Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2024
Exécuté par Michel (administrateur) sur DESKTOP-4N5V02F (ASUS System Product Name) (09-12-2024 09:15:33)
Exécuté depuis C:\Users\ordic\Desktop\FRST64.exe
Profils chargés: Michel
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.4541 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\LGHUB\lghub_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe <6>
(C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\ordic\AppData\Local\Programs\Opera\114.0.5282.235\opera_crashreporter.exe
(explorer.exe ->) (ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP3LAK.EXE
(explorer.exe ->) (IDRIX SARL -> IDRIX) C:\Program Files\VeraCrypt\VeraCrypt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe <65>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(nssm\nssm.exe ->) (OpenJS Foundation -> Node.js) C:\Users\ordic\AppData\Local\nodejs\node.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) () [Fichier non signé] C:\Windows\System32\nssm\nssm.exe
(services.exe ->) (ABBYY PRODUCTION LLC -> ABBYY Production LLC) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.4.1\ABService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
(services.exe ->) (Cyberghost SRL -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (GuinpinSoft inc) [Fichier non signé] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_d0ba3dc7378fedf6\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_289adb86c54e3a76\Intel_PIE_Service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_af39e9e3e46451d8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (VMware Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24102.48.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(spool\drivers\x64\3\CNAP3LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABISWD.EXE <2>
(svchost.exe ->) (Antibody Software Limited -> Antibody Software) C:\Program Files\WieFile\WizFile64.exe
(svchost.exe ->) (ASCOMP Software GmbH -> ASCOMP Software GmbH) C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe [1994128 2024-04-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1073144 2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
HKLM\...\Run: [CNAP3 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP3LAK.EXE [228520 2012-06-14] (CANON INC. -> CANON INC.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2752312 2023-02-06] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [Opera Stable] => C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe [1573784 2024-12-02] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417696 2024-09-18] (Cyberghost SRL -> CyberGhost S.R.L.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\Update Notifier\QMxNetworkSync.exe [1024336 2022-12-20] (MAGIX Software GmbH -> MAGIX)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [f3d982516fff56ad03059f303c64ef1c] => C:\Program Files\DVDFab\DVDFab 13\LiveUpdate.exe [7737872 2023-11-16] (DVDFab Software Inc. -> DVDFab Inc.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Pas de fichier)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [ABBYY Screenshot Reader Bonus] => C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe [941376 2015-09-01] (ABBYY Production LLC -> ABBYY Production LLC)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [MicrosoftEdgeAutoLaunch_9E690F9975BD04185215969FA82CA1C3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-12-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22365592 2024-11-14] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\MountPoints2: {29ec6496-8d26-11ee-9724-806e6f6e6963} - "E:\Launcher.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\Windows\system32\CNCENPM6.dll [152064 2013-01-31] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CNAP3 Monitor: C:\Windows\system32\CNAP3SMD.DLL [1470464 2014-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.109\Installer\chrmstp.exe [2024-12-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.97\Installer\chrmstp.exe [2024-12-04] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{C6CB981E-DB30-4876-8639-109F8933582C}] -> C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\132.1.75.76\Installer\chrmstp.exe [2024-12-05] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BackupMaker.lnk [2023-11-29]
ShortcutTarget: BackupMaker.lnk -> C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe (ASCOMP Software GmbH -> ASCOMP Software GmbH)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Core Temp.lnk [2023-11-29]
ShortcutTarget: Core Temp.lnk -> C:\Program Files\Core Temp\Core Temp.exe (ALCPU -> ALCPU)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Corel PaintShop Pro.lnk [2023-11-29]
ShortcutTarget: Corel PaintShop Pro.lnk -> C:\Program Files (x86)\Corel\Corel PaintShop Pro 2022\Corel PaintShop Pro.exe (Corel Corporation -> Corel, Inc.)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2023-11-29]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [Fichier non signé]
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VeraCrypt.lnk [2023-11-29]
ShortcutTarget: VeraCrypt.lnk -> C:\Program Files\VeraCrypt\VeraCrypt.exe (IDRIX SARL -> IDRIX)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-11-28]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {B3DE5774-9F0F-402F-B53D-82489F99D31E} - System32\Tasks\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [681568 2007-01-10] (Apple Computer, Inc. -> Apple Computer, Inc.)
