samsung Electronics.)
Task: {80218C4C-392B-4758-8D39-BBB1AE9879A8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {82AE78CD-97CD-4E1B-8DDA-EAD0B6D58C40} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1235968 2021-10-06] () [Fichier non signé]
Task: {88B46433-3504-4136-B6CC-D7A468259BC6} - System32\Tasks\CCleanerSkipUAC - Marc => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {89B792F6-CE88-4243-A896-59AFF3D13F49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-28] (Google Inc -> Google Inc.)
Task: {8DC237CD-4A96-4BDA-98AF-9A9174DBB250} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9016C937-6CFE-40A5-89CB-6092B7E5CC81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {AB669C3E-7288-4BE2-8FA4-05F69BAA478C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-05-06] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9B6FB4B-6273-4D88-A525-9B158035E27D} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32624 2020-10-22] (Microsoft Corporation -> Microsoft)
Task: {D11B59EE-9F00-4045-B4D7-BA719B0A1DB2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E48F6D10-F0D6-4E03-96B4-16021963DDE5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E9E331E3-EDFD-457C-B778-203B57EC1AD4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA3AD3A2-707F-434A-B157-F578A05ECCE8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FA7D4753-678A-4CE3-A5D0-E8579769BF06} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-05-04] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{253ecd10-36de-4203-93e2-85d434af57de}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8d69708d-ddec-a599-bb02-0475a5d2150e}: [NameServer] 162.252.172.57,149.154.159.92
Tcpip\..\Interfaces\{ba6550ed-fa36-4115-bad9-e749131d41e5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d83b20ac-2956-4dbb-8956-75ebb2b819e9}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2022-09-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-01]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 4byowv6t.default
FF ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default [2022-09-01]
FF DownloadDir: H:\Reception
FF Notifications: Mozilla\Firefox\Profiles\4byowv6t.default -> hxxps://www.tameteo.com; hxxps://messages.google.com; hxxps://www.musicdiffusion.com; hxxps://www.facebook.com
FF Extension: (Avira Browser Safety) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\abs@avira.com [2019-11-28]
FF Extension: (Protection Web Avira) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\abs@avira.com.xpi [2019-11-14]
FF Extension: (AdSwap) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{4582aaa7-9688-4038-a9ef-06345fa0f400}.xpi [2019-11-13]
FF Extension: (Surfshark VPN proxy) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{732216ec-0dab-43bb-ac85-4b5e1977599d}.xpi [2019-11-05]
FF Extension: (Video DownloadHelper) - C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\4byowv6t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-09-27]
FF ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\foxl963v.default-release-1601650998019 [2022-09-01]
FF Notifications: Mozilla\Firefox\Profiles\foxl963v.default-release-1601650998019 -> hxxps://www.lesnumeriques.com; hxxps://www.castorama.fr; hxxps://www.medisite.fr; hxxps://calendar.google.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default [2022-09-01]
CHR DownloadDir: H:\Reception
CHR Notifications: Default -> hxxps://business.facebook.com; hxxps://captchaless.top
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-29]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-01]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-09-01]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-03]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-06-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-03]
CHR Profile: C:\Users\Marc\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-01]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12978544 2022-01-05] (Acronis International GmbH -> )
R2 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [467928 2022-03-05] (Adguard Software Limited -> Adguard Software Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2022-07-29] (Acronis International GmbH -> )
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-12] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1097624 2022-09-01] (ASUSTeK Computer Inc. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-01-26] (voidtools -> )
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-06-27] (HP Inc. -> HP Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-08-30] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2022-01-05] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-11-18] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2130296 2022-01-05] (Acronis International GmbH -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-09-24] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-09-24] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R2 Surfshark Service; C:\Program Files (x86)\Surfshark\Surfshark.Service.exe [3238984 2022-08-18] (Surfshark B.V. -> Surfshark)
R3 Surfshark WireGuard; C:\Program Files (x86)\Surfshark\SurfsharkWireGuard\Surfshark.WireGuardService.exe [476232 2022-08-18] (Surfshark B.V. -> Surfshark)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7402528 2022-01-05] (Acronis International GmbH -> )
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253912 2019-10-30] (Synology Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
S2 AviraSecurity; "C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe" [X]
S2 AviraSecurityUpdater; "C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsig.inf_amd64_25c7f90bc50ef14d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [94720 2021-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2020-11-23] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [284672 2021-04-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [726160 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2020-12-02] (Acronis International GmbH -> Acronis International GmbH)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2020-12-16] (Martin Malik - REALiX -> REALiX(tm))
R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [39432 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [68864 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [26520 2022-03-04] (WDKTestCert builder,132609310927560390 -> Logitech Inc.)
