Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par bewas (administrateur) sur DESKTOP-8N9CVQ2 (Micro-Star International Co., Ltd. MS-7B18) (13-10-2023 20:04:03)
Exécuté depuis C:\Users\bewas\Desktop\FRST64.exe
Profils chargés: bewas
Plate-forme: Microsoft Windows 10 Famille Langue unique Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Internet Download Manager\IDMan.exe ->) (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\82.0.1.0\crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer_Desktop.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\tv_w32.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\tv_x64.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe
(explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (YANDEX LLC -> Yandex) C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1214496 2014-04-17] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1371680 2014-04-17] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Users\bewas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [1752480 2023-10-06] (Opera Norway AS -> Opera Software)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [YandexDisk2] => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe [46175384 2023-10-06] (YANDEX LLC -> Yandex)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588592 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4186168 2020-02-11] (Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26440088 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [54944 2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3200 series: CNMLMB8.DLL (Pas de fichier)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3200 series XPS: C:\Windows\system32\CNMXLMB8.DLL [392192 2012-03-26] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [120200 2019-11-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-13] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {9FDD5887-77A0-4272-859F-CE676E270262} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {2E380F88-3CA6-44DE-8D6E-8E62BB9991B9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {D8FF6408-48A9-4F0C-BCF2-10BF7E587623} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {68B3CE98-CC12-4464-B318-73A6AD8913C4} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {65BC4112-DC02-4AF3-B633-95A5FE33F32A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C8132160-84BF-40E1-9F74-8734AAE8125D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9fddb847-3e4d-49ca-848d-04d04fb6d725" --version "6.16.10662" --silent
Task: {6679E3D0-A2EF-4BF8-9334-950140122296} - System32\Tasks\CCleanerSkipUAC - bewas => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {23B0C0BA-5076-480C-A8E7-8490CF36675D} - System32\Tasks\Computer Helper => "C:\ProgramData\577530\helper.exe" /startup (Pas de fichier)
Task: {C658F80B-9B2F-4AB0-8F81-D189F9F07626} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-21] (Google Inc -> Google LLC)
Task: {3A05AAEF-40A0-47CF-87AA-29ECC1606370} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-21] (Google Inc -> Google LLC)
Task: {F41024FD-1596-4C36-9D3E-68D169CEF39A} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {38A6CD9B-DA69-4D47-AD66-32097BF61AF2} - System32\Tasks\Meta\Messenger-WSB-Helper-S-1-5-21-2137434348-4085527620-4071002930-1001 => C:\Users\bewas\AppData\Local\Microsoft\WindowsApps\MessengerBetaHelper.exe [0 2023-05-25] () [symlink -> ]
Task: {B59272E8-51D9-4D37-9F4E-A372DAD9F864} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FB33F8A-64A2-4F01-BC46-07549327CC59} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {54FDA918-5217-4EE6-9E3F-835E16EC429F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3483D042-9375-4640-AE08-89F6A68457E9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {038DE6E4-780C-440A-9A02-8525D78923B9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {66ED8CAD-EA49-4FC5-9D26-486AF07125B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {01730EF4-E57C-4A94-8BAD-871BAB38D03C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0038C76C-1998-4CB1-A700-A3DC9C26C7A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {680DD97F-C521-4674-87ED-0AD2C6B4714C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BF7B99DC-4B8E-451B-A5C0-3509DA254FB2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-04-27] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {40829161-399F-4B76-AA06-FB625439ABD7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-04-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {14621467-FF1A-4ED1-AFFC-D52B2AA077EC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {71A7413D-FB8E-4FCA-A7AD-D7BC30C9D426} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F2AC8B0-A397-4D19-9911-799DED7AB870} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40630A3F-EF38-4331-83F7-886F75C45555} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B0324F0-256C-45DC-A043-D8746E9EE910} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFB9AD1C-F7C1-4D4D-A80F-43E49D9EF131} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B381CA9-FA02-471A-8E98-E259337DDD19} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CC91D7E3-00A9-46ED-9554-5FB20C76CC42} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1030D3AF-AB7C-4016-BFB7-58EEF5E539EE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {706F0981-69A0-408A-B7B0-835B859CBF5B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {5300B107-2223-4154-8B68-21D46230AD7B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2137434348-4085527620-4071002930-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {40AEBCB7-A197-4DED-B42A-C9B1603F1874} - System32\Tasks\Opera scheduled assistant Autoupdate 1574373758 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\bewas\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {F2C68581-71D2-4003-A1DC-9C8AE1A10C6E} - System32\Tasks\Opera scheduled assistant Autoupdate 1582741361 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\bewas\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DA501198-43F7-4491-BE92-FD1F8158162D} - System32\Tasks\Opera scheduled Autoupdate 1574373754 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
Task: {6D8BB77A-7F08-485B-8BD8-3590EE1335EA} - System32\Tasks\Opera scheduled Autoupdate 1574555973 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{5d70e8bf-087a-4223-89bd-0cb0f4e02d9e}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{763f57a3-c9f2-4eef-ab8f-b36c876d4c70}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-16]
Edge Session Restore: Default -> est activé.
