Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Exécuté par Patrick (administrateur) sur PC_PATRICK (MSI MS-7924) (22-09-2024 13:43:55)
Exécuté depuis C:\Users\Patrick\Desktop\FRST64.exe
Profils chargés: Patrick
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2405.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-789288676-2506583023-3363041439-1001\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-21-789288676-2506583023-3363041439-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-04-04] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\129.0.6668.59\Installer\chrmstp.exe [2024-09-21] (Google LLC -> Google LLC)
AlternateShell: <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {099EA3FE-C5F2-440A-95CB-9928A93DC4EA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {18034332-0BC8-4E3E-B0EA-B36A8E619D3A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {1AC88761-4440-4EE4-88D9-4443A88102B3} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {3A94E6BC-1D50-4D72-A20E-1E93A40823A8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {3F742A4C-2DA7-4FB2-8803-5BDB564B761A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {536DB9BD-55AA-4B66-84CF-20B0D99BB633} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {66457521-F286-4384-9D1B-276B5D51EB0D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {80A530AD-DF4B-4B5A-BCF9-6477C1BFE2E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {943B1B63-4217-4E03-BF3C-A2C6B5CC0D3B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {9FB23C38-37A2-4EC9-961A-02625F50A928} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {C02261B2-B635-4B06-A4B8-F904BA1D1467} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D23B93BA-0B53-4881-8E4C-8BCC10F9F96E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {D4301C5F-17B8-4DE6-9772-206883005671} - \IObit SumSale2024 (One-Time) -> Pas de fichier <==== ATTENTION
Task: {4545CBEA-F32E-4C3F-8646-B8D8C5BB7D3E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {059E159E-1E09-4289-A099-C3C05FACB041} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {42E3FC2C-9293-4E1A-A27A-89BB76A3843B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5786440 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
Task: {A6496A84-BE11-4D4F-AFB0-9405B74F59FE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{10AED77F-1E9D-41AD-8215-C50E4D941711} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {9F585A0D-522E-40BE-87A7-BFC9DB8F7331} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2021-01-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {FC07B565-9DC5-41BA-822C-5633F73A16EF} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-789288676-2506583023-3363041439-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe (Pas de fichier)
Task: {99A47AFD-F634-4DAD-B3C0-28830C7D2942} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {052E900B-8CF3-46FA-A330-E87237581813} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {4381A50F-3E04-4F7D-A00F-B90D2077FC53} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {852F208A-FDF7-47B3-9369-CFB99435A25D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B66407A-B32C-4E3A-BE5A-71A7DACD7AA7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4543C36-327E-47D8-BD8B-762C6A49C598} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12FFB3F5-7590-49A1-899D-63EA6D2B7BAD} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BC3D8CE-8279-4AA7-ADD6-92C98CB360A7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC57B816-74F9-4DA0-829A-A727240F2F35} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2211024 2014-03-19] (Microsoft Corporation -> Microsoft)
Task: {0D5F53F8-A56A-4D32-A9A0-8F20EE0106AA} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DBEF244-1604-4F57-853A-73206D48B84D} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9068CF9-BED5-4938-A70F-093462C99A13} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E1F37E8B-E05D-4EA2-8538-D70E34FCEB0B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EE7A8417-41B0-46C2-9EA8-F006F69917F4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E89D10C3-7A96-4994-B356-C6BDD4DC3E25} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0E7BB83-E4D7-4AE4-BD77-47E3FD005CF4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0A0083C-46D3-45CE-A39C-D36551BAAC4C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31821E9D-93F4-4512-A498-C7D4DE8FC1B9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CCE432D1-7F8C-4CD2-8B6A-09A6CDCAC4DA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {64758AE1-242D-49C0-AE1D-0219255E98FD} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D213435414: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D213435414: [DhcpDomain] home
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D224434403: [DhcpDomain] home
Tcpip\..\Interfaces\{2d8d6466-4628-4224-ba18-d86d28835d32}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2d8d6466-4628-4224-ba18-d86d28835d32}: [DhcpDomain] home
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}: [DhcpDomain] home
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\4505D2C494E4B4F524646434: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\C496675626F687D224434403: [DhcpDomain] home
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}: [DhcpDomain] home