R3 LSaiMini; C:\WINDOWS\System32\drivers\LSaiMini.sys [20720 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 LSaiNtBus; C:\WINDOWS\system32\drivers\LSaiBus.sys [60336 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl6a3cb3b3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{27D5A86B-9B07-4B7D-BFA4-3EA3078BA888}\MpKslDrv.sys [141576 2022-09-01] (Microsoft Windows -> Microsoft Corporation)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [16344 2022-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-09-10] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-12-15] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 RDID1117; C:\WINDOWS\system32\Drivers\RDWM1117.SYS [182296 2021-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Roland Corporation)
S3 SaiK0255; C:\WINDOWS\system32\DRIVERS\SaiK0255.sys [217408 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S3 SaiU0255; C:\WINDOWS\system32\DRIVERS\SaiU0255.sys [24816 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SmbIch; C:\WINDOWS\System32\drivers\SmbIch.sys [30248 2020-11-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SurfsharkSplitTunnelDriver; C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkSplitTunnelCalloutDriver.sys [39648 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2019-05-22] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-07-29] (Acronis International GmbH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420072 2021-04-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-04-07] (Microsoft Windows -> Microsoft Corporation)
R3 wintunshark; C:\WINDOWS\system32\DRIVERS\wintunshark.sys [31096 2020-09-17] (WDKTestCert nikod,132409123292239223 -> Surfshark Ltd)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 17:30 - 2022-09-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2022-09-01 17:15 - 2022-09-01 17:15 - 000000893 _____ C:\Users\Marc\Desktop\ZHPFix2.lnk
2022-09-01 15:39 - 2022-09-01 15:39 - 011847936 _____ (Tim Kosse) C:\Users\Marc\Downloads\FileZilla_3.60.2_win64-setup.exe
2022-09-01 10:56 - 2022-09-01 10:56 - 000094369 _____ C:\Users\Marc\Desktop\Shortcut.txt
2022-09-01 10:54 - 2022-09-01 10:54 - 000044926 _____ C:\Users\Marc\Desktop\Addition.txt
2022-09-01 10:52 - 2022-09-01 17:42 - 000041178 _____ C:\Users\Marc\Desktop\FRST.txt
2022-09-01 10:51 - 2022-09-01 17:42 - 000000000 ____D C:\FRST
2022-09-01 10:48 - 2022-09-01 02:03 - 002371072 _____ (Farbar) C:\Users\Marc\Desktop\FRST64 (1).exe
2022-09-01 01:50 - 2022-09-01 01:50 - 000000900 _____ C:\Users\Marc\Desktop\ZHPDiag.lnk
2022-08-31 11:30 - 2022-08-31 11:30 - 000000965 _____ C:\Users\Marc\Desktop\avidemux.lnk
2022-08-31 10:02 - 2022-09-01 17:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-08-31 01:13 - 2022-08-31 09:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-30 18:13 - 2022-08-30 18:13 - 000000000 ____D C:\Users\Marc\AppData\Roaming\17204
2022-08-30 15:25 - 2022-08-31 15:26 - 000000000 ____D C:\Users\Marc\AppData\Roaming\avidemux
2022-08-30 15:25 - 2022-08-30 15:25 - 000000000 ____D C:\Users\Marc\AppData\Local\avidemux
2022-08-30 15:24 - 2022-08-30 15:24 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avidemux 2.8 VC++ 64bits
2022-08-30 15:24 - 2022-08-30 15:24 - 000000000 ____D C:\Program Files\Avidemux 2.8 VC++ 64bits
2022-08-30 14:58 - 2022-08-30 14:59 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2022-08-30 14:58 - 2022-08-30 14:58 - 000001140 _____ C:\Users\Marc\Desktop\Format Factory.lnk
2022-08-30 14:58 - 2022-08-30 14:58 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2022-08-30 14:56 - 2022-08-30 14:56 - 000003636 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-08-29 09:05 - 2022-08-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Surfshark
2022-08-29 09:05 - 2022-08-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\New Folder