Edge Extension: (Edge relevant text changes) - C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-13]
Edge Extension: (IDM Integration Module) - C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2023-08-13]
Edge HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
FireFox:
========
FF DefaultProfile: yck840jg.default
FF ProfilePath: C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\yck840jg.default [2023-08-22]
FF Extension: (Module d'Antidote) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\yck840jg.default\Extensions\antidote7_win_firefox_103@druide.com [2020-04-18] [] [non signé]
FF ProfilePath: C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release [2023-09-26]
FF DownloadDir: C:\Users\bewas\Desktop
FF Session Restore: Mozilla\Firefox\Profiles\gs09opvh.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\gs09opvh.default-release -> hxxps://wyylde.com
FF Extension: (Facebook Container) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\@contain-facebook.xpi [2022-11-29]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\firefox@ghostery.com.xpi [2023-04-06]
FF Extension: (Google Translator for Firefox) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\translator@zoli.bod.xpi [2019-11-22]
FF Extension: (Allow Right-Click) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{278b0ae0-da9d-4cc6-be81-5aa7f3202672}.xpi [2022-11-29]
FF Extension: (Temp Mail - E-mail temporaire disponible) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{2d97895d-fcd3-41ab-82e6-6a1d4d2243f6}.xpi [2019-12-03]
FF Extension: (Search by Image) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2022-03-16]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-04-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2019-11-24] []
FF HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\bewas\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\bewas\AppData\Roaming\IDM\idmmzcc5 [2020-03-27] [] [non signé]
FF HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default [2023-10-12]
CHR DownloadDir: C:\Users\bewas\Desktop
CHR Session Restore: Default -> est activé.
CHR Extension: (Easy Auto Refresh) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2023-08-13]
CHR Extension: (Google Traduction) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-08-13]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-24]
CHR Extension: (uBlock Origin) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-09-26]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Dark Reader) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-10-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-12]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-13]
CHR Extension: (Extension Google Keep pour Chrome) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2023-10-12]
CHR Extension: (UltraSurf Security, Privacy & Unblock VPN) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjnbclmflcpookeapghfhapeffmpodij [2023-08-13]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-10-12]
CHR Extension: (IDM Integration Module) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2023-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-13]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2014-04-17]
CHR HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKLM-x32\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2014-04-17]
Opera:
=======
OPR Profile: C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable [2023-10-11]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2023-03-15]
OPR Extension: (Rich Hints Agent) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-15]
OPR Extension: (Opera Wallet) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-03-15]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-25]
OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2023-03-15]
StartMenuInternet: (HKLM) OperaStable - C:\Users\bewas\AppData\Local\Programs\Opera\Launcher.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe [1088560 2021-12-15] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12859472 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncHelper.exe [3503544 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-22] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\OneDriveUpdaterService.exe [3840432 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; F:\games\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-13] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [105064 2018-08-10] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2022-02-26] (AOMEI International Network Limited -> )
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl0a12d449; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4C63B91F-E844-4E15-95D9-F7929ADEB783}\MpKslDrv.sys [263560 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-04-20] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S3 MpKslc850c4dd; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{24636507-10DD-4B7D-BEC9-15CA8E08587C}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-13 20:04 - 2023-10-13 20:04 - 000036756 _____ C:\Users\bewas\Desktop\FRST.txt
2023-10-12 22:53 - 2023-10-12 22:53 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-12 22:46 - 2023-10-12 22:46 - 000000000 ___HD C:\$WinREAgent