Task: {6D38296C-C421-4BA7-8819-515513BD3624} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [361320 2024-03-11] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {F2035881-CF6C-453B-BF2E-451F90958C03} - System32\Tasks\ASUS\Armoury Crate Service Task_CountDown => C:\ProgramData\ASUS\FestsEffect\data\CountDown\CountDown.exe [108504 2023-10-31] (ASUSTeK COMPUTER INC. -> )
Task: {7B656EBF-7A6C-4CDF-B371-8E7299B3142E} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1809256 2024-03-11] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {B41BD8A1-DA1C-42A0-8850-CBF41763F688} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1da2136f0ede816 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {31FB55C9-77D4-4B9A-8CB9-70AB8C3DFC62} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {22D509D8-389F-40B2-927F-A34EECD13BCB} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2024-01-18] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {DABE3F74-F85E-404A-A5C4-70B1B0721209} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1261928 2023-12-07] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {1FC10422-AD57-4FF1-AC72-0EEA0F6EF1E0} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Pas de fichier)
Task: {D662190E-975B-4D93-AC9C-E89EE1297CCD} - System32\Tasks\BackUp_Maker-Michel => C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe [11657832 2024-11-17] (ASCOMP Software GmbH -> ASCOMP Software GmbH)
Task: {D85876E6-D479-476A-8C23-B7FC7621C5A2} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{87A2AE36-A46B-4790-914D-0692D83EFEAB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {14B6E98C-D718-498D-BC2C-1EB8BA11EA52} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{0D76B7ED-F364-4441-B727-2C6EB18CCDA4} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {FBE2C496-AB43-4743-BF73-2F0EE07BE8C4} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {79A88278-5A0C-48B3-BBBF-5E6348C03869} - System32\Tasks\Core Temp Autostart Michel => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {239AD049-6FC1-4820-8BFE-25DCCDEFFDE6} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {4B60B9FA-90E7-4140-A13D-51B3BFCA5E53} - System32\Tasks\CorelUpdateHelperTask-F4F217AABFD323BE6183C17C40B21197 => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {7F53EE29-B47F-4683-88D4-626574F501B0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{9F145D9B-D331-4808-A9BF-EB2EBA07BB36} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {B08F8C7E-881E-4A70-8D25-EFCB2260C1E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8DFD89B-1C63-486B-BF21-BF4D161406AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7350C499-7534-4D54-B011-9C46D7568841} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76FA2A46-9266-464D-8941-9D5F5CAF15F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12D41E9E-59F9-459A-970A-62727FE92084} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3333672 2024-11-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C5051AE4-CD5C-4DAA-915F-03577C127781} - System32\Tasks\Opera scheduled Autoupdate 1701176653 => C:\Users\ordic\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software)
Task: {EBAA04B9-86B9-4203-9369-C28E23A75E6C} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\VideoCutter 1.17\VideoCutter.exe [2547200 2019-07-25] (Moo0) [Fichier non signé]
Task: {BD6D5155-33CD-4BD9-923B-3EC3DF45C524} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {00F40BCD-73D9-4F47-849B-E02A0AA1E770} - System32\Tasks\WizFile => C:\Program Files\WieFile\WizFile64.exe [11135616 2023-02-27] (Antibody Software Limited -> Antibody Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0104774e-2b61-4315-a147-8cf53b9e49b7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0104774e-2b61-4315-a147-8cf53b9e49b7}: [DhcpDomain] home
Tcpip\..\Interfaces\{398d59f9-8ad0-4399-9fe1-6b9cbaabbc14}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{398d59f9-8ad0-4399-9fe1-6b9cbaabbc14}: [DhcpDomain] home
Tcpip\..\Interfaces\{989f084e-e01b-45ec-a390-034da98ffaa3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{989f084e-e01b-45ec-a390-034da98ffaa3}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-08]
Edge Session Restore: Default -> est activé.