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\4505D2C494E4B4F524646434: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\C496675626F687D224434403: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-07]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://google.com/"
Edge Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-11]
FireFox:
========
FF DefaultProfile: lusyvcsh.default
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\lusyvcsh.default [2024-05-31]
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\qdzsrdcl.default-release [2024-07-30]
FF Extension: (WebScrapBook) - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\qdzsrdcl.default-release\Extensions\webscrapbook@danny0838.addons.mozilla.org.xpi [2024-05-31]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-789288676-2506583023-3363041439-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR DefaultProfile: Profile 4
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default [2024-09-22]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Video DownloadHelper) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-03]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-31]
CHR DefaultSearchURL: Guest Profile -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Guest Profile -> duckduckgo.com
CHR DefaultNewTabURL: Guest Profile -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Guest Profile -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-08-29]
CHR StartupUrls: Profile 3 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Raccourcisseur d'URL pour Google Chrome ™) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aacgdipdhmilcpcpbdcloifondogabco [2024-06-04]
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-12]
CHR Extension: (Video DownloadHelper) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-08-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-09-22]
CHR StartupUrls: Profile 4 -> "hxxps://mail.google.com/mail/u/0/?hl=fr#inbox"
CHR DefaultSearchURL: Profile 4 -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=opensearch
CHR DefaultSearchKeyword: Profile 4 -> ecosia.org
CHR DefaultNewTabURL: Profile 4 -> hxxps://www.ecosia.org/newtab/
CHR DefaultSuggestURL: Profile 4 -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fmlboobidmkelggdainpknloccojpppi [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-08-21]
CHR StartupUrls: Profile 5 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7 [2024-08-27]
CHR StartupUrls: Profile 7 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl"
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-07-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-03]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8 [2024-08-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-20]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9 [2024-08-23]
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-07-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-20]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69088 2024-07-03] (Cyberghost SRL -> CyberGhost S.R.L.)
R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1778184 2023-05-26] (voidtools -> voidtools)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S2 LibreViewMASMonitor; C:\Program Files (x86)\LibreView Device Drivers\LibreViewMASMonitor.exe [14848 2019-02-19] (Newyu) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-05-25] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2016-05-24] (Power Admin LLC -> Power Admin LLC)
R2 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> )
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [281152 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn, Inc. -> LogMeIn Inc.)
R3 LSaiMini; C:\WINDOWS\System32\drivers\LSaiMini.sys [20720 2017-05-09] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 LSaiNtBus; C:\WINDOWS\system32\drivers\LSaiBus.sys [60336 2017-05-09] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 npusbio; C:\WINDOWS\System32\Drivers\npusbio_x64.sys [38400 2015-12-14] () [Fichier non signé]
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 rspWhySoSlow; C:\WINDOWS\System32\DRIVERS\rspWhy64.sys [28928 2016-12-17] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9863992 2021-08-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 SaiH0763; C:\WINDOWS\system32\DRIVERS\SaiH0763.sys [176640 2007-07-18] (Saitek -> Saitek)
S3 SaiHFFB5; C:\WINDOWS\system32\DRIVERS\SaiHFFB5.sys [171144 2007-05-01] (Saitek -> Saitek)
S3 SaiIFFB5; C:\WINDOWS\system32\DRIVERS\SaiIFFB5.sys [20608 2007-05-01] (Saitek) [Fichier non signé]
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [159440 2015-08-14] (RH Software -> Ray Hinchliffe)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2020-11-14] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 Tileproxy; C:\WINDOWS\System32\DRIVERS\tileproxy.sys [34784 2017-02-26] (NGO -> Windows (R) Codename Longhorn DDK provider)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [537104 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmwbulk; C:\WINDOWS\System32\Drivers\tmwbulk.sys [383008 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2022. All rights reserved.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-03-01] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
S1 epp; \??\C:\EEK\bin64\epp.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-22 13:43 - 2024-09-22 13:47 - 000031796 _____ C:\Users\Patrick\Desktop\FRST.txt
2024-09-22 10:55 - 2024-09-22 13:46 - 000000000 ____D C:\FRST