2023-10-12 21:56 - 2023-10-12 21:56 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 21:41 - 2023-10-13 20:03 - 000000000 ____D C:\Users\bewas\Desktop\fix
2023-10-12 21:05 - 2023-10-12 21:05 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-12 21:03 - 2023-10-12 21:03 - 000000000 ____D C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yandex.Disk
2023-10-12 20:58 - 2023-10-12 21:03 - 002106964 _____ C:\WINDOWS\Minidump\101223-10703-01.dmp
2023-10-12 20:58 - 2023-10-12 20:58 - 1391604205 _____ C:\WINDOWS\MEMORY.DMP
2023-09-22 00:28 - 2023-10-12 21:09 - 000001534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-09-17 21:46 - 2023-10-12 21:30 - 002383360 _____ (Farbar) C:\Users\bewas\Desktop\FRST64.exe
2023-09-17 21:37 - 2023-10-12 23:50 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-13 20:04 - 2023-08-21 23:43 - 000000000 ____D C:\FRST
2023-10-13 20:04 - 2020-11-06 19:19 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-13 20:04 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-13 20:04 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-13 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-13 20:04 - 2019-11-25 21:48 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-10-13 20:03 - 2019-11-22 00:03 - 000000000 ____D C:\Users\bewas\AppData\Local\D3DSCache
2023-10-13 20:02 - 2021-12-17 09:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-13 20:02 - 2019-12-25 07:19 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-13 20:02 - 2019-11-21 22:27 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-13 20:01 - 2019-11-22 21:20 - 000000000 ____D C:\Program Files\CCleaner
2023-10-13 20:01 - 2019-11-21 22:36 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-13 20:01 - 2019-11-21 22:26 - 000000000 ___RD C:\Users\bewas\OneDrive
2023-10-13 20:01 - 2019-11-21 22:22 - 000000000 ___SD C:\Users\bewas\AppData\Roaming\Microsoft\Credentials
2023-10-12 23:52 - 2020-03-27 07:20 - 000000000 ____D C:\Users\bewas\AppData\Roaming\DMCache
2023-10-12 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-12 23:50 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-12 23:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-12 23:48 - 2022-02-26 21:02 - 000000432 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2023-10-12 23:48 - 2022-02-26 21:02 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2023-10-12 23:48 - 2020-11-06 19:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-12 23:48 - 2020-11-06 19:10 - 000483248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-12 23:48 - 2020-11-06 19:10 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-12 23:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-12 23:48 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-12 23:47 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-12 23:47 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-12 23:47 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-10-12 23:47 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-12 23:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-12 23:46 - 2020-11-06 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-12 23:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-12 22:59 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-12 22:59 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-12 22:59 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-12 22:53 - 2020-11-06 19:11 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-12 21:58 - 2019-11-21 23:59 - 000000000 ____D C:\Users\bewas\AppData\Roaming\vlc
2023-10-12 21:52 - 2022-11-15 23:02 - 000000000 ____D C:\Program Files\RUXIM
2023-10-12 21:52 - 2019-11-22 00:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-12 21:49 - 2019-11-22 00:43 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-12 21:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-12 21:30 - 2020-04-03 17:06 - 000000000 ____D C:\Users\bewas\AppData\Local\TeamViewer
2023-10-12 21:14 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\OCR
2023-10-12 21:10 - 2019-11-21 22:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-12 21:09 - 2020-11-06 19:15 - 000004026 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1574555973
2023-10-12 21:09 - 2020-08-25 14:01 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-12 21:05 - 2019-11-24 05:18 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-12 21:03 - 2020-12-08 20:58 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-12 20:59 - 2019-12-25 07:21 - 000000000 ____D C:\Users\bewas\AppData\Local\Steam
2023-10-11 22:35 - 2020-11-06 19:15 - 000004254 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582741361
2023-10-11 22:33 - 2021-12-12 00:26 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2137434348-4085527620-4071002930-1001