Edge Extension: (Google Docs hors connexion) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-04]
Edge Extension: (Edge relevant text changes) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
Edge Extension: (DipiTabsToTheFront Plus) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oemokhnklcgpdiifncejiangpfbhcoba [2024-05-21]
Edge Extension: (Google Sheets) - C:\Extension\6.3.1._0 [2024-12-08]
FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2288617496-1674908155-242909765-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR Profile: C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default [2024-12-08]
CHR Notifications: Default -> hxxps://epargnant.amundi-ee.com; hxxps://www.zone-telechargement.al
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Docs hors connexion) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-07]
CHR Extension: (Tabs to Front v2) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiojfifkpjkhcdjfgekmfobhfdohlecg [2024-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-30]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2288617496-1674908155-242909765-1001) OperaStable - "C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe"
Brave:
=======
BRA Profile: C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-12-08]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-06-22]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-06-22]
BRA Extension: (Brave NTP background images) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-03-23]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-06-22]
BRA Extension: (Brave Ads Resources) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2024-06-22]
BRA Extension: (Wallet Data Files Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-15]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-06-22]
BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2024-06-22]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-06-22]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-11-30]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-06-22]
BRA Extension: (Brave NTP sponsored images) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2024-06-22]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-06-22]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-11-30]
StartMenuInternet: Brave Nightly - C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\brave.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [764216 2013-08-15] (ABBYY PRODUCTION LLC -> ABBYY Production LLC)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5328200 2024-05-26] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe [907112 2023-12-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [502120 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1204688 2024-12-09] (ASUSTeK COMPUTER INC. -> )
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.4.1\ABService.exe [1109232 2024-09-19] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 bcef68c6-c429-4f1c-b0ee-04c3e976b82c; C:\Windows\System32\nssm\nssm.exe [331264 2014-08-31] () [Fichier non signé] <==== ATTENTION
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.97\elevation_service.exe [2738704 2024-12-04] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveNightlyElevationService; C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\132.1.75.76\elevation_service.exe [2753040 2024-12-05] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe [9728 2023-11-30] (GuinpinSoft inc) [Fichier non signé]
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69088 2024-09-18] (Cyberghost SRL -> CyberGhost S.R.L.)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2024-04-02] (DTS, Inc. -> DTS Inc.)
R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [32448 2023-08-22] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 EPMVssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{51008A89-A054-4DB1-86DA-767CD7CDC104} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2023-06-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-28] (HP Inc. -> HP Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11712920 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-10-30] (The Document Foundation -> The Document Foundation)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
R2 logi_lamparray_service; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe [11177064 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9441760 2024-12-08] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-12-08] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_af39e9e3e46451d8\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2022872 2024-04-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [2004352 2023-03-15] (Synology Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2024-04-29] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2024-12-06] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2024-12-06] (AOMEI International Network Limited -> )
R3 aqnic650; C:\Windows\System32\drivers\aqnic650.sys [234776 2021-07-21] (Marvell Semiconductor Inc -> Marvell Semiconductor Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [59344 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-05-05] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-05-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\Windows\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2024-10-25] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34520 2023-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_f00467d5bba0b3ef\e2f.sys [526520 2022-06-02] (Intel Corporation -> Intel Corporation)
R3 e2fnexpress; C:\Windows\System32\DriverStore\FileRepository\e2fn.inf_amd64_d9445744f52b5b9b\e2fn.sys [1410688 2023-11-27] (Intel Corporation -> Intel Corporation)
S3 ebrntdrv; C:\Windows\system32\ebrntdrv.sys [27728 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 epmdkdrv; C:\Windows\system32\epmdkdrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [30136 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [76344 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\Windows\system32\drivers\EUEDKEPM.sys [24656 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R2 hcmon; C:\Windows\system32\DRIVERS\hcmon.sys [72144 2023-08-08] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1606816 2023-07-24] (Intel Corporation -> Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54888 2024-07-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 ITEUcmCxClient; C:\Windows\System32\drivers\ITEUcmCxClient.sys [81672 2023-11-27] (ITE Tech. Inc. -> ITE Tech. Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2023-12-20] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-18] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray.sys [89192 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl1352c711; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5D27808D-DAD3-4C6F-8A26-07716A1E9753}\MpKslDrv.sys [267552 2024-12-09] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 R0FanControl; C:\Program Files\FanControl\FanControl.sys [14544 2024-12-08] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [813112 2023-09-29] (Microsoft Windows Hardware Compatibility Publisher -> IDRIX)
R0 vmci; C:\Windows\System32\drivers\vmci.sys [104888 2023-06-14] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R1 vmkbd3; C:\Windows\system32\DRIVERS\vmkbd.sys [60344 2023-10-10] (VMware, Inc. -> VMware, Inc.)