2024-09-22 10:52 - 2024-09-22 10:53 - 002397696 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2024-09-22 09:49 - 2024-09-22 09:49 - 000269391 _____ C:\Users\Patrick\Documents\MN24899983.pdf
2024-09-21 15:09 - 2024-09-21 15:09 - 000000000 ___HD C:\$WinREAgent
2024-08-31 09:36 - 2024-08-31 09:37 - 000000000 ____D C:\Users\Patrick\Documents\Flipabit Projects
2024-08-31 09:35 - 2024-08-31 09:35 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\Flipabit
2024-08-31 09:35 - 2024-08-31 09:35 - 000000000 ____D C:\Users\Patrick\AppData\Local\Flipabit
2024-08-31 09:34 - 2024-08-31 09:34 - 000001154 _____ C:\Users\Public\Desktop\Flipabit 2.0.lnk
2024-08-31 09:34 - 2024-08-31 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flipabit
2024-08-31 09:33 - 2024-08-31 09:37 - 000000000 ____D C:\Program Files (x86)\Flipabit 2.5.1026
2024-08-28 10:47 - 2024-08-28 10:47 - 000000802 _____ C:\Users\Patrick\AppData\Local\recently-used.xbel
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\ProgramData\thriXXX
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\Program Files (x86)\thriXXX
2024-08-28 09:57 - 2024-08-28 09:57 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\thriXXX
2024-08-27 15:04 - 2024-08-27 15:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Money 2005
2024-08-27 14:56 - 2024-08-27 14:56 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\AlauxSoft
2024-08-27 10:53 - 2024-08-27 10:53 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\calibre-ebook.com
2024-08-27 10:40 - 2024-08-27 10:40 - 000001074 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-22 13:46 - 2020-06-20 14:54 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-22 13:46 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-22 13:46 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-22 13:46 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-09-22 13:42 - 2020-06-20 14:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-22 13:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-22 12:32 - 2021-01-27 11:40 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-22 12:09 - 2015-09-01 20:04 - 000000000 ____D C:\Users\Patrick\AppData\Local\CrashDumps
2024-09-22 10:53 - 2015-02-17 19:48 - 000000000 ___RD C:\Users\Patrick\Téléchargements
2024-09-22 09:19 - 2016-12-07 18:45 - 000000000 ____D C:\Users\Patrick\Documents\DxO OpticsPro 11 logs
2024-09-21 16:55 - 2018-03-12 18:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-21 16:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-21 16:38 - 2024-06-05 07:54 - 000491872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-21 16:35 - 2024-06-09 17:42 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-21 16:35 - 2021-12-18 10:36 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-21 16:35 - 2020-06-20 15:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-21 16:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-21 16:34 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-21 16:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-21 16:19 - 2020-06-20 14:46 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-21 15:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-21 15:04 - 2015-05-06 19:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-21 14:55 - 2015-05-06 19:39 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-21 14:48 - 2024-02-07 14:35 - 000000000 ____D C:\Users\Patrick\Documents\Impots2024
2024-09-21 14:45 - 2015-05-13 19:26 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-21 14:39 - 2017-04-27 19:45 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-21 14:32 - 2020-06-20 15:02 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-21 14:32 - 2020-06-20 15:02 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-05 07:53 - 2015-05-06 19:21 - 000000000 ____D C:\Users\Patrick\AppData\Local\ElevatedDiagnostics
2024-09-02 13:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-09-02 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-08-31 11:46 - 2024-03-05 10:21 - 000000000 ____D C:\Games
2024-08-31 09:35 - 2019-08-03 09:05 - 000000000 ____D C:\Users\Patrick\AppData\Local\cache
2024-08-30 09:05 - 2024-06-18 17:50 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-30 09:05 - 2024-06-18 17:50 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-28 14:12 - 2020-08-16 13:09 - 000000000 ____D C:\Users\Patrick\AppData\Local\D3DSCache
2024-08-28 10:47 - 2021-04-27 16:00 - 000000000 ____D C:\Users\Patrick\AppData\Local\homebank
2024-08-28 10:41 - 2023-01-01 12:20 - 000000000 ____D C:\Users\Patrick\.dbus-keyrings
2024-08-28 10:04 - 2023-06-17 16:12 - 000000000 ____D C:\Users\Patrick\AppData\Local\Malwarebytes
2024-08-27 13:21 - 2019-11-30 11:57 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\calibre
2024-08-27 10:53 - 2016-06-17 18:58 - 000000000 ____D C:\Users\Patrick\AppData\Local\calibre-cache
2024-08-27 10:51 - 2019-11-30 11:58 - 000000000 ____D C:\Users\Patrick\Documents\Calibre Library
2024-08-27 10:40 - 2024-07-31 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2024-08-27 10:40 - 2024-07-31 10:32 - 000000000 ____D C:\Program Files\Calibre2
2024-08-26 13:19 - 2017-10-24 19:49 - 000000000 ____D C:\Users\Patrick\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers ========
1998-04-27 00:00 - 1998-04-27 00:00 - 000570128 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\DAO350.dll