2023-10-11 22:33 - 2021-09-21 21:38 - 000002126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001968 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001968 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001956 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-10-11 22:33 - 2021-06-11 21:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-11 22:33 - 2020-11-06 19:15 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-11 22:33 - 2020-01-31 00:27 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-26 21:43 - 2022-09-20 23:03 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-09-22 00:30 - 2022-06-22 22:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-09-22 00:30 - 2022-06-22 22:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-22 00:27 - 2023-08-02 01:02 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-09-22 00:27 - 2020-11-06 19:15 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-09-17 22:03 - 2022-09-20 23:03 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-09-17 22:03 - 2020-11-06 19:15 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-17 21:45 - 2020-11-06 19:15 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-17 21:45 - 2020-11-06 19:15 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-17 21:38 - 2019-11-21 22:37 - 000000000 ____D C:\Users\bewas\AppData\Local\NVIDIA
==================== Fichiers à la racine de certains dossiers ========
2019-11-24 03:50 - 2019-11-24 03:50 - 000000128 ____H () C:\Users\bewas\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2019-11-26 22:14 - 2019-11-26 22:14 - 000000000 _____ () C:\Users\bewas\AppData\Local\oobelibMkey.log
2023-08-10 23:17 - 2023-08-10 23:17 - 000000017 _____ () C:\Users\bewas\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par bewas (administrateur) sur DESKTOP-8N9CVQ2 (Micro-Star International Co., Ltd. MS-7B18) (13-10-2023 20:04:03)
Exécuté depuis C:\Users\bewas\Desktop\FRST64.exe
Profils chargés: bewas
Plate-forme: Microsoft Windows 10 Famille Langue unique Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Internet Download Manager\IDMan.exe ->) (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\82.0.1.0\crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer_Desktop.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\tv_w32.exe
(C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\tv_x64.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe
(explorer.exe ->) (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (YANDEX LLC -> Yandex) C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Users\bewas\AppData\Local\Temp\TeamViewer\TeamViewer.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1214496 2014-04-17] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1371680 2014-04-17] (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Users\bewas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [1752480 2023-10-06] (Opera Norway AS -> Opera Software)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [YandexDisk2] => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe [46175384 2023-10-06] (YANDEX LLC -> Yandex)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588592 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4186168 2020-02-11] (Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26440088 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\82.0.1.0\GoogleDriveFS.exe [55189280 2023-10-11] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [54944 2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3200 series: CNMLMB8.DLL (Pas de fichier)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3200 series XPS: C:\Windows\system32\CNMXLMB8.DLL [392192 2012-03-26] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [120200 2019-11-25] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-13] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {9FDD5887-77A0-4272-859F-CE676E270262} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {2E380F88-3CA6-44DE-8D6E-8E62BB9991B9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {D8FF6408-48A9-4F0C-BCF2-10BF7E587623} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {68B3CE98-CC12-4464-B318-73A6AD8913C4} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {65BC4112-DC02-4AF3-B633-95A5FE33F32A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C8132160-84BF-40E1-9F74-8734AAE8125D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9fddb847-3e4d-49ca-848d-04d04fb6d725" --version "6.16.10662" --silent
Task: {6679E3D0-A2EF-4BF8-9334-950140122296} - System32\Tasks\CCleanerSkipUAC - bewas => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {23B0C0BA-5076-480C-A8E7-8490CF36675D} - System32\Tasks\Computer Helper => "C:\ProgramData\577530\helper.exe" /startup (Pas de fichier)
Task: {C658F80B-9B2F-4AB0-8F81-D189F9F07626} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-21] (Google Inc -> Google LLC)
Task: {3A05AAEF-40A0-47CF-87AA-29ECC1606370} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-21] (Google Inc -> Google LLC)
Task: {F41024FD-1596-4C36-9D3E-68D169CEF39A} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {38A6CD9B-DA69-4D47-AD66-32097BF61AF2} - System32\Tasks\Meta\Messenger-WSB-Helper-S-1-5-21-2137434348-4085527620-4071002930-1001 => C:\Users\bewas\AppData\Local\Microsoft\WindowsApps\MessengerBetaHelper.exe [0 2023-05-25] () [symlink -> ]
