Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-12-2023
Exécuté par baldi (administrateur) sur PC-DE-NICO (Acer Predator PT515-51) (04-12-2023 12:05:36)
Exécuté depuis C:\Users\baldi\Downloads\FRST64.exe
Profils chargés: baldi
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.2715 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\84.0.10.0\crashpad_handler.exe
(C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe <7>
(C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\84.0.11.0\crashpad_handler.exe
(C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe <7>
(C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.exe ->) (Merci.App (J2S3 SAS) -> MerciApp.Tools.Office) C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.Tools.Office.exe
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(EB742617-4934-4951-8B93-E211D04E5A38 -> Rivet Networks) C:\Program Files\WindowsApps\rivetnetworks.killercontrolcenter_2.4.3337.0_x64__rh07ty8m5nkag\KillerControlCenter_v2\KillerControlCenter.exe
(explorer.exe ->) (203A666F-34C9-4B13-BE7D-682C35927E0B -> Steven Mayall) C:\Program Files\WindowsApps\50072StevenMayall.MusicBee_3.5.8447.0_x86__kcr266et74avj\win32\MusicBee.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <45>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSvc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Merci.App (J2S3 SAS) -> MerciApp) C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Windows\ThunderboltService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_34f570cbe7f3d6c7\RstMwService.exe
(services.exe ->) (MDL Forum, mod by Ratiborus) [Fichier non signé] C:\ProgramData\KMSAuto\bin\KMSSS.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5d1cda0f460aae80\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSysSvc64.exe
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.5237.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2347.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.5237.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (KMSpico ByELDI LTD -> @ByELDI) C:\Program Files\KMSpico\KMSUPD.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSvc64.exe [1645672 2020-06-22] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1211696 2020-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [MicrosoftEdgeAutoLaunch_CB9D8B6F44EC305A4954072973EFCCEF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [Gaijin.Net Updater] => C:\Users\baldi\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3065544 2023-10-06] (Gaijin Network Ltd -> Gaijin)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [MerciApp] => C:\Users\baldi\AppData\Local\MerciApp\MerciApp.exe [308888 2023-12-04] (Merci.App (J2S3 SAS) -> MerciApp)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {58685155-524B-4D50-8567-16AFA298374B} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Fichier non signé]
Task: {9402CC5D-A4E7-4AC5-B538-970BB122D79A} - System32\Tasks\KMSpico Automatic Update Scheduler => C:\Program Files\KMSpico\KMSUPD.exe [89272 2021-02-11] (KMSpico ByELDI LTD -> @ByELDI)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {0AF49748-863B-4A34-AA7C-083B448A233E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BFE5E474-3DF2-478E-BCB5-A40E1D9C0A65} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2488001E-70D8-4D82-B417-3D52C10D220C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3EB09EBF-29BA-4631-AE2E-4C73B3C38FD9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {178BB009-244E-4CD4-80FB-4CECD6B2C78C} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {B4E652EB-C996-40AF-B6CC-46563ED1AD18} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé] <==== ATTENTION
Task: {61A9EF55-AD77-4756-B66E-428BB9BD91CA} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2019-10-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{6025C154-D9AD-4413-BE45-F9EE2B27CAEB}] => hxxp://127.0.0.1:86/ <==== ATTENTION
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{7057018e-2fee-4ae6-a3f3-09475b0feee9}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{e68091aa-e705-4500-8045-6dff3766461c}: [DhcpNameServer] 172.19.128.24
ManualProxies: 0hxxp://127.0.0.1:86/ <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-01]
Edge Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-30]
Edge Extension: (Edge relevant text changes) - C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-30]
FireFox:
========
FF DefaultProfile: oxul7791.default
FF ProfilePath: C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default [2023-12-01]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default\Extensions\abb-acer@amazon.com.xpi [2023-11-30] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2023-11-30]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default [2023-12-03]
CHR HomePage: backup default -> hxxps://google.com/
CHR StartupUrls: backup default -> "hxxp://search.conduit.com/?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPBC8D0713-F241-4A5D-8250-A8168C3F734A&SSPV=","hxxp://www.google.com"
CHR Extension: (ColorZilla) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-11-30]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2023-11-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-30]
CHR Extension: (Meta Pixel Helper) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2023-11-30]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2023-12-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-30]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2023-11-30]
CHR Extension: (WhatFont) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2023-11-30]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2023-11-30]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-30]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-11-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-30]
CHR Profile: C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default [2023-12-04]
CHR HomePage: Default -> hxxps://google.com/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPBC8D0713-F241-4A5D-8250-A8168C3F734A&SSPV=","hxxp://www.google.com"
CHR Extension: (ColorZilla) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-12-03]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2023-12-03]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-12-03]
CHR Extension: (Meta Pixel Helper) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2023-12-03]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2023-12-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2023-12-03]
CHR Extension: (WhatFont) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2023-12-03]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2023-12-03]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-12-03]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-12-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-03]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
"MpKsl5ff8c8d7" => service n'a pas pu être déverrouillé. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\MpKsl5ff8c8d7 => \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C2BF608C-1C56-4308-89B5-41F6309FAB2D}\MpKslDrv.sys <==== ATTENTION (Rootkit!/Service verrouillé)
"MpKslcf125a50" => service n'a pas pu être déverrouillé. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\MpKslcf125a50 => \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EC536725-46A6-47F3-852B-BBD0FEDAB4AD}\MpKslDrv.sys <==== ATTENTION (Rootkit!/Service verrouillé)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300352 2019-02-21] (Acer Incorporated -> Acer Incorporated)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-11-30] (EasyAntiCheat Oy -> Epic Games, Inc)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73480 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1775392 2021-04-02] (Rivet Networks LLC -> Rivet Networks)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2663208 2021-04-02] (Rivet Networks LLC -> Rivet Networks)
R2 KMSEmulator; C:\ProgramData\KMSAuto\bin\KMSSS.exe [301056 2015-07-24] (MDL Forum, mod by Ratiborus) [Fichier non signé]
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [73496 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_5d1cda0f460aae80\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2018-12-17] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [73504 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [73504 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
R3 e3k25cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e3k25cx21x64.inf_amd64_c420f06bc218c993\e3k25cx21x64.sys [742232 2023-09-02] (Realtek Semiconductor Corp. -> Realtek)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [184400 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2018-10-05] (Logitech -> Logitech Inc.)