2022-08-14 11:32 - 2022-08-14 11:32 - 000000000 ___HD C:\$SysReset
2022-08-10 13:44 - 2022-08-10 13:44 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-10 13:44 - 2022-08-10 13:44 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-10 13:44 - 2022-08-10 13:44 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-10 13:44 - 2022-08-10 13:44 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-10 13:44 - 2022-08-10 13:44 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-10 13:43 - 2022-08-10 13:43 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-10 13:43 - 2022-08-10 13:43 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 13:43 - 2022-08-10 13:43 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 13:40 - 2022-08-10 13:40 - 000000000 ___HD C:\$WinREAgent
2022-08-08 14:55 - 2022-08-08 14:55 - 000002179 _____ C:\Users\Public\Desktop\Start PaperScan 3 Free Edition.lnk
2022-08-08 14:55 - 2022-08-08 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaperScan 3 Free Edition
2022-08-08 14:55 - 2022-08-08 14:55 - 000000000 ____D C:\Program Files (x86)\ORPALIS
2022-08-08 13:38 - 2022-08-08 13:44 - 000000000 ____D C:\Users\Marc\Downloads\Elvis (2022) [1080p] [WEBRip] [5.1] [YTS.MX]
2022-08-06 12:32 - 2022-08-30 14:57 - 000000000 ____D C:\Users\Marc\AppData\Local\Free_Time_Co.,_Ltd
2022-08-06 12:32 - 2022-08-06 12:32 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_08_06
2022-08-06 12:30 - 2022-08-06 12:30 - 110490832 ____N (Free Time Co., Ltd) C:\Users\Marc\Downloads\formatfactory-5-11-0-0.exe
2022-08-01 14:52 - 2022-08-01 14:52 - 000303905 _____ C:\Users\Marc\Downloads\Fact 48 M Bernard.pdf
2022-08-01 14:52 - 2022-08-01 14:52 - 000303905 _____ C:\Users\Marc\Downloads\Fact 48 M Bernard (1).pdf
2022-07-29 03:04 - 2022-07-29 03:04 - 000001654 _____ C:\Users\Marc\Desktop\Kontakt.exe - Raccourci.lnk
2022-07-29 03:01 - 2022-07-29 03:01 - 000001087 _____ C:\Users\Public\Desktop\Creator Tools.lnk
2022-07-29 03:01 - 2022-07-29 03:01 - 000000000 __HDC C:\ProgramData\{100F529D-71F2-4383-BC9C-510B98D2BEF1}
2022-07-29 02:54 - 2022-07-29 02:54 - 000001023 _____ C:\Users\Public\Desktop\Kontakt.lnk
2022-07-29 02:54 - 2022-07-29 02:54 - 000000000 __HDC C:\ProgramData\{7274A0FE-FB8C-4441-AB02-027346252DB4}
2022-07-29 02:52 - 2022-07-29 02:52 - 000000000 ____D C:\Program Files (x86)\Native Instruments Kontakt 6.7.1
2022-07-29 00:31 - 2022-07-29 00:31 - 000008834 _____ C:\Users\Marc\Downloads\Native Instruments - Kontakt 6 v7 7 1 UNLOCKED FiXED OS X.torrent
2022-07-28 23:39 - 2022-07-28 23:39 - 006858841 _____ C:\Users\Marc\Downloads\Setup_open.rar
2022-07-28 23:24 - 2022-07-28 23:24 - 000971875 _____ C:\Users\Marc\Downloads\Shepherd.zip
2022-07-28 23:20 - 2022-07-28 23:20 - 000013408 _____ C:\Users\Marc\Downloads\Impact-Soundworks-Ventus-Ethnic-Winds-Pan-Flutes-KONTAKT (1).torrent
2022-07-28 23:05 - 2022-07-28 23:05 - 000013408 _____ C:\Users\Marc\Downloads\Impact-Soundworks-Ventus-Ethnic-Winds-Pan-Flutes-KONTAKT.torrent
2022-07-28 22:46 - 2022-07-28 22:46 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (4).torrent
2022-07-28 22:45 - 2022-07-28 22:45 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (3).torrent
2022-07-28 20:37 - 2022-07-28 20:37 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (2).torrent
2022-07-28 20:35 - 2022-07-28 20:35 - 000150886 _____ C:\Users\Marc\Downloads\Yellowstone.2018.S01.DVDRip.Z2.BluRay.FR.zip
2022-07-28 20:35 - 2022-07-28 20:35 - 000036277 _____ C:\Users\Marc\Downloads\Yellowstone.S01.DVDRip.WiHD.FR.zip
2022-07-28 20:32 - 2022-07-28 20:32 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv] (1).torrent
2022-07-28 20:31 - 2022-07-28 20:31 - 000157698 _____ C:\Users\Marc\Downloads\Yellowstone-2018-S01-WEBRip-XviD-FUM[ettv].torrent