R3 VMnetAdapter; C:\Windows\system32\DRIVERS\vmnetadapter.sys [31120 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [53704 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\DRIVERS\vmnetuserif.sys [30664 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 vmx86; C:\Windows\system32\DRIVERS\vmx86.sys [100776 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [88976 2023-06-14] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2024-01-21] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
S3 cpuz158; \??\C:\Windows\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-09 09:15 - 2024-12-09 09:15 - 000042303 _____ C:\Users\ordic\Desktop\FRST.txt
2024-12-09 09:14 - 2024-12-09 09:15 - 000000000 ____D C:\FRST
2024-12-09 09:12 - 2024-12-09 09:12 - 002402304 _____ (Farbar) C:\Users\ordic\Desktop\FRST64.exe
2024-12-09 09:02 - 2024-12-09 09:02 - 000826260 _____ C:\Windows\system32\perfh00C.dat
2024-12-09 09:02 - 2024-12-09 09:02 - 000162582 _____ C:\Windows\system32\perfc00C.dat
2024-12-08 20:28 - 2024-12-08 20:28 - 000001549 _____ C:\Users\ordic\Desktop\Malwarebytes Compte-rendu d’analyse 2024-12-08 192435.txt
2024-12-08 20:16 - 2024-12-08 20:16 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-12-08 20:16 - 2024-12-08 20:16 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-12-08 20:14 - 2024-12-08 20:14 - 000002305 _____ C:\Users\ordic\Desktop\AdwCleaner[C05].txt
2024-12-08 20:10 - 2024-12-08 20:10 - 000068945 _____ C:\Users\ordic\Desktop\ZHPCleaner.txt
2024-12-08 20:07 - 2024-12-08 20:07 - 000068931 _____ C:\Users\ordic\Desktop\ZHPCleaner (R).txt
2024-12-08 20:02 - 2024-12-08 20:02 - 000070026 _____ C:\Users\ordic\Desktop\ZHPCleaner (S).txt
2024-12-08 19:58 - 2024-12-08 19:58 - 000000875 _____ C:\Users\ordic\Desktop\ZHPCleaner.lnk
2024-12-08 19:57 - 2024-12-08 19:57 - 002741720 _____ (Malwarebytes) C:\Users\ordic\Downloads\MBSetup.exe
2024-12-08 19:53 - 2024-12-08 19:53 - 003364552 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPCleaner.exe
2024-12-07 09:34 - 2024-12-07 09:34 - 000447716 _____ C:\Users\ordic\Desktop\ZHPDiag.txt
2024-12-07 09:30 - 2024-12-08 20:07 - 000000000 ____D C:\Users\ordic\AppData\Roaming\ZHP
2024-12-07 09:30 - 2024-12-08 19:58 - 000000000 ____D C:\Users\ordic\AppData\Local\ZHP
2024-12-07 09:29 - 2024-12-07 09:29 - 003539144 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPSuite.exe
2024-12-07 00:25 - 2024-12-07 00:25 - 000000000 ___HD C:\AomeiRecovery
2024-12-06 23:01 - 2024-12-06 23:01 - 000000361 _____ C:\am_pe_log.txt
2024-12-06 22:54 - 2024-12-06 22:54 - 000001024 ____H C:\SYSTAG.BIN
2024-12-06 22:53 - 2024-12-09 08:55 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-12-06 22:53 - 2024-12-09 08:55 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-12-06 22:53 - 2024-12-06 22:53 - 000172928 _____ C:\Windows\system32\ammntdrv.sys
2024-12-06 22:53 - 2024-12-06 22:53 - 000032176 _____ C:\Windows\system32\amwrtdrv.sys
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\ProgramData\Aomei
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\Program Files (x86)\AOMEI
2024-12-06 22:53 - 2024-04-29 17:21 - 000051120 _____ C:\Windows\system32\ambakdrv.sys
2024-12-06 22:52 - 2024-12-07 00:27 - 000000000 ____D C:\ProgramData\AomeiBR
2024-12-04 16:11 - 2024-12-04 16:11 - 000000000 ____D C:\Windows-11_20241101
2024-11-25 08:31 - 2024-12-08 20:21 - 000000000 ___HD C:\Windows\SysWOW64\microsofts
2024-11-17 12:34 - 2024-11-17 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 24.2
2024-11-16 18:29 - 2024-11-07 19:11 - 002060664 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 002060664 _____ C:\Windows\system32\vulkaninfo.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-11-16 18:29 - 2024-11-07 19:11 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 001452408 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 001452408 _____ C:\Windows\system32\vulkan-1.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 000477832 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 000374408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 001554600 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 001114792 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 000669832 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 000505504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 025450672 _____ C:\Windows\system32\nvidia-pcc.exe