Task: {B59272E8-51D9-4D37-9F4E-A372DAD9F864} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FB33F8A-64A2-4F01-BC46-07549327CC59} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {54FDA918-5217-4EE6-9E3F-835E16EC429F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3483D042-9375-4640-AE08-89F6A68457E9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {038DE6E4-780C-440A-9A02-8525D78923B9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {66ED8CAD-EA49-4FC5-9D26-486AF07125B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {01730EF4-E57C-4A94-8BAD-871BAB38D03C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0038C76C-1998-4CB1-A700-A3DC9C26C7A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {680DD97F-C521-4674-87ED-0AD2C6B4714C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BF7B99DC-4B8E-451B-A5C0-3509DA254FB2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-04-27] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {40829161-399F-4B76-AA06-FB625439ABD7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-04-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {14621467-FF1A-4ED1-AFFC-D52B2AA077EC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {71A7413D-FB8E-4FCA-A7AD-D7BC30C9D426} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F2AC8B0-A397-4D19-9911-799DED7AB870} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40630A3F-EF38-4331-83F7-886F75C45555} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B0324F0-256C-45DC-A043-D8746E9EE910} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFB9AD1C-F7C1-4D4D-A80F-43E49D9EF131} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B381CA9-FA02-471A-8E98-E259337DDD19} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CC91D7E3-00A9-46ED-9554-5FB20C76CC42} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1030D3AF-AB7C-4016-BFB7-58EEF5E539EE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {706F0981-69A0-408A-B7B0-835B859CBF5B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {5300B107-2223-4154-8B68-21D46230AD7B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2137434348-4085527620-4071002930-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {40AEBCB7-A197-4DED-B42A-C9B1603F1874} - System32\Tasks\Opera scheduled assistant Autoupdate 1574373758 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\bewas\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {F2C68581-71D2-4003-A1DC-9C8AE1A10C6E} - System32\Tasks\Opera scheduled assistant Autoupdate 1582741361 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\bewas\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DA501198-43F7-4491-BE92-FD1F8158162D} - System32\Tasks\Opera scheduled Autoupdate 1574373754 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
Task: {6D8BB77A-7F08-485B-8BD8-3590EE1335EA} - System32\Tasks\Opera scheduled Autoupdate 1574555973 => C:\Users\bewas\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{5d70e8bf-087a-4223-89bd-0cb0f4e02d9e}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{763f57a3-c9f2-4eef-ab8f-b36c876d4c70}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-16]
Edge Session Restore: Default -> est activé.
Edge Extension: (Edge relevant text changes) - C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-13]
Edge Extension: (IDM Integration Module) - C:\Users\bewas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2023-08-13]
Edge HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
FireFox:
========
FF DefaultProfile: yck840jg.default
FF ProfilePath: C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\yck840jg.default [2023-08-22]
FF Extension: (Module d'Antidote) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\yck840jg.default\Extensions\antidote7_win_firefox_103@druide.com [2020-04-18] [] [non signé]
FF ProfilePath: C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release [2023-09-26]
FF DownloadDir: C:\Users\bewas\Desktop
FF Session Restore: Mozilla\Firefox\Profiles\gs09opvh.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\gs09opvh.default-release -> hxxps://wyylde.com
FF Extension: (Facebook Container) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\@contain-facebook.xpi [2022-11-29]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\firefox@ghostery.com.xpi [2023-04-06]
FF Extension: (Google Translator for Firefox) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\translator@zoli.bod.xpi [2019-11-22]
FF Extension: (Allow Right-Click) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{278b0ae0-da9d-4cc6-be81-5aa7f3202672}.xpi [2022-11-29]
FF Extension: (Temp Mail - E-mail temporaire disponible) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{2d97895d-fcd3-41ab-82e6-6a1d4d2243f6}.xpi [2019-12-03]
FF Extension: (Search by Image) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2022-03-16]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Roaming\Mozilla\Firefox\Profiles\gs09opvh.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-04-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2019-11-24] []
FF HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\bewas\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\bewas\AppData\Roaming\IDM\idmmzcc5 [2020-03-27] [] [non signé]
FF HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default [2023-10-12]
CHR DownloadDir: C:\Users\bewas\Desktop
CHR Session Restore: Default -> est activé.