S3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [55624 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [56656 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [45904 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-12-11] (Logitech Inc -> Logitech)
R3 MpKsl91d77cbf; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E25DAEEC-2B60-4476-9190-F091CFC532DE}\MpKslDrv.sys [263560 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [238720 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [45752 2021-04-06] (SteelSeries ApS -> SteelSeries ApS)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47760 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 WinDivert1.1; C:\ProgramData\KMSAuto\bin\driver\x64WDV\WinDivert.sys [35376 2013-12-03] (Nemea Mjukvaruutveckling AB -> Basil Projects)
S2 iocbios2; \??\C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-04 12:05 - 2023-12-04 12:06 - 000027583 _____ C:\Users\baldi\Downloads\FRST.txt
2023-12-04 12:04 - 2023-12-04 12:05 - 000000000 ____D C:\FRST
2023-12-04 12:04 - 2023-12-04 12:04 - 002384384 _____ (Farbar) C:\Users\baldi\Downloads\FRST64.exe
2023-12-04 11:41 - 2023-12-04 11:41 - 003119716 _____ C:\Users\baldi\Downloads\Thermocollage des poches sur les gelprotech ski. Ces poches contiendront nos plaques de gel..mp4
2023-12-04 11:02 - 2023-12-04 11:02 - 001160197 _____ C:\Users\baldi\Downloads\Noël au faubourg 2023 - A3 Impression.pdf
2023-12-04 10:48 - 2023-12-04 10:48 - 000002199 _____ C:\Users\baldi\Desktop\MerciApp.lnk
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MerciApp
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\SquirrelClowdTemp
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\MerciAppData
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\MerciApp
2023-12-04 10:03 - 2023-12-04 10:03 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-04 10:03 - 2023-12-04 10:03 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-03 18:39 - 2023-12-03 18:39 - 000298285 _____ C:\Users\baldi\Desktop\ZHPDiag.txt
2023-12-03 18:22 - 2023-12-03 18:22 - 000000869 _____ C:\Users\baldi\Desktop\ZHPDiag.lnk
2023-12-03 18:15 - 2023-12-03 18:16 - 003316384 _____ (Nicolas Coolman) C:\Users\baldi\Downloads\ZHPDiag3.exe
2023-12-03 17:55 - 2023-12-03 17:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-12-01 19:03 - 2023-12-01 19:03 - 000088845 _____ C:\Users\baldi\Downloads\🍺SEO lartdelabiere.fr - Copie de Données des produits.csv
2023-12-01 18:26 - 2023-12-03 18:39 - 000000000 ____D C:\Users\baldi\AppData\Roaming\ZHP
2023-12-01 18:25 - 2023-12-01 18:25 - 003515040 _____ (Nicolas Coolman) C:\Users\baldi\Downloads\ZHPSuite.exe
2023-12-01 18:23 - 2023-12-01 18:26 - 000000000 ____D C:\Users\baldi\AppData\Local\ZHP
2023-12-01 17:34 - 2023-12-01 17:34 - 000000000 ____D C:\Users\baldi\AppData\Local\Microsoft_Corporation
2023-12-01 11:59 - 2023-12-04 11:00 - 000000000 ____D C:\Users\baldi\AppData\Roaming\vlc
2023-12-01 11:58 - 2023-12-01 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-12-01 11:58 - 2023-12-01 11:58 - 000000000 ____D C:\Program Files\VideoLAN
2023-11-30 19:28 - 2023-11-30 19:29 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-11-30 19:28 - 2023-11-30 19:28 - 000000000 ____D C:\Users\baldi\AppData\Roaming\EasyAntiCheat
2023-11-30 19:24 - 2023-11-30 19:24 - 000000000 ____D C:\Users\baldi\AppData\Roaming\NVIDIA
2023-11-30 19:24 - 2023-11-30 19:24 - 000000000 ____D C:\ProgramData\WarThunder
2023-11-30 18:49 - 2023-11-30 18:49 - 000005404 _____ C:\WINDOWS\system32\Tasks\Software Update Application
2023-11-30 16:49 - 2023-11-30 17:07 - 601289814 _____ C:\Users\baldi\Downloads\Microsoft Office 2019 Pro Plus v2110 Build 14527.20226 [FileCR].zip
2023-11-30 16:31 - 2023-11-30 16:31 - 000003764 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{577AF7DD-BBF0-459B-8F6E-E92AECF40976}
2023-11-30 16:31 - 2023-11-30 16:31 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{EC35AD98-C96C-4868-A723-510D2BC82C75}
2023-11-30 16:27 - 2023-11-30 17:06 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\MMC
2023-11-30 16:05 - 2023-11-30 16:06 - 000000000 ____D C:\Users\baldi\AppData\Local\Steam
2023-11-30 16:04 - 2023-11-30 17:26 - 000000000 ____D C:\Program Files (x86)\Steam
2023-11-30 16:04 - 2023-11-30 16:04 - 000001040 _____ C:\Users\Public\Desktop\Steam.lnk
2023-11-30 16:04 - 2023-11-30 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-11-30 15:06 - 2023-11-30 15:06 - 000003466 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2023-11-30 15:06 - 2010-12-06 03:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-11-30 15:01 - 2023-11-30 15:01 - 000000000 ____D C:\ProgramData\KMSAuto
2023-11-30 15:00 - 2023-11-30 15:04 - 000000000 ____D C:\Users\baldi\AppData\Local\MSfree Inc
2023-11-30 14:58 - 2023-11-30 16:29 - 000000000 ____D C:\Program Files\KMSpico
2023-11-30 14:58 - 2023-11-30 15:06 - 000003782 _____ C:\WINDOWS\system32\Tasks\Optimize Thumbnail Cache
2023-11-30 14:58 - 2023-11-30 15:06 - 000003334 _____ C:\WINDOWS\system32\Tasks\KMSpico Automatic Update Scheduler
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\AppData\Local\NVIDIA
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\AppData\Local\CEF
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\ansel
2023-11-30 14:02 - 2023-12-01 18:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-30 14:02 - 2023-11-30 14:02 - 000000000 ____D C:\Users\baldi\AppData\Roaming\uk.co.screamingfrog.seospider.ui.id
2023-11-30 14:02 - 2023-11-30 14:02 - 000000000 ____D C:\ProgramData\Mozilla
2023-11-30 14:01 - 2023-11-30 19:27 - 000000000 ____D C:\Users\baldi\.ScreamingFrogSEOSpider
2023-11-30 14:01 - 2023-11-30 14:01 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Frog SEO Spider.lnk
2023-11-30 14:01 - 2023-11-30 14:01 - 000000000 ____D C:\Program Files (x86)\Screaming Frog SEO Spider
2023-11-30 14:00 - 2022-01-03 15:30 - 000005845 _____ C:\Users\baldi\Downloads\Screaming Frog Keygen (1)
2023-11-30 13:56 - 2023-11-30 13:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-30 13:56 - 2023-11-30 13:56 - 000000000 ____D C:\ProgramData\SplitMediaLabs
2023-11-30 13:49 - 2023-11-30 13:49 - 000000000 ____D C:\Users\baldi\AppData\Local\Comms
2023-11-30 13:40 - 2023-12-01 18:48 - 000000000 ____D C:\Data
2023-11-30 13:34 - 2023-11-30 13:35 - 000000000 ____D C:\Users\baldi\AppData\Local\Publishers
2023-11-30 13:29 - 2023-11-30 19:40 - 000000000 ____D C:\Users\baldi\AppData\Local\WarThunder
2023-11-30 13:29 - 2023-11-30 13:29 - 000002033 _____ C:\Users\baldi\Desktop\WarThunder.lnk
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\Documents\My Games
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\AppData\Local\Gaijin
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\ProgramData\Gaijin
2023-11-30 13:25 - 2023-12-04 10:01 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-30 13:23 - 2023-11-30 13:23 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2023-11-30 13:22 - 2023-11-30 13:22 - 000000000 ____D C:\Users\baldi\AppData\Local\OEM
2023-11-30 13:21 - 2023-12-03 17:44 - 000000000 ____D C:\Users\baldi\AppData\Local\D3DSCache
2023-11-30 13:21 - 2023-11-30 13:21 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2023-11-30 13:21 - 2023-11-30 13:21 - 000000000 ____D C:\Users\baldi\AppData\Local\CareCenter