2022-07-26 15:03 - 2022-07-26 15:03 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-26 15:03 - 2022-07-26 15:03 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-26 15:03 - 2022-07-26 15:03 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-26 15:03 - 2022-07-26 15:03 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-26 15:03 - 2022-07-26 15:03 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-26 15:02 - 2022-07-26 15:02 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-26 10:45 - 2022-08-29 09:05 - 000001018 _____ C:\Users\Public\Desktop\Surfshark.lnk
2022-07-09 22:53 - 2022-07-09 22:53 - 000000000 ____D C:\Program Files\Google
2022-07-08 08:56 - 2022-07-08 08:56 - 000000380 _____ C:\Users\Marc\Desktop\Authorization Request.html
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\Program Files\Common Files\Celemony
2022-07-05 10:45 - 2022-07-05 10:45 - 000000000 ____D C:\Program Files\Celemony
2022-07-03 02:33 - 2022-07-29 11:42 - 000000263 _____ C:\Users\Marc\Desktop\R2RAUTH.ttauth
2022-07-03 02:30 - 2022-07-03 02:30 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Toontrack
2022-07-03 02:24 - 2022-07-03 02:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontrack
2022-07-03 02:24 - 2022-07-03 02:24 - 000001974 _____ C:\Users\Public\Desktop\EZbass.lnk
2022-07-03 02:24 - 2022-07-03 02:24 - 000000000 ____D C:\ProgramData\Toontrack
2022-07-03 02:24 - 2022-07-03 02:24 - 000000000 ____D C:\Program Files\Toontrack
2022-07-03 01:43 - 2022-07-03 01:43 - 000000900 _____ C:\Users\Marc\Desktop\sc3.tmp
2022-06-29 15:47 - 2022-09-01 17:21 - 004091632 _____ C:\WINDOWS\system32\rtp.db
2022-06-27 17:22 - 2022-06-27 17:22 - 000000000 ____D C:\Users\Marc\AppData\Local\AviraWebView2Cache
2022-06-25 08:58 - 2022-06-25 08:58 - 000000000 ____D C:\Users\Marc\.ms-ad
2022-06-16 18:35 - 2022-06-16 18:35 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-16 18:35 - 2022-06-16 18:35 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-06-12 09:39 - 2022-06-12 09:39 - 000000000 ____D C:\Program Files (x86)\Surfshark TAP Driver Windows
2022-06-11 09:53 - 2022-06-11 09:53 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_06_11
2022-06-11 09:43 - 2022-06-11 09:43 - 000017443 _____ C:\Users\Marc\Desktop\Harmo dia en D pour Blues en A.pdf
2022-06-04 17:17 - 2022-06-04 17:17 - 000000000 ____D C:\Users\Marc\Downloads\FormatFactory2022_06_04
2022-06-04 16:29 - 2022-06-04 16:29 - 000000000 ____D C:\Program Files\MediaInfo.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-01 17:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-01 17:40 - 2020-11-05 04:31 - 001769358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-01 17:40 - 2019-12-07 16:50 - 000790592 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-01 17:40 - 2019-12-07 16:50 - 000149762 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-01 17:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-01 17:35 - 2022-01-06 17:54 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-01 17:35 - 2020-11-07 02:34 - 000000000 ____D C:\Program Files\CCleaner
2022-09-01 17:35 - 2019-11-28 00:17 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-01 17:33 - 2022-03-11 12:49 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-01 17:33 - 2021-06-20 11:59 - 000000000 ____D C:\ProgramData\Adguard
2022-09-01 17:33 - 2020-12-18 17:54 - 001136496 _____ C:\WINDOWS\system32\wpbbin.exe
2022-09-01 17:33 - 2020-12-18 17:54 - 001097624 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2022-09-01 17:33 - 2020-11-05 04:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-01 17:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-01 17:33 - 2019-11-28 09:51 - 000000000 ____D C:\Program Files (x86)\Avira
2022-09-01 17:33 - 2019-11-27 19:15 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-01 17:32 - 2020-11-05 04:29 - 000000000 ____D C:\Users\Marc