2017-01-15 15:25 - 2017-01-27 20:05 - 000000000 _____ () C:\Users\Patrick\AppData\Roaming\FileIn.cns
2017-01-15 15:25 - 2017-01-27 20:05 - 000000000 _____ () C:\Users\Patrick\AppData\Roaming\FileOut.cns
2017-04-25 17:49 - 2017-04-25 17:49 - 000000261 _____ () C:\Users\Patrick\AppData\Roaming\Installeur OpenSceneryX.plist
2016-10-27 10:15 - 2016-12-08 20:05 - 000139698 _____ () C:\Users\Patrick\AppData\Local\ars.cache
2016-10-27 10:15 - 2016-12-08 20:05 - 000420335 _____ () C:\Users\Patrick\AppData\Local\census.cache
2015-09-20 18:37 - 2017-06-04 17:56 - 000017920 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-27 09:57 - 2016-10-27 09:57 - 000000036 _____ () C:\Users\Patrick\AppData\Local\housecall.guid.cache
2018-12-27 14:54 - 2022-05-15 11:08 - 000000205 _____ () C:\Users\Patrick\AppData\Local\oobelibMkey.log
2024-08-28 10:47 - 2024-08-28 10:47 - 000000802 _____ () C:\Users\Patrick\AppData\Local\recently-used.xbel
2016-11-05 10:58 - 2022-01-08 12:13 - 000007599 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2023-11-08 10:40 - 2023-11-08 10:40 - 000000163 _____ () C:\Users\Patrick\AppData\Local\SystemRestorePoint.info
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Patrick (administrateur) sur PC_PATRICK (MSI MS-7924) (22-09-2024 13:43:55)
Exécuté depuis C:\Users\Patrick\Desktop\FRST64.exe
Profils chargés: Patrick
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2405.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-789288676-2506583023-3363041439-1001\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-21-789288676-2506583023-3363041439-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-04-04] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\129.0.6668.59\Installer\chrmstp.exe [2024-09-21] (Google LLC -> Google LLC)
AlternateShell: <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {099EA3FE-C5F2-440A-95CB-9928A93DC4EA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {18034332-0BC8-4E3E-B0EA-B36A8E619D3A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {1AC88761-4440-4EE4-88D9-4443A88102B3} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {3A94E6BC-1D50-4D72-A20E-1E93A40823A8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {3F742A4C-2DA7-4FB2-8803-5BDB564B761A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {536DB9BD-55AA-4B66-84CF-20B0D99BB633} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {66457521-F286-4384-9D1B-276B5D51EB0D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {80A530AD-DF4B-4B5A-BCF9-6477C1BFE2E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {943B1B63-4217-4E03-BF3C-A2C6B5CC0D3B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {9FB23C38-37A2-4EC9-961A-02625F50A928} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {C02261B2-B635-4B06-A4B8-F904BA1D1467} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D23B93BA-0B53-4881-8E4C-8BCC10F9F96E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {D4301C5F-17B8-4DE6-9772-206883005671} - \IObit SumSale2024 (One-Time) -> Pas de fichier <==== ATTENTION
Task: {4545CBEA-F32E-4C3F-8646-B8D8C5BB7D3E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {059E159E-1E09-4289-A099-C3C05FACB041} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {42E3FC2C-9293-4E1A-A27A-89BB76A3843B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5786440 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
Task: {A6496A84-BE11-4D4F-AFB0-9405B74F59FE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{10AED77F-1E9D-41AD-8215-C50E4D941711} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {9F585A0D-522E-40BE-87A7-BFC9DB8F7331} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2021-01-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {FC07B565-9DC5-41BA-822C-5633F73A16EF} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-789288676-2506583023-3363041439-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe (Pas de fichier)
Task: {99A47AFD-F634-4DAD-B3C0-28830C7D2942} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {052E900B-8CF3-46FA-A330-E87237581813} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {4381A50F-3E04-4F7D-A00F-B90D2077FC53} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {852F208A-FDF7-47B3-9369-CFB99435A25D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B66407A-B32C-4E3A-BE5A-71A7DACD7AA7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4543C36-327E-47D8-BD8B-762C6A49C598} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12FFB3F5-7590-49A1-899D-63EA6D2B7BAD} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BC3D8CE-8279-4AA7-ADD6-92C98CB360A7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC57B816-74F9-4DA0-829A-A727240F2F35} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2211024 2014-03-19] (Microsoft Corporation -> Microsoft)
Task: {0D5F53F8-A56A-4D32-A9A0-8F20EE0106AA} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DBEF244-1604-4F57-853A-73206D48B84D} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9068CF9-BED5-4938-A70F-093462C99A13} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E1F37E8B-E05D-4EA2-8538-D70E34FCEB0B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EE7A8417-41B0-46C2-9EA8-F006F69917F4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {E89D10C3-7A96-4994-B356-C6BDD4DC3E25} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0E7BB83-E4D7-4AE4-BD77-47E3FD005CF4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0A0083C-46D3-45CE-A39C-D36551BAAC4C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31821E9D-93F4-4512-A498-C7D4DE8FC1B9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CCE432D1-7F8C-4CD2-8B6A-09A6CDCAC4DA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {64758AE1-242D-49C0-AE1D-0219255E98FD} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D213435414: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D213435414: [DhcpDomain] home