2023-11-30 13:20 - 2023-11-30 13:25 - 000000000 ____D C:\Users\baldi\AppData\Local\Google
2023-11-30 13:20 - 2023-11-30 13:25 - 000000000 ____D C:\Program Files\Google
2023-11-30 13:20 - 2023-11-30 13:20 - 000002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-30 13:19 - 2023-12-04 11:08 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-30 13:19 - 2023-12-01 18:17 - 000000000 ____D C:\Users\baldi\AppData\LocalLow\Mozilla
2023-11-30 13:19 - 2023-11-30 19:24 - 000000000 ____D C:\Users\baldi\AppData\Local\NVIDIA Corporation
2023-11-30 13:19 - 2023-11-30 16:02 - 000000000 ____D C:\Users\baldi\AppData\Local\PlaceholderTileLogoFolder
2023-11-30 13:19 - 2023-11-30 13:51 - 000000000 ___RD C:\Users\baldi\OneDrive
2023-11-30 13:19 - 2023-11-30 13:19 - 000001799 _____ C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudio - Contrôle audio du haut-parleur avec son 3D Nx.lnk
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Mozilla
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Local\VirtualStore
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Local\Mozilla
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2023-11-30 13:18 - 2023-11-30 13:18 - 000000000 ____D C:\Users\baldi\AppData\LocalLow\NVIDIA
2023-11-30 13:17 - 2023-12-04 10:03 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-30 13:17 - 2023-11-30 16:03 - 000000000 ____D C:\Users\baldi\AppData\Local\Packages
2023-11-30 13:17 - 2023-11-30 13:47 - 000000000 ____D C:\Users\baldi\AppData\Local\ConnectedDevicesPlatform
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Crypto
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Vault
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Adobe
2023-11-30 13:16 - 2023-11-30 13:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Oem
2023-11-30 13:16 - 2023-11-30 13:16 - 000000000 ____D C:\Users\Default\AppData\Local\OEM
2023-11-30 13:16 - 2023-11-30 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer
2023-11-30 13:15 - 2023-12-04 12:06 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Credentials
2023-11-30 13:15 - 2023-12-01 17:33 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows
2023-11-30 13:15 - 2023-12-01 13:53 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\SystemCertificates
2023-11-30 13:15 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi
2023-11-30 13:15 - 2023-11-30 14:03 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Spelling
2023-11-30 13:15 - 2023-11-30 13:15 - 000000020 ___SH C:\Users\baldi\ntuser.ini
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Voisinage réseau
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Voisinage d'impression
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Modèles
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Mes documents
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Menu Démarrer
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Mes vidéos
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Mes images
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Ma musique
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\AppData\Local\Historique
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Protect
2023-11-30 13:15 - 2023-11-30 13:08 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Network
2023-11-30 13:08 - 2023-12-04 09:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-30 13:08 - 2023-11-30 16:03 - 000000000 ____D C:\ProgramData\Packages
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Mes images
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Voisinage réseau
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Modèles
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Mes documents
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Menu Démarrer
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Mes images
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Modèles
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Menu Démarrer
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Bureau
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Program Files\Fichiers communs
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Documents and Settings
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\oem
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2023-11-30 13:02 - 2023-12-04 09:58 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-30 13:02 - 2023-12-01 11:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\RivetNetworks
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\ProgramData\RivetNetworks
2023-11-30 13:01 - 2023-12-04 09:58 - 000012288 ___SH C:\DumpStack.log.tmp
2023-11-30 13:01 - 2023-12-04 09:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-30 13:01 - 2023-11-30 13:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-30 13:01 - 2023-11-30 13:06 - 000000000 ___HD C:\Intel
2023-11-30 13:01 - 2023-11-30 13:01 - 000295408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-30 13:01 - 2023-11-30 13:01 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2023-11-30 13:01 - 2023-11-30 13:01 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2023-11-30 12:43 - 2023-11-30 13:32 - 000000000 ___HD C:\OEM
2023-11-30 12:41 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\Panther
2023-11-30 12:40 - 2023-11-30 12:40 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-11-30 12:35 - 2023-11-30 12:35 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-11-30 12:34 - 2023-11-30 12:34 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-11-30 12:34 - 2023-11-30 12:34 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\addins
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files\MSBuild
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-11-30 12:27 - 2023-11-30 12:27 - 000000000 ____D C:\WINDOWS\Firmware
2023-11-30 12:27 - 2023-11-30 12:27 - 000000000 ____D C:\Program Files\SteelSeries
2023-11-30 12:23 - 2023-11-30 12:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2023-11-30 12:06 - 2023-11-30 12:43 - 000000000 ___HD C:\$SysReset
2023-11-30 09:48 - 2023-12-01 12:00 - 000000000 ____D C:\Users\baldi\Downloads\Vidéos
2023-11-28 17:21 - 2023-11-30 13:42 - 000000000 ____D C:\Users\baldi\Downloads\Qualibail
2023-11-28 17:20 - 2023-11-28 17:20 - 927283212 _____ C:\Users\baldi\Downloads\Film Qualibail.mp4
2023-11-14 18:39 - 2023-11-10 03:07 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-11-14 17:26 - 2023-11-10 12:38 - 001487368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001226872 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-11-14 17:26 - 2023-11-10 12:34 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 001198200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000957960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000669712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000504840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 002171000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 001624712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 000997512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 000810104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-11-14 17:26 - 2023-11-10 12:33 - 000774280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 015095416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 012375160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 006462600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 005862520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 003619960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-11-14 17:26 - 2023-11-10 12:32 - 000459384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-11-14 17:26 - 2023-11-10 12:31 - 007866472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-11-14 17:26 - 2023-11-10 12:30 - 006745880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-11-14 17:26 - 2023-11-10 03:07 - 000113883 _____ C:\WINDOWS\system32\nvinfo.pb