CHR Extension: (Easy Auto Refresh) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2023-08-13]
CHR Extension: (Google Traduction) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-08-13]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-24]
CHR Extension: (uBlock Origin) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-09-26]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Dark Reader) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2023-10-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-12]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-13]
CHR Extension: (Extension Google Keep pour Chrome) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2023-10-12]
CHR Extension: (UltraSurf Security, Privacy & Unblock VPN) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjnbclmflcpookeapghfhapeffmpodij [2023-08-13]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-10-12]
CHR Extension: (IDM Integration Module) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2023-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bewas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-13]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2014-04-17]
CHR HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKLM-x32\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2014-04-17]
Opera:
=======
OPR Profile: C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable [2023-10-11]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2023-03-15]
OPR Extension: (Rich Hints Agent) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-15]
OPR Extension: (Opera Wallet) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-03-15]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-25]
OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\bewas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2023-03-15]
StartMenuInternet: (HKLM) OperaStable - C:\Users\bewas\AppData\Local\Programs\Opera\Launcher.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe [1088560 2021-12-15] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12859472 2023-09-27] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncHelper.exe [3503544 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-22] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\OneDriveUpdaterService.exe [3840432 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; F:\games\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-13] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [105064 2018-08-10] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2022-02-26] (AOMEI International Network Limited -> )
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl0a12d449; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4C63B91F-E844-4E15-95D9-F7929ADEB783}\MpKslDrv.sys [263560 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-04-20] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S3 MpKslc850c4dd; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{24636507-10DD-4B7D-BEC9-15CA8E08587C}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-13 20:04 - 2023-10-13 20:04 - 000036756 _____ C:\Users\bewas\Desktop\FRST.txt
2023-10-12 22:53 - 2023-10-12 22:53 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-12 22:46 - 2023-10-12 22:46 - 000000000 ___HD C:\$WinREAgent
2023-10-12 21:56 - 2023-10-12 21:56 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 21:41 - 2023-10-13 20:03 - 000000000 ____D C:\Users\bewas\Desktop\fix
2023-10-12 21:05 - 2023-10-12 21:05 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-12 21:03 - 2023-10-12 21:03 - 000000000 ____D C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yandex.Disk
2023-10-12 20:58 - 2023-10-12 21:03 - 002106964 _____ C:\WINDOWS\Minidump\101223-10703-01.dmp
2023-10-12 20:58 - 2023-10-12 20:58 - 1391604205 _____ C:\WINDOWS\MEMORY.DMP
2023-09-22 00:28 - 2023-10-12 21:09 - 000001534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-09-17 21:46 - 2023-10-12 21:30 - 002383360 _____ (Farbar) C:\Users\bewas\Desktop\FRST64.exe
2023-09-17 21:37 - 2023-10-12 23:50 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-13 20:04 - 2023-08-21 23:43 - 000000000 ____D C:\FRST
2023-10-13 20:04 - 2020-11-06 19:19 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-13 20:04 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-13 20:04 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-13 20:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-13 20:04 - 2019-11-25 21:48 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-10-13 20:03 - 2019-11-22 00:03 - 000000000 ____D C:\Users\bewas\AppData\Local\D3DSCache
2023-10-13 20:02 - 2021-12-17 09:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-13 20:02 - 2019-12-25 07:19 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-13 20:02 - 2019-11-21 22:27 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-13 20:01 - 2019-11-22 21:20 - 000000000 ____D C:\Program Files\CCleaner