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01c9503b-601b-43bb-84ec-8bea20d9e7bc}\C496675626F687D224434403: [DhcpDomain] home
Tcpip\..\Interfaces\{2d8d6466-4628-4224-ba18-d86d28835d32}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2d8d6466-4628-4224-ba18-d86d28835d32}: [DhcpDomain] home
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}: [DhcpDomain] home
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\4505D2C494E4B4F524646434: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{622b1c8f-c451-408b-934e-a2ae72d5ec21}\C496675626F687D224434403: [DhcpDomain] home
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}: [DhcpDomain] home
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\4505D2C494E4B4F524646434: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\C496675626F687D224434403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f1709abf-c6e7-484f-99b6-91f4d74e511b}\C496675626F687D224434403: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-07]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://google.com/"
Edge Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\Patrick\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-11]
FireFox:
========
FF DefaultProfile: lusyvcsh.default
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\lusyvcsh.default [2024-05-31]
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\qdzsrdcl.default-release [2024-07-30]
FF Extension: (WebScrapBook) - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\qdzsrdcl.default-release\Extensions\webscrapbook@danny0838.addons.mozilla.org.xpi [2024-05-31]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-789288676-2506583023-3363041439-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR DefaultProfile: Profile 4
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default [2024-09-22]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Video DownloadHelper) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-09-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-03]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-31]
CHR DefaultSearchURL: Guest Profile -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Guest Profile -> duckduckgo.com
CHR DefaultNewTabURL: Guest Profile -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Guest Profile -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-08-29]
CHR StartupUrls: Profile 3 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Raccourcisseur d'URL pour Google Chrome ™) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aacgdipdhmilcpcpbdcloifondogabco [2024-06-04]
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-12]
CHR Extension: (Video DownloadHelper) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-08-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-09-22]
CHR StartupUrls: Profile 4 -> "hxxps://mail.google.com/mail/u/0/?hl=fr#inbox"
CHR DefaultSearchURL: Profile 4 -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=opensearch
CHR DefaultSearchKeyword: Profile 4 -> ecosia.org
CHR DefaultNewTabURL: Profile 4 -> hxxps://www.ecosia.org/newtab/
CHR DefaultSuggestURL: Profile 4 -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Screen Shader | Smart Screen Tinting) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fmlboobidmkelggdainpknloccojpppi [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-08-21]
CHR StartupUrls: Profile 5 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox"
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-04]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7 [2024-08-27]
CHR StartupUrls: Profile 7 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl"
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-07-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-03]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8 [2024-08-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-20]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9 [2024-08-23]
CHR Extension: (Avira Password Manager) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-07-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-20]
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69088 2024-07-03] (Cyberghost SRL -> CyberGhost S.R.L.)
R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1778184 2023-05-26] (voidtools -> voidtools)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S2 LibreViewMASMonitor; C:\Program Files (x86)\LibreView Device Drivers\LibreViewMASMonitor.exe [14848 2019-02-19] (Newyu) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-05-25] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_33559cc6c2fd215a\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2016-05-24] (Power Admin LLC -> Power Admin LLC)
R2 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> )
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [281152 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn, Inc. -> LogMeIn Inc.)