2023-11-14 17:24 - 2023-03-10 10:35 - 000030704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvswcfilter.sys
2023-11-14 17:24 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-04 12:05 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-04 11:28 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-04 10:03 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-04 09:58 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-03 17:38 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-01 18:21 - 2019-06-17 20:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-01 18:16 - 2019-06-17 20:58 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-12-01 15:07 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-01 14:01 - 2019-06-17 20:57 - 000000000 ____D C:\Program Files\Acer
2023-12-01 14:01 - 2019-06-17 20:55 - 000000000 ____D C:\ProgramData\OEM
2023-12-01 11:26 - 2022-06-09 21:11 - 000190017 _____ C:\Users\baldi\Downloads\Codes Nico.xlsx
2023-11-30 16:39 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-30 16:39 - 2019-06-17 20:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-30 16:28 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-30 16:03 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-30 13:56 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-11-30 13:54 - 2019-06-17 20:59 - 000000000 ____D C:\ProgramData\Norton
2023-11-30 13:53 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-11-30 13:51 - 2019-06-17 20:55 - 000000000 ____D C:\Program Files (x86)\Acer
2023-11-30 13:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-30 13:34 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-30 13:34 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-30 13:33 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-30 13:19 - 2019-06-17 20:55 - 000000000 ____D C:\ProgramData\Acer
2023-11-30 13:19 - 2019-06-17 20:10 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-11-30 13:18 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-30 13:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat
2023-11-30 13:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2023-11-30 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-11-30 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT
2023-11-30 13:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\WaaS
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Help
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-11-30 13:07 - 2019-06-17 21:01 - 000000000 ____D C:\ProgramData\DriverSetupUtility
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\Users\Public\Symantec
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\ProgramData\NortonInstaller
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2023-11-30 13:07 - 2019-06-17 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2023-11-30 13:07 - 2019-06-17 20:46 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-30 13:07 - 2019-06-17 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:44 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:44 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:31 - 000000000 ____D C:\ProgramData\Intel
2023-11-30 13:07 - 2019-06-17 20:18 - 000000000 ____D C:\WINDOWS\system32\Intel
2023-11-30 13:07 - 2018-12-06 15:26 - 000000000 ____D C:\WINDOWS\NAPP_Dism_Log
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Windows Security
2023-11-30 13:06 - 2022-05-07 06:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2023-11-30 13:06 - 2019-06-17 21:01 - 000000000 ____D C:\Program Files\DriverSetupUtility
2023-11-30 13:06 - 2019-06-17 20:10 - 000000000 ____D C:\Program Files\Intel
2023-11-30 13:06 - 2019-06-17 20:07 - 000000000 __SHD C:\IntelOptaneData
2023-11-30 13:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2023-11-30 12:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-30 12:41 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2023-11-30 12:40 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-30 12:40 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\WUModels
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemApps
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-30 12:39 - 2022-05-07 11:31 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-30 12:39 - 2022-05-07 11:31 - 000023775 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-11-30 12:39 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-30 12:39 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-30 12:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-11-30 12:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-11-30 12:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-30 12:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par baldi (administrateur) sur PC-DE-NICO (Acer Predator PT515-51) (04-12-2023 12:05:36)
Exécuté depuis C:\Users\baldi\Downloads\FRST64.exe
Profils chargés: baldi
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.2715 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\84.0.10.0\crashpad_handler.exe
(C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe <7>
(C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\84.0.11.0\crashpad_handler.exe
(C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe <7>
(C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.exe ->) (Merci.App (J2S3 SAS) -> MerciApp.Tools.Office) C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.Tools.Office.exe
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(EB742617-4934-4951-8B93-E211D04E5A38 -> Rivet Networks) C:\Program Files\WindowsApps\rivetnetworks.killercontrolcenter_2.4.3337.0_x64__rh07ty8m5nkag\KillerControlCenter_v2\KillerControlCenter.exe
(explorer.exe ->) (203A666F-34C9-4B13-BE7D-682C35927E0B -> Steven Mayall) C:\Program Files\WindowsApps\50072StevenMayall.MusicBee_3.5.8447.0_x86__kcr266et74avj\win32\MusicBee.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <45>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\84.0.10.0\GoogleDriveFS.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSvc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Merci.App (J2S3 SAS) -> MerciApp) C:\Users\baldi\AppData\Local\MerciApp\app-2.0.7\MerciApp.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Windows\ThunderboltService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_34f570cbe7f3d6c7\RstMwService.exe
(services.exe ->) (MDL Forum, mod by Ratiborus) [Fichier non signé] C:\ProgramData\KMSAuto\bin\KMSSS.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5d1cda0f460aae80\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSysSvc64.exe