2023-10-13 20:01 - 2019-11-21 22:36 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-13 20:01 - 2019-11-21 22:26 - 000000000 ___RD C:\Users\bewas\OneDrive
2023-10-13 20:01 - 2019-11-21 22:22 - 000000000 ___SD C:\Users\bewas\AppData\Roaming\Microsoft\Credentials
2023-10-12 23:52 - 2020-03-27 07:20 - 000000000 ____D C:\Users\bewas\AppData\Roaming\DMCache
2023-10-12 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-12 23:50 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-12 23:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-12 23:48 - 2022-02-26 21:02 - 000000432 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2023-10-12 23:48 - 2022-02-26 21:02 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2023-10-12 23:48 - 2020-11-06 19:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-12 23:48 - 2020-11-06 19:10 - 000483248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-12 23:48 - 2020-11-06 19:10 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-12 23:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-12 23:48 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-12 23:47 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-12 23:47 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-12 23:47 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-10-12 23:47 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-12 23:47 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-12 23:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-12 23:46 - 2020-11-06 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-12 23:00 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-12 22:59 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-12 22:59 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-12 22:59 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-12 22:53 - 2020-11-06 19:11 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-12 21:58 - 2019-11-21 23:59 - 000000000 ____D C:\Users\bewas\AppData\Roaming\vlc
2023-10-12 21:52 - 2022-11-15 23:02 - 000000000 ____D C:\Program Files\RUXIM
2023-10-12 21:52 - 2019-11-22 00:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-12 21:49 - 2019-11-22 00:43 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-12 21:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-12 21:30 - 2020-04-03 17:06 - 000000000 ____D C:\Users\bewas\AppData\Local\TeamViewer
2023-10-12 21:14 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\OCR
2023-10-12 21:10 - 2019-11-21 22:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-12 21:09 - 2020-11-06 19:15 - 000004026 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1574555973
2023-10-12 21:09 - 2020-08-25 14:01 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-12 21:05 - 2019-11-24 05:18 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-12 21:03 - 2020-12-08 20:58 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-12 20:59 - 2019-12-25 07:21 - 000000000 ____D C:\Users\bewas\AppData\Local\Steam
2023-10-11 22:35 - 2020-11-06 19:15 - 000004254 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582741361
2023-10-11 22:33 - 2021-12-12 00:26 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2137434348-4085527620-4071002930-1001
2023-10-11 22:33 - 2021-09-21 21:38 - 000002126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001968 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001968 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-10-11 22:33 - 2021-09-21 21:38 - 000001956 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-10-11 22:33 - 2021-06-11 21:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-11 22:33 - 2020-11-06 19:15 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-11 22:33 - 2020-01-31 00:27 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-26 21:43 - 2022-09-20 23:03 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-09-22 00:30 - 2022-06-22 22:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-09-22 00:30 - 2022-06-22 22:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-22 00:27 - 2023-08-02 01:02 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-09-22 00:27 - 2020-11-06 19:15 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-09-17 22:03 - 2022-09-20 23:03 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-09-17 22:03 - 2020-11-06 19:15 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-17 21:45 - 2020-11-06 19:15 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-09-17 21:45 - 2020-11-06 19:15 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-09-17 21:38 - 2019-11-21 22:37 - 000000000 ____D C:\Users\bewas\AppData\Local\NVIDIA
==================== Fichiers à la racine de certains dossiers ========
2019-11-24 03:50 - 2019-11-24 03:50 - 000000128 ____H () C:\Users\bewas\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2019-11-26 22:14 - 2019-11-26 22:14 - 000000000 _____ () C:\Users\bewas\AppData\Local\oobelibMkey.log
2023-08-10 23:17 - 2023-08-10 23:17 - 000000017 _____ () C:\Users\bewas\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================