R3 LSaiMini; C:\WINDOWS\System32\drivers\LSaiMini.sys [20720 2017-05-09] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 LSaiNtBus; C:\WINDOWS\system32\drivers\LSaiBus.sys [60336 2017-05-09] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 npusbio; C:\WINDOWS\System32\Drivers\npusbio_x64.sys [38400 2015-12-14] () [Fichier non signé]
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 rspWhySoSlow; C:\WINDOWS\System32\DRIVERS\rspWhy64.sys [28928 2016-12-17] (Daniel Terhell -> Resplendence Software Projects Sp.)
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9863992 2021-08-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 SaiH0763; C:\WINDOWS\system32\DRIVERS\SaiH0763.sys [176640 2007-07-18] (Saitek -> Saitek)
S3 SaiHFFB5; C:\WINDOWS\system32\DRIVERS\SaiHFFB5.sys [171144 2007-05-01] (Saitek -> Saitek)
S3 SaiIFFB5; C:\WINDOWS\system32\DRIVERS\SaiIFFB5.sys [20608 2007-05-01] (Saitek) [Fichier non signé]
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [159440 2015-08-14] (RH Software -> Ray Hinchliffe)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2020-11-14] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 Tileproxy; C:\WINDOWS\System32\DRIVERS\tileproxy.sys [34784 2017-02-26] (NGO -> Windows (R) Codename Longhorn DDK provider)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [537104 2023-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmwbulk; C:\WINDOWS\System32\Drivers\tmwbulk.sys [383008 2022-09-08] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2022. All rights reserved.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-03-01] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
S1 epp; \??\C:\EEK\bin64\epp.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-22 13:43 - 2024-09-22 13:47 - 000031796 _____ C:\Users\Patrick\Desktop\FRST.txt
2024-09-22 10:55 - 2024-09-22 13:46 - 000000000 ____D C:\FRST
2024-09-22 10:52 - 2024-09-22 10:53 - 002397696 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2024-09-22 09:49 - 2024-09-22 09:49 - 000269391 _____ C:\Users\Patrick\Documents\MN24899983.pdf
2024-09-21 15:09 - 2024-09-21 15:09 - 000000000 ___HD C:\$WinREAgent
2024-08-31 09:36 - 2024-08-31 09:37 - 000000000 ____D C:\Users\Patrick\Documents\Flipabit Projects
2024-08-31 09:35 - 2024-08-31 09:35 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\Flipabit
2024-08-31 09:35 - 2024-08-31 09:35 - 000000000 ____D C:\Users\Patrick\AppData\Local\Flipabit
2024-08-31 09:34 - 2024-08-31 09:34 - 000001154 _____ C:\Users\Public\Desktop\Flipabit 2.0.lnk
2024-08-31 09:34 - 2024-08-31 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flipabit
2024-08-31 09:33 - 2024-08-31 09:37 - 000000000 ____D C:\Program Files (x86)\Flipabit 2.5.1026
2024-08-28 10:47 - 2024-08-28 10:47 - 000000802 _____ C:\Users\Patrick\AppData\Local\recently-used.xbel
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\ProgramData\thriXXX
2024-08-28 09:57 - 2024-08-28 09:59 - 000000000 ____D C:\Program Files (x86)\thriXXX
2024-08-28 09:57 - 2024-08-28 09:57 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\thriXXX
2024-08-27 15:04 - 2024-08-27 15:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Money 2005
2024-08-27 14:56 - 2024-08-27 14:56 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\AlauxSoft
2024-08-27 10:53 - 2024-08-27 10:53 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\calibre-ebook.com
2024-08-27 10:40 - 2024-08-27 10:40 - 000001074 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-22 13:46 - 2020-06-20 14:54 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-22 13:46 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-22 13:46 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-22 13:46 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-09-22 13:42 - 2020-06-20 14:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-22 13:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-22 12:32 - 2021-01-27 11:40 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-22 12:09 - 2015-09-01 20:04 - 000000000 ____D C:\Users\Patrick\AppData\Local\CrashDumps
2024-09-22 10:53 - 2015-02-17 19:48 - 000000000 ___RD C:\Users\Patrick\Téléchargements
2024-09-22 09:19 - 2016-12-07 18:45 - 000000000 ____D C:\Users\Patrick\Documents\DxO OpticsPro 11 logs