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.5237.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2347.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.5237.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (KMSpico ByELDI LTD -> @ByELDI) C:\Program Files\KMSpico\KMSUPD.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_c2205fc8225a5400\WavesSvc64.exe [1645672 2020-06-22] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1211696 2020-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [MicrosoftEdgeAutoLaunch_CB9D8B6F44EC305A4954072973EFCCEF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [Gaijin.Net Updater] => C:\Users\baldi\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3065544 2023-10-06] (Gaijin Network Ltd -> Gaijin)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-11-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\...\Run: [MerciApp] => C:\Users\baldi\AppData\Local\MerciApp\MerciApp.exe [308888 2023-12-04] (Merci.App (J2S3 SAS) -> MerciApp)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-04] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-11-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {58685155-524B-4D50-8567-16AFA298374B} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [Fichier non signé]
Task: {9402CC5D-A4E7-4AC5-B538-970BB122D79A} - System32\Tasks\KMSpico Automatic Update Scheduler => C:\Program Files\KMSpico\KMSUPD.exe [89272 2021-02-11] (KMSpico ByELDI LTD -> @ByELDI)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {0AF49748-863B-4A34-AA7C-083B448A233E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BFE5E474-3DF2-478E-BCB5-A40E1D9C0A65} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2488001E-70D8-4D82-B417-3D52C10D220C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3EB09EBF-29BA-4631-AE2E-4C73B3C38FD9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {178BB009-244E-4CD4-80FB-4CECD6B2C78C} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {B4E652EB-C996-40AF-B6CC-46563ED1AD18} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé] <==== ATTENTION
Task: {61A9EF55-AD77-4756-B66E-428BB9BD91CA} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2019-10-09] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{6025C154-D9AD-4413-BE45-F9EE2B27CAEB}] => hxxp://127.0.0.1:86/ <==== ATTENTION
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{7057018e-2fee-4ae6-a3f3-09475b0feee9}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{e68091aa-e705-4500-8045-6dff3766461c}: [DhcpNameServer] 172.19.128.24
ManualProxies: 0hxxp://127.0.0.1:86/ <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-01]
Edge Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-30]
Edge Extension: (Edge relevant text changes) - C:\Users\baldi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-30]
FireFox:
========
FF DefaultProfile: oxul7791.default
FF ProfilePath: C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default [2023-12-01]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default\Extensions\abb-acer@amazon.com.xpi [2023-11-30] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Français Language Pack) - C:\Users\baldi\AppData\Roaming\Mozilla\Firefox\Profiles\oxul7791.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2023-11-30]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default [2023-12-03]
CHR HomePage: backup default -> hxxps://google.com/
CHR StartupUrls: backup default -> "hxxp://search.conduit.com/?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPBC8D0713-F241-4A5D-8250-A8168C3F734A&SSPV=","hxxp://www.google.com"
CHR Extension: (ColorZilla) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-11-30]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2023-11-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-30]
CHR Extension: (Meta Pixel Helper) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2023-11-30]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2023-12-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-30]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2023-11-30]
CHR Extension: (WhatFont) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2023-11-30]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2023-11-30]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-30]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-11-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\backup default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-30]
CHR Profile: C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default [2023-12-04]
CHR HomePage: Default -> hxxps://google.com/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPBC8D0713-F241-4A5D-8250-A8168C3F734A&SSPV=","hxxp://www.google.com"
CHR Extension: (ColorZilla) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-12-03]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2023-12-03]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-12-03]
CHR Extension: (Meta Pixel Helper) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2023-12-03]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2023-12-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2023-12-03]
CHR Extension: (WhatFont) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2023-12-03]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2023-12-03]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-12-03]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-12-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\baldi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-03]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-2340964554-1075935757-1922079050-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
"MpKsl5ff8c8d7" => service n'a pas pu être déverrouillé. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\MpKsl5ff8c8d7 => \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C2BF608C-1C56-4308-89B5-41F6309FAB2D}\MpKslDrv.sys <==== ATTENTION (Rootkit!/Service verrouillé)
"MpKslcf125a50" => service n'a pas pu être déverrouillé. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\MpKslcf125a50 => \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EC536725-46A6-47F3-852B-BBD0FEDAB4AD}\MpKslDrv.sys <==== ATTENTION (Rootkit!/Service verrouillé)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300352 2019-02-21] (Acer Incorporated -> Acer Incorporated)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-11-30] (EasyAntiCheat Oy -> Epic Games, Inc)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73480 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1775392 2021-04-02] (Rivet Networks LLC -> Rivet Networks)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2663208 2021-04-02] (Rivet Networks LLC -> Rivet Networks)
R2 KMSEmulator; C:\ProgramData\KMSAuto\bin\KMSSS.exe [301056 2015-07-24] (MDL Forum, mod by Ratiborus) [Fichier non signé]
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [73496 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_5d1cda0f460aae80\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2018-12-17] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [73504 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [73504 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
R3 e3k25cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e3k25cx21x64.inf_amd64_c420f06bc218c993\e3k25cx21x64.sys [742232 2023-09-02] (Realtek Semiconductor Corp. -> Realtek)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [184400 2021-04-02] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2018-10-05] (Logitech -> Logitech Inc.)