2024-11-16 18:29 - 2024-11-07 19:06 - 002184840 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001634464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001208968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001041544 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 000863392 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-11-16 18:29 - 2024-11-07 19:06 - 000800904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 017736864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 016811664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 006953104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 005435016 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 003807368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 000461960 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-11-16 18:29 - 2024-11-07 19:04 - 005910192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-11-16 18:29 - 2024-11-07 19:04 - 000853648 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-11-16 18:29 - 2024-11-07 19:03 - 007159088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-11-16 18:29 - 2024-11-07 19:03 - 006236288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-11-16 18:29 - 2024-11-07 03:41 - 000132703 _____ C:\Windows\system32\nvinfo.pb
2024-11-16 18:28 - 2024-11-16 18:28 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-11-16 18:28 - 2024-11-16 18:28 - 000001430 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2024-11-16 18:28 - 2024-11-16 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-11-16 18:28 - 2024-11-08 01:29 - 003074088 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-11-16 18:28 - 2024-11-08 01:29 - 002369064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-11-15 15:03 - 2024-11-15 15:03 - 020718832 _____ (FreeFileSync.org ) C:\Users\ordic\Downloads\FreeFileSync_13.8_[Donation_Edition]_Windows_Setup.exe
2024-11-15 15:03 - 2024-11-15 15:03 - 000000500 _____ C:\Users\ordic\Downloads\FreeFileSync_13.8_[Donation_Edition]_Windows_Setup.key
2024-11-15 15:02 - 2024-11-15 15:06 - 000000000 ____D C:\Users\ordic\AppData\Roaming\FreeFileSync
2024-11-15 15:02 - 2024-11-15 15:03 - 000001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000001017 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000987 _____ C:\Users\Public\Desktop\RealTimeSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000000 ____D C:\ProgramData\FreeFileSync
2024-11-14 20:56 - 2024-11-14 20:56 - 000000837 _____ C:\Users\Public\Desktop\UCheck.lnk
2024-11-14 20:26 - 2024-11-14 20:26 - 000001657 _____ C:\Users\ordic\Desktop\World of Tanks EU.lnk
2024-11-14 19:05 - 2024-12-06 14:01 - 000000000 ____D C:\Users\ordic\AppData\Roaming\lghub
2024-11-14 19:05 - 2024-11-14 19:05 - 000000928 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2024-11-14 19:05 - 2024-11-14 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-11-14 19:05 - 2024-11-14 19:05 - 000000000 ____D C:\Program Files\LGHUB
2024-11-14 19:04 - 2024-11-14 19:05 - 000000000 ____D C:\ProgramData\LGHUB
2024-11-14 19:00 - 2024-11-14 19:00 - 000000000 ____D C:\Users\ordic\AppData\Local\Sentry
2024-11-14 18:56 - 2024-11-14 18:56 - 000000000 ____D C:\Users\ordic\AppData\Roaming\LGHUB_BKP
2024-11-10 21:37 - 2024-11-10 21:37 - 000000000 ____D C:\Users\ordic\AppData\Local\INetHistory
2024-11-07 22:42 - 2024-11-07 22:42 - 000000432 __RSH C:\ProgramData\ntuser.pol
2024-11-04 22:08 - 2024-11-04 22:09 - 000001407 _____ C:\Users\ordic\Desktop\Draw.io.lnk
2024-11-04 22:07 - 2024-11-04 22:07 - 000001842 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\draw.io.lnk
2024-11-04 22:07 - 2024-11-04 22:07 - 000000000 ____D C:\Users\ordic\AppData\Local\draw.io-updater
2024-11-02 21:59 - 2024-11-02 21:59 - 000001473 _____ C:\Users\ordic\Desktop\FanControl 2.lnk
2024-11-02 21:57 - 2024-12-08 10:39 - 000000000 ____D C:\Program Files\FanControl
2024-11-02 00:51 - 2024-11-02 00:51 - 000000000 ___HD C:\$Windows.~WS
2024-11-02 00:34 - 2024-11-02 00:35 - 000000000 ____D C:\Program Files\Windows MediaCreationTool
2024-11-01 19:59 - 2024-11-01 19:59 - 000000000 ____D C:\Users\ordic\AppData\Roaming\iTubeGo
2024-11-01 11:35 - 2024-11-02 21:58 - 000001473 _____ C:\Users\ordic\Desktop\FanControl.lnk
2024-11-01 11:25 - 2024-11-01 11:29 - 000000000 ____D C:\Windows\SysWOW64\directx
2024-11-01 11:25 - 2024-11-01 11:28 - 000000000 ___HD C:\Windows\msdownld.tmp