2024-09-21 16:55 - 2018-03-12 18:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-21 16:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-21 16:38 - 2024-06-05 07:54 - 000491872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-21 16:35 - 2024-06-09 17:42 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-21 16:35 - 2021-12-18 10:36 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-21 16:35 - 2020-06-20 15:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-21 16:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-21 16:34 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-09-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-21 16:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-21 16:19 - 2020-06-20 14:46 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-21 15:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-21 15:04 - 2015-05-06 19:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-21 14:55 - 2015-05-06 19:39 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-21 14:48 - 2024-02-07 14:35 - 000000000 ____D C:\Users\Patrick\Documents\Impots2024
2024-09-21 14:45 - 2015-05-13 19:26 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-21 14:39 - 2017-04-27 19:45 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-21 14:32 - 2020-06-20 15:02 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-21 14:32 - 2020-06-20 15:02 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-05 07:53 - 2015-05-06 19:21 - 000000000 ____D C:\Users\Patrick\AppData\Local\ElevatedDiagnostics
2024-09-02 13:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-09-02 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-08-31 11:46 - 2024-03-05 10:21 - 000000000 ____D C:\Games
2024-08-31 09:35 - 2019-08-03 09:05 - 000000000 ____D C:\Users\Patrick\AppData\Local\cache
2024-08-30 09:05 - 2024-06-18 17:50 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-30 09:05 - 2024-06-18 17:50 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-30 09:05 - 2024-06-18 17:50 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-28 14:12 - 2020-08-16 13:09 - 000000000 ____D C:\Users\Patrick\AppData\Local\D3DSCache
2024-08-28 10:47 - 2021-04-27 16:00 - 000000000 ____D C:\Users\Patrick\AppData\Local\homebank
2024-08-28 10:41 - 2023-01-01 12:20 - 000000000 ____D C:\Users\Patrick\.dbus-keyrings
2024-08-28 10:04 - 2023-06-17 16:12 - 000000000 ____D C:\Users\Patrick\AppData\Local\Malwarebytes
2024-08-27 13:21 - 2019-11-30 11:57 - 000000000 ____D C:\Users\Patrick\AppData\Roaming\calibre
2024-08-27 10:53 - 2016-06-17 18:58 - 000000000 ____D C:\Users\Patrick\AppData\Local\calibre-cache
2024-08-27 10:51 - 2019-11-30 11:58 - 000000000 ____D C:\Users\Patrick\Documents\Calibre Library
2024-08-27 10:40 - 2024-07-31 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2024-08-27 10:40 - 2024-07-31 10:32 - 000000000 ____D C:\Program Files\Calibre2
2024-08-26 13:19 - 2017-10-24 19:49 - 000000000 ____D C:\Users\Patrick\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers ========
1998-04-27 00:00 - 1998-04-27 00:00 - 000570128 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\DAO350.dll
2017-01-15 15:25 - 2017-01-27 20:05 - 000000000 _____ () C:\Users\Patrick\AppData\Roaming\FileIn.cns
2017-01-15 15:25 - 2017-01-27 20:05 - 000000000 _____ () C:\Users\Patrick\AppData\Roaming\FileOut.cns
2017-04-25 17:49 - 2017-04-25 17:49 - 000000261 _____ () C:\Users\Patrick\AppData\Roaming\Installeur OpenSceneryX.plist
2016-10-27 10:15 - 2016-12-08 20:05 - 000139698 _____ () C:\Users\Patrick\AppData\Local\ars.cache
2016-10-27 10:15 - 2016-12-08 20:05 - 000420335 _____ () C:\Users\Patrick\AppData\Local\census.cache
2015-09-20 18:37 - 2017-06-04 17:56 - 000017920 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-27 09:57 - 2016-10-27 09:57 - 000000036 _____ () C:\Users\Patrick\AppData\Local\housecall.guid.cache
2018-12-27 14:54 - 2022-05-15 11:08 - 000000205 _____ () C:\Users\Patrick\AppData\Local\oobelibMkey.log
2024-08-28 10:47 - 2024-08-28 10:47 - 000000802 _____ () C:\Users\Patrick\AppData\Local\recently-used.xbel
2016-11-05 10:58 - 2022-01-08 12:13 - 000007599 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2023-11-08 10:40 - 2023-11-08 10:40 - 000000163 _____ () C:\Users\Patrick\AppData\Local\SystemRestorePoint.info
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================