S3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [55624 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [56656 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [45904 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-12-11] (Logitech Inc -> Logitech)
S3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-12-11] (Logitech Inc -> Logitech)
R3 MpKsl91d77cbf; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E25DAEEC-2B60-4476-9190-F091CFC532DE}\MpKslDrv.sys [263560 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [238720 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [45752 2021-04-06] (SteelSeries ApS -> SteelSeries ApS)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47760 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 WinDivert1.1; C:\ProgramData\KMSAuto\bin\driver\x64WDV\WinDivert.sys [35376 2013-12-03] (Nemea Mjukvaruutveckling AB -> Basil Projects)
S2 iocbios2; \??\C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-04 12:05 - 2023-12-04 12:06 - 000027583 _____ C:\Users\baldi\Downloads\FRST.txt
2023-12-04 12:04 - 2023-12-04 12:05 - 000000000 ____D C:\FRST
2023-12-04 12:04 - 2023-12-04 12:04 - 002384384 _____ (Farbar) C:\Users\baldi\Downloads\FRST64.exe
2023-12-04 11:41 - 2023-12-04 11:41 - 003119716 _____ C:\Users\baldi\Downloads\Thermocollage des poches sur les gelprotech ski. Ces poches contiendront nos plaques de gel..mp4
2023-12-04 11:02 - 2023-12-04 11:02 - 001160197 _____ C:\Users\baldi\Downloads\Noël au faubourg 2023 - A3 Impression.pdf
2023-12-04 10:48 - 2023-12-04 10:48 - 000002199 _____ C:\Users\baldi\Desktop\MerciApp.lnk
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MerciApp
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\SquirrelClowdTemp
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\MerciAppData
2023-12-04 10:48 - 2023-12-04 10:48 - 000000000 ____D C:\Users\baldi\AppData\Local\MerciApp
2023-12-04 10:03 - 2023-12-04 10:03 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-04 10:03 - 2023-12-04 10:03 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-03 18:39 - 2023-12-03 18:39 - 000298285 _____ C:\Users\baldi\Desktop\ZHPDiag.txt
2023-12-03 18:22 - 2023-12-03 18:22 - 000000869 _____ C:\Users\baldi\Desktop\ZHPDiag.lnk
2023-12-03 18:15 - 2023-12-03 18:16 - 003316384 _____ (Nicolas Coolman) C:\Users\baldi\Downloads\ZHPDiag3.exe
2023-12-03 17:55 - 2023-12-03 17:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-12-01 19:03 - 2023-12-01 19:03 - 000088845 _____ C:\Users\baldi\Downloads\🍺SEO lartdelabiere.fr - Copie de Données des produits.csv
2023-12-01 18:26 - 2023-12-03 18:39 - 000000000 ____D C:\Users\baldi\AppData\Roaming\ZHP
2023-12-01 18:25 - 2023-12-01 18:25 - 003515040 _____ (Nicolas Coolman) C:\Users\baldi\Downloads\ZHPSuite.exe
2023-12-01 18:23 - 2023-12-01 18:26 - 000000000 ____D C:\Users\baldi\AppData\Local\ZHP
2023-12-01 17:34 - 2023-12-01 17:34 - 000000000 ____D C:\Users\baldi\AppData\Local\Microsoft_Corporation
2023-12-01 11:59 - 2023-12-04 11:00 - 000000000 ____D C:\Users\baldi\AppData\Roaming\vlc
2023-12-01 11:58 - 2023-12-01 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-12-01 11:58 - 2023-12-01 11:58 - 000000000 ____D C:\Program Files\VideoLAN
2023-11-30 19:28 - 2023-11-30 19:29 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-11-30 19:28 - 2023-11-30 19:28 - 000000000 ____D C:\Users\baldi\AppData\Roaming\EasyAntiCheat
2023-11-30 19:24 - 2023-11-30 19:24 - 000000000 ____D C:\Users\baldi\AppData\Roaming\NVIDIA
2023-11-30 19:24 - 2023-11-30 19:24 - 000000000 ____D C:\ProgramData\WarThunder
2023-11-30 18:49 - 2023-11-30 18:49 - 000005404 _____ C:\WINDOWS\system32\Tasks\Software Update Application
2023-11-30 16:49 - 2023-11-30 17:07 - 601289814 _____ C:\Users\baldi\Downloads\Microsoft Office 2019 Pro Plus v2110 Build 14527.20226 [FileCR].zip
2023-11-30 16:31 - 2023-11-30 16:31 - 000003764 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{577AF7DD-BBF0-459B-8F6E-E92AECF40976}
2023-11-30 16:31 - 2023-11-30 16:31 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{EC35AD98-C96C-4868-A723-510D2BC82C75}
2023-11-30 16:27 - 2023-11-30 17:06 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\MMC
2023-11-30 16:05 - 2023-11-30 16:06 - 000000000 ____D C:\Users\baldi\AppData\Local\Steam
2023-11-30 16:04 - 2023-11-30 17:26 - 000000000 ____D C:\Program Files (x86)\Steam
2023-11-30 16:04 - 2023-11-30 16:04 - 000001040 _____ C:\Users\Public\Desktop\Steam.lnk
2023-11-30 16:04 - 2023-11-30 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-11-30 15:06 - 2023-11-30 15:06 - 000003466 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2023-11-30 15:06 - 2010-12-06 03:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-11-30 15:01 - 2023-11-30 15:01 - 000000000 ____D C:\ProgramData\KMSAuto
2023-11-30 15:00 - 2023-11-30 15:04 - 000000000 ____D C:\Users\baldi\AppData\Local\MSfree Inc
2023-11-30 14:58 - 2023-11-30 16:29 - 000000000 ____D C:\Program Files\KMSpico
2023-11-30 14:58 - 2023-11-30 15:06 - 000003782 _____ C:\WINDOWS\system32\Tasks\Optimize Thumbnail Cache
2023-11-30 14:58 - 2023-11-30 15:06 - 000003334 _____ C:\WINDOWS\system32\Tasks\KMSpico Automatic Update Scheduler
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\AppData\Local\NVIDIA
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\AppData\Local\CEF
2023-11-30 14:40 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi\ansel
2023-11-30 14:02 - 2023-12-01 18:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-30 14:02 - 2023-11-30 14:02 - 000000000 ____D C:\Users\baldi\AppData\Roaming\uk.co.screamingfrog.seospider.ui.id
2023-11-30 14:02 - 2023-11-30 14:02 - 000000000 ____D C:\ProgramData\Mozilla
2023-11-30 14:01 - 2023-11-30 19:27 - 000000000 ____D C:\Users\baldi\.ScreamingFrogSEOSpider
2023-11-30 14:01 - 2023-11-30 14:01 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Frog SEO Spider.lnk
2023-11-30 14:01 - 2023-11-30 14:01 - 000000000 ____D C:\Program Files (x86)\Screaming Frog SEO Spider
2023-11-30 14:00 - 2022-01-03 15:30 - 000005845 _____ C:\Users\baldi\Downloads\Screaming Frog Keygen (1)
2023-11-30 13:56 - 2023-11-30 13:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-30 13:56 - 2023-11-30 13:56 - 000000000 ____D C:\ProgramData\SplitMediaLabs
2023-11-30 13:49 - 2023-11-30 13:49 - 000000000 ____D C:\Users\baldi\AppData\Local\Comms
2023-11-30 13:40 - 2023-12-01 18:48 - 000000000 ____D C:\Data
2023-11-30 13:34 - 2023-11-30 13:35 - 000000000 ____D C:\Users\baldi\AppData\Local\Publishers
2023-11-30 13:29 - 2023-11-30 19:40 - 000000000 ____D C:\Users\baldi\AppData\Local\WarThunder
2023-11-30 13:29 - 2023-11-30 13:29 - 000002033 _____ C:\Users\baldi\Desktop\WarThunder.lnk
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\Documents\My Games
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\Users\baldi\AppData\Local\Gaijin
2023-11-30 13:29 - 2023-11-30 13:29 - 000000000 ____D C:\ProgramData\Gaijin