2022-09-01 17:32 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-01 17:31 - 2019-11-28 20:11 - 000000000 ____D C:\Users\Marc\AppData\Local\CrashDumps
2022-09-01 17:31 - 2019-11-28 09:51 - 000000000 ____D C:\ProgramData\Avira
2022-09-01 17:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-01 17:27 - 2020-11-05 04:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-01 17:22 - 2019-11-27 20:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-01 17:21 - 2022-01-01 15:18 - 000008010 _____ C:\Users\Marc\Desktop\ZHPFix.txt
2022-09-01 17:19 - 2019-11-28 19:50 - 000000000 ____D C:\Users\Marc\AppData\Roaming\ZHP
2022-09-01 17:15 - 2021-12-30 15:53 - 000000000 ____D C:\Users\Marc\AppData\Local\ZHP
2022-09-01 16:52 - 2019-11-27 20:25 - 000000000 ____D C:\Users\Marc\AppData\LocalLow\Mozilla
2022-09-01 16:37 - 2021-12-30 17:20 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1884309661-4178977230-3774313253-1001
2022-09-01 16:37 - 2020-11-05 04:36 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1884309661-4178977230-3774313253-1001
2022-09-01 16:37 - 2020-11-05 04:29 - 000002454 _____ C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-01 16:18 - 2019-11-27 20:25 - 000000000 ____D C:\ProgramData\Mozilla
2022-09-01 15:39 - 2019-11-28 18:47 - 000000000 ____D C:\Users\Marc\AppData\Roaming\FileZilla
2022-09-01 14:49 - 2020-11-05 04:36 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{42B0454E-F3AA-4953-94A8-90CBAD59F792}
2022-09-01 12:15 - 2022-01-09 00:14 - 000000000 ____D C:\Users\Public\Logi
2022-09-01 11:54 - 2019-11-28 15:15 - 000000000 ____D C:\ProgramData\Surfshark
2022-09-01 01:57 - 2019-11-29 14:17 - 000000000 ____D C:\Users\Marc\AppData\Roaming\vlc
2022-09-01 01:56 - 2022-01-01 15:12 - 000674083 _____ C:\Users\Marc\Desktop\ZHPDiag.html
2022-09-01 01:56 - 2022-01-01 15:12 - 000558437 _____ C:\Users\Marc\Desktop\ZHPDiag.txt
2022-09-01 01:38 - 2019-11-28 18:35 - 000000000 ____D C:\Users\Marc\AppData\Roaming\obs-studio
2022-09-01 00:01 - 2019-11-28 01:39 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-08-31 23:17 - 2020-11-11 20:49 - 000000000 ____D C:\Users\Marc\AppData\Roaming\WhatsApp
2022-08-31 23:05 - 2021-04-09 18:08 - 000000000 ____D C:\Users\Marc\AppData\Roaming\PaperScan Free
2022-08-31 08:13 - 2022-04-02 13:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-31 08:13 - 2019-11-27 20:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 19:51 - 2019-11-28 01:39 - 000000000 ____D C:\Users\Marc\AppData\Roaming\DVDFab11
2022-08-30 18:12 - 2019-11-28 01:43 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Filmotech_prefs
2022-08-30 18:12 - 2019-11-28 01:43 - 000000000 ____D C:\Users\Marc\AppData\Roaming\CEFCache
2022-08-30 17:31 - 2019-11-28 15:14 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Surfshark
2022-08-30 17:03 - 2020-11-05 04:36 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 17:03 - 2020-11-05 04:36 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 15:18 - 2022-04-02 13:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-08-30 15:17 - 2021-06-24 23:42 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-08-30 15:17 - 2021-06-24 23:42 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-08-30 15:17 - 2021-06-24 23:42 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-08-30 15:17 - 2019-11-28 19:59 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-08-30 15:17 - 2019-11-28 19:59 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-08-30 15:17 - 2019-11-28 19:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-08-30 15:17 - 2019-11-28 19:58 - 000000000 ____D C:\Program Files\Malwarebytes
2022-08-30 14:58 - 2022-01-10 14:16 - 000000000 ____D C:\Users\Marc\AppData\Local\luminati
2022-08-29 18:49 - 2021-12-30 16:05 - 000010077 _____ C:\Users\Marc\Desktop\ZHPCleaner (R).html
2022-08-29 18:49 - 2021-12-30 16:05 - 000003136 _____ C:\Users\Marc\Desktop\ZHPCleaner (R).txt