2023-11-30 13:25 - 2023-12-04 10:01 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-30 13:23 - 2023-11-30 13:23 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2023-11-30 13:22 - 2023-11-30 13:22 - 000000000 ____D C:\Users\baldi\AppData\Local\OEM
2023-11-30 13:21 - 2023-12-03 17:44 - 000000000 ____D C:\Users\baldi\AppData\Local\D3DSCache
2023-11-30 13:21 - 2023-11-30 13:21 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2023-11-30 13:21 - 2023-11-30 13:21 - 000000000 ____D C:\Users\baldi\AppData\Local\CareCenter
2023-11-30 13:20 - 2023-11-30 13:25 - 000000000 ____D C:\Users\baldi\AppData\Local\Google
2023-11-30 13:20 - 2023-11-30 13:25 - 000000000 ____D C:\Program Files\Google
2023-11-30 13:20 - 2023-11-30 13:20 - 000002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-30 13:19 - 2023-12-04 11:08 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-30 13:19 - 2023-12-01 18:17 - 000000000 ____D C:\Users\baldi\AppData\LocalLow\Mozilla
2023-11-30 13:19 - 2023-11-30 19:24 - 000000000 ____D C:\Users\baldi\AppData\Local\NVIDIA Corporation
2023-11-30 13:19 - 2023-11-30 16:02 - 000000000 ____D C:\Users\baldi\AppData\Local\PlaceholderTileLogoFolder
2023-11-30 13:19 - 2023-11-30 13:51 - 000000000 ___RD C:\Users\baldi\OneDrive
2023-11-30 13:19 - 2023-11-30 13:19 - 000001799 _____ C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudio - Contrôle audio du haut-parleur avec son 3D Nx.lnk
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Mozilla
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Local\VirtualStore
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\Users\baldi\AppData\Local\Mozilla
2023-11-30 13:19 - 2023-11-30 13:19 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2023-11-30 13:18 - 2023-11-30 13:18 - 000000000 ____D C:\Users\baldi\AppData\LocalLow\NVIDIA
2023-11-30 13:17 - 2023-12-04 10:03 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-30 13:17 - 2023-11-30 16:03 - 000000000 ____D C:\Users\baldi\AppData\Local\Packages
2023-11-30 13:17 - 2023-11-30 13:47 - 000000000 ____D C:\Users\baldi\AppData\Local\ConnectedDevicesPlatform
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Crypto
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Vault
2023-11-30 13:17 - 2023-11-30 13:17 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Adobe
2023-11-30 13:16 - 2023-11-30 13:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Oem
2023-11-30 13:16 - 2023-11-30 13:16 - 000000000 ____D C:\Users\Default\AppData\Local\OEM
2023-11-30 13:16 - 2023-11-30 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer
2023-11-30 13:15 - 2023-12-04 12:06 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Credentials
2023-11-30 13:15 - 2023-12-01 17:33 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Windows
2023-11-30 13:15 - 2023-12-01 13:53 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\SystemCertificates
2023-11-30 13:15 - 2023-11-30 14:40 - 000000000 ____D C:\Users\baldi
2023-11-30 13:15 - 2023-11-30 14:03 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Spelling
2023-11-30 13:15 - 2023-11-30 13:15 - 000000020 ___SH C:\Users\baldi\ntuser.ini
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Voisinage réseau
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Voisinage d'impression
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Modèles
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Mes documents
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Menu Démarrer
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Mes vidéos
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Mes images
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\Documents\Ma musique
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 _SHDL C:\Users\baldi\AppData\Local\Historique
2023-11-30 13:15 - 2023-11-30 13:15 - 000000000 ___SD C:\Users\baldi\AppData\Roaming\Microsoft\Protect
2023-11-30 13:15 - 2023-11-30 13:08 - 000000000 ____D C:\Users\baldi\AppData\Roaming\Microsoft\Network
2023-11-30 13:08 - 2023-12-04 09:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-30 13:08 - 2023-11-30 16:03 - 000000000 ____D C:\ProgramData\Packages
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Mes images
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Voisinage réseau
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Modèles
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Mes documents
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Menu Démarrer
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Mes images
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Modèles
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Menu Démarrer
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\ProgramData\Bureau
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Program Files\Fichiers communs
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 _SHDL C:\Documents and Settings
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\oem
2023-11-30 13:08 - 2023-11-30 13:08 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2023-11-30 13:02 - 2023-12-04 09:58 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-30 13:02 - 2023-12-01 11:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\RivetNetworks
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-11-30 13:02 - 2023-11-30 13:02 - 000000000 ____D C:\ProgramData\RivetNetworks
2023-11-30 13:01 - 2023-12-04 09:58 - 000012288 ___SH C:\DumpStack.log.tmp
2023-11-30 13:01 - 2023-12-04 09:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-30 13:01 - 2023-11-30 13:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-30 13:01 - 2023-11-30 13:06 - 000000000 ___HD C:\Intel
2023-11-30 13:01 - 2023-11-30 13:01 - 000295408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-30 13:01 - 2023-11-30 13:01 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2023-11-30 13:01 - 2023-11-30 13:01 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2023-11-30 12:43 - 2023-11-30 13:32 - 000000000 ___HD C:\OEM
2023-11-30 12:41 - 2023-11-30 13:08 - 000000000 ____D C:\WINDOWS\Panther
2023-11-30 12:40 - 2023-11-30 12:40 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-11-30 12:35 - 2023-11-30 12:35 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-11-30 12:34 - 2023-11-30 12:34 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-11-30 12:34 - 2023-11-30 12:34 - 000016240 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\WINDOWS\addins
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files\MSBuild
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2023-11-30 12:31 - 2023-11-30 12:31 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-11-30 12:27 - 2023-11-30 12:27 - 000000000 ____D C:\WINDOWS\Firmware
2023-11-30 12:27 - 2023-11-30 12:27 - 000000000 ____D C:\Program Files\SteelSeries
2023-11-30 12:23 - 2023-11-30 12:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2023-11-30 12:06 - 2023-11-30 12:43 - 000000000 ___HD C:\$SysReset
2023-11-30 09:48 - 2023-12-01 12:00 - 000000000 ____D C:\Users\baldi\Downloads\Vidéos
2023-11-28 17:21 - 2023-11-30 13:42 - 000000000 ____D C:\Users\baldi\Downloads\Qualibail