2022-08-29 18:48 - 2021-12-30 16:02 - 000009356 _____ C:\Users\Marc\Desktop\ZHPCleaner (S).html
2022-08-29 18:48 - 2021-12-30 16:02 - 000002593 _____ C:\Users\Marc\Desktop\ZHPCleaner (S).txt
2022-08-29 14:49 - 2019-11-28 18:53 - 000000000 ____D C:\Users\Marc\AppData\Roaming\Celemony Software GmbH
2022-08-29 09:05 - 2019-11-28 15:14 - 000000000 ____D C:\Program Files (x86)\Surfshark
2022-08-27 11:43 - 2020-04-03 13:23 - 000010240 _____ C:\Users\Marc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-08-26 18:07 - 2019-11-28 00:19 - 000000000 ____D C:\Users\Marc\AppData\Roaming\audacity
2022-08-26 13:47 - 2021-06-08 01:08 - 000000015 _____ C:\Users\Marc\AppData\Roaming\obs-virtualcam.txt
2022-08-26 07:25 - 2020-06-10 11:06 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-26 07:25 - 2020-06-10 11:06 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-08-26 07:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-26 07:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-24 02:26 - 2020-11-05 04:36 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-23 08:20 - 2020-11-05 04:36 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 08:20 - 2020-11-05 04:36 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-22 09:23 - 2021-12-30 15:30 - 000001078 _____ C:\Users\Public\Desktop\Avira.lnk
2022-08-22 09:23 - 2021-12-30 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2022-08-19 11:11 - 2020-11-11 20:50 - 000000000 ____D C:\Users\Marc\AppData\Local\WhatsApp
2022-08-16 19:17 - 2020-12-18 19:16 - 000007598 _____ C:\Users\Marc\AppData\Local\Resmon.ResmonCfg
2022-08-12 19:38 - 2020-01-13 12:58 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2022-08-11 11:37 - 2022-03-18 01:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-11 11:37 - 2022-03-18 01:06 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-08-11 11:37 - 2021-06-20 09:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-08-10 17:53 - 2020-11-05 04:27 - 000542544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-10 17:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-10 17:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-10 17:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-10 13:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-10 13:43 - 2020-11-05 04:28 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-10 13:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-10 13:39 - 2019-11-28 01:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2022-08-10 13:39 - 2019-03-19 06:49 - 000000167 _____ C:\WINDOWS\win.ini
2022-08-10 13:38 - 2019-11-27 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-10 13:36 - 2019-11-27 22:27 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-10 10:49 - 2022-01-06 14:20 - 000001407 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-08-10 10:49 - 2022-01-06 14:19 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2022-01-06 14:19 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-08-10 10:49 - 2019-11-27 19:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-08-10 10:49 - 2019-11-27 19:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-08-10 10:49 - 2019-11-27 18:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-08-06 12:30 - 2022-05-14 09:36 - 000000000 ____D C:\Users\Marc\AppData\Local\_
==================== Fichiers à la racine de certains dossiers ========
2021-06-24 20:06 - 2021-06-24 20:06 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat
2019-11-28 01:39 - 2019-11-28 01:39 - 000000171 _____ () C:\Users\Marc\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2019-11-28 15:34 - 2019-11-28 15:34 - 001236762 _____ () C:\Users\Marc\AppData\Roaming\AvidApplicationManager_Install.log
2021-06-08 01:08 - 2022-08-26 13:47 - 000000015 _____ () C:\Users\Marc\AppData\Roaming\obs-virtualcam.txt