2023-11-28 17:20 - 2023-11-28 17:20 - 927283212 _____ C:\Users\baldi\Downloads\Film Qualibail.mp4
2023-11-14 18:39 - 2023-11-10 03:07 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-11-14 17:26 - 2023-11-10 12:38 - 001487368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 001226872 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-11-14 17:26 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-11-14 17:26 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-11-14 17:26 - 2023-11-10 12:34 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 001198200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000957960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000669712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2023-11-14 17:26 - 2023-11-10 12:34 - 000504840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 002171000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 001624712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 000997512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-11-14 17:26 - 2023-11-10 12:33 - 000810104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-11-14 17:26 - 2023-11-10 12:33 - 000774280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 015095416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 012375160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 006462600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 005862520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 003619960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-11-14 17:26 - 2023-11-10 12:32 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-11-14 17:26 - 2023-11-10 12:32 - 000459384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-11-14 17:26 - 2023-11-10 12:31 - 007866472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-11-14 17:26 - 2023-11-10 12:30 - 006745880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-11-14 17:26 - 2023-11-10 03:07 - 000113883 _____ C:\WINDOWS\system32\nvinfo.pb
2023-11-14 17:24 - 2023-03-10 10:35 - 000030704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvswcfilter.sys
2023-11-14 17:24 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-04 12:05 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-04 11:28 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-04 10:03 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-04 09:58 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-03 17:38 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-01 18:21 - 2019-06-17 20:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-01 18:16 - 2019-06-17 20:58 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-12-01 15:07 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-01 14:01 - 2019-06-17 20:57 - 000000000 ____D C:\Program Files\Acer
2023-12-01 14:01 - 2019-06-17 20:55 - 000000000 ____D C:\ProgramData\OEM
2023-12-01 11:26 - 2022-06-09 21:11 - 000190017 _____ C:\Users\baldi\Downloads\Codes Nico.xlsx
2023-11-30 16:39 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-30 16:39 - 2019-06-17 20:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-30 16:28 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-30 16:03 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-30 13:56 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-11-30 13:54 - 2019-06-17 20:59 - 000000000 ____D C:\ProgramData\Norton
2023-11-30 13:53 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-11-30 13:51 - 2019-06-17 20:55 - 000000000 ____D C:\Program Files (x86)\Acer
2023-11-30 13:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-30 13:34 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-30 13:34 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-30 13:33 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-30 13:19 - 2019-06-17 20:55 - 000000000 ____D C:\ProgramData\Acer
2023-11-30 13:19 - 2019-06-17 20:10 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-11-30 13:18 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-30 13:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat
2023-11-30 13:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2023-11-30 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-11-30 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT
2023-11-30 13:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\WaaS
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Help
2023-11-30 13:07 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-11-30 13:07 - 2019-06-17 21:01 - 000000000 ____D C:\ProgramData\DriverSetupUtility
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\Users\Public\Symantec
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\ProgramData\NortonInstaller
2023-11-30 13:07 - 2019-06-17 20:59 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2023-11-30 13:07 - 2019-06-17 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2023-11-30 13:07 - 2019-06-17 20:46 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-30 13:07 - 2019-06-17 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:44 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:44 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-11-30 13:07 - 2019-06-17 20:31 - 000000000 ____D C:\ProgramData\Intel
2023-11-30 13:07 - 2019-06-17 20:18 - 000000000 ____D C:\WINDOWS\system32\Intel
2023-11-30 13:07 - 2018-12-06 15:26 - 000000000 ____D C:\WINDOWS\NAPP_Dism_Log
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2023-11-30 13:07 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Windows Security
2023-11-30 13:06 - 2022-05-07 06:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2023-11-30 13:06 - 2019-06-17 21:01 - 000000000 ____D C:\Program Files\DriverSetupUtility
2023-11-30 13:06 - 2019-06-17 20:10 - 000000000 ____D C:\Program Files\Intel
2023-11-30 13:06 - 2019-06-17 20:07 - 000000000 __SHD C:\IntelOptaneData
2023-11-30 13:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2023-11-30 12:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-30 12:41 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2023-11-30 12:40 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-30 12:40 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\WUModels
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemApps
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-30 12:40 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-30 12:39 - 2022-05-07 11:31 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-30 12:39 - 2022-05-07 11:31 - 000023775 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-11-30 12:39 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-30 12:39 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-30 12:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-11-30 12:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-11-30 12:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-30 12:30 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr
2023-11-30 12:30 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-30 12:30 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================