2021-05-18 13:56 - 2021-05-18 13:56 - 000038479 _____ () C:\Users\Marc\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-05-18 14:28 - 2021-05-18 14:40 - 000013009 _____ () C:\Users\Marc\AppData\Roaming\Valeurs séparées par une virgule.CAL
2020-04-03 13:23 - 2022-08-27 11:43 - 000010240 _____ () C:\Users\Marc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-18 19:16 - 2022-08-16 19:17 - 000007598 _____ () C:\Users\Marc\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2019-11-28 18:39 - 2012-06-20 18:38 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71u.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp70.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll
2019-11-28 18:39 - 2012-06-20 18:38 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2019-11-28 18:32 - 2019-11-28 18:32 - 000116736 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2019-11-28 10:07 - 2008-10-16 18:55 - 003799951 _____ C:\WINDOWS\SysWOW64\erdmpg-6.dll
2020-05-05 12:01 - 2020-05-05 12:01 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2014-11-12 13:32 - 2014-11-12 13:32 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2020-12-02 11:23 - 2007-07-22 16:20 - 000184832 _____ (hxxp://www.dimastr.com/redemption) C:\WINDOWS\SysWOW64\ProfMan.dll
2019-10-19 21:50 - 2019-10-19 21:50 - 002649600 _____ (Python Software Foundation) C:\WINDOWS\SysWOW64\python27.dll
2019-11-28 19:41 - 2011-12-30 21:52 - 000233472 _____ (Propellerhead Software AB) C:\WINDOWS\SysWOW64\REX Shared Library.dll
2019-11-28 10:07 - 2009-09-29 21:57 - 000758018 _____ C:\WINDOWS\SysWOW64\xvidcore.dll
2019-11-28 10:07 - 2008-12-04 22:46 - 000180224 _____ C:\WINDOWS\SysWOW64\xvidvfw.dll
2020-12-19 16:29 - 2020-12-19 16:29 - 000003812 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe
2020-12-19 16:29 - 2020-12-19 16:29 - 000003210 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2020-12-19 16:29 - 2020-12-19 16:29 - 000003206 _____ C:\WINDOWS\system32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2022-09-01 10:48 - 2022-09-01 02:03 - 002371072 _____ (Farbar) C:\Users\Marc\Desktop\FRST64 (1).exe
2019-11-28 15:31 - 2016-01-19 13:15 - 044520368 ____N (Native Instruments GmbH) C:\Users\Marc\Desktop\Kontakt 5.exe
2019-11-28 01:42 - 2019-11-28 01:42 - 000326656 _____ () C:\Users\Marc\Desktop\VOBMerge252.exe
2020-04-28 01:55 - 2020-04-28 01:56 - 000815655 _____ (Piston Software ) C:\Users\Marc\Downloads\BPMdetector_setup.exe
2020-04-23 10:19 - 2020-04-23 10:19 - 025967804 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.4_x64_setup(1).exe
2020-04-23 01:31 - 2020-04-23 01:31 - 025967804 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.4_x64_setup.exe
2020-04-25 09:11 - 2020-04-25 09:12 - 025981603 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.2.5_x64_setup.exe
2020-10-29 11:42 - 2020-10-29 11:43 - 026032700 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.3.0.1_x64_setup.exe
2022-01-02 11:51 - 2022-01-02 11:51 - 027590526 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.3.9_x64_setup.exe
2022-03-12 02:25 - 2022-03-12 02:25 - 030298985 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.1_x64_setup.exe
2022-05-24 13:21 - 2022-05-24 13:21 - 027862107 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.3_setup.exe
2022-05-24 13:20 - 2022-05-24 13:20 - 030108422 _____ (The qBittorrent project) C:\Users\Marc\Downloads\qbittorrent_4.4.3_x64_setup.exe
2020-10-10 19:31 - 2020-10-10 19:31 - 017822512 _____ (Corel Corporation) C:\Users\Marc\Downloads\SimpleDriverUpdaterSetup_ppc3.exe
2022-03-11 17:21 - 2022-03-11 17:21 - 003293848 _____ (Nicolas Coolman) C:\Users\Marc\Downloads\ZHPCleaner.exe
2022-01-01 15:04 - 2022-01-01 15:04 - 003478168 _____ (Nicolas Coolman) C:\Users\Marc\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================