2024-10-27 11:10 - 2024-11-04 22:07 - 000000000 ____D C:\Program Files\draw.io
2024-10-27 11:10 - 2024-10-27 18:05 - 000000000 ____D C:\Users\ordic\AppData\Roaming\draw.io
2024-10-25 19:15 - 2024-10-25 19:15 - 000000000 ____D C:\Program Files (x86)\Eidos Interactive
2024-10-24 20:46 - 2024-12-08 20:21 - 000000000 ___HD C:\Users\ordic\AppData\Roaming\Item
2024-10-23 13:21 - 2024-10-23 13:21 - 000026650 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-10-23 13:20 - 2024-10-23 13:20 - 000026650 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-10-20 21:05 - 2024-09-28 19:32 - 000125048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-10-18 20:18 - 2024-10-18 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shutter Encoder
2024-10-18 20:14 - 2024-10-18 20:18 - 111913861 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.5 Windows 64bits.exe
2024-10-11 06:33 - 2024-10-11 06:33 - 000001615 _____ C:\ProgramData\QueryAllDevice.xml
2024-09-18 18:06 - 2024-09-18 18:06 - 000073040 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys
2024-09-18 18:06 - 2024-09-18 18:06 - 000044880 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys
2024-09-17 18:18 - 2024-12-05 22:30 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave Nightly.lnk
2024-09-17 18:09 - 2024-09-17 18:09 - 012407464 _____ (Tim Kosse) C:\Users\ordic\Downloads\FileZilla_3.67.1_win64-setup.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-09 09:15 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-09 09:05 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp
2024-12-09 09:02 - 2023-11-27 14:14 - 001841248 _____ C:\Windows\system32\PerfStringBackup.INI
2024-12-09 09:02 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF
2024-12-09 08:55 - 2023-12-16 20:40 - 000000000 ____D C:\ProgramData\VMware
2024-12-09 08:55 - 2023-11-28 10:48 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-09 08:55 - 2023-11-27 14:09 - 001256320 _____ () C:\Windows\system32\wpbbin.exe
2024-12-09 08:55 - 2023-11-27 14:09 - 001204688 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-12-09 08:55 - 2023-11-27 14:09 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-09 08:55 - 2023-11-27 14:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-12-09 08:55 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ServiceState
2024-12-08 23:00 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-12-08 22:05 - 2023-11-27 14:09 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-12-08 20:34 - 2024-08-22 21:54 - 000000000 ____D C:\Users\ordic\AppData\Local\Malwarebytes
2024-12-08 20:28 - 2023-11-27 14:34 - 000000000 ____D C:\Users\ordic\AppData\Local\D3DSCache
2024-12-08 20:21 - 2024-04-28 10:36 - 000000000 ___HD C:\Windows\system32\webs
2024-12-08 20:21 - 2024-04-20 05:11 - 000000000 ___HD C:\Users\ordic\AppData\Roaming\Intel
2024-12-08 20:21 - 2023-11-28 16:58 - 000000000 ____D C:\Users\ordic\Desktop\U_VIDEO
2024-12-08 20:21 - 2023-11-28 16:51 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-12-08 20:16 - 2024-08-22 21:50 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-12-08 20:16 - 2024-08-22 21:50 - 000000000 ____D C:\Program Files\Malwarebytes
2024-12-08 20:16 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-12-08 18:53 - 2023-11-28 16:40 - 000000000 ____D C:\Users\ordic\AppData\Local\CyberGhost
2024-12-08 11:25 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness
2024-12-08 10:36 - 2023-11-28 17:49 - 000003338 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-F4F217AABFD323BE6183C17C40B21197
2024-12-08 10:26 - 2023-11-28 15:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-08 10:13 - 2023-12-20 12:00 - 000000000 ____D C:\Users\ordic\AppData\Local\LGHUB
2024-12-07 10:10 - 2023-11-28 15:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-07 00:42 - 2023-11-28 16:50 - 000000000 ____D C:\Users\ordic\Desktop\U_SYSTEME
2024-12-07 00:28 - 2023-11-28 17:53 - 000000000 ____D C:\Users\ordic\AppData\Local\CrashDumps
2024-12-07 00:27 - 2023-11-27 14:40 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Microsoft\MMC
2024-12-06 22:52 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-06 19:35 - 2023-11-27 14:09 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-06 14:01 - 2023-12-20 12:00 - 000000000 ____D C:\Users\ordic\AppData\Roaming\G HUB
2024-12-06 13:01 - 2023-11-28 17:13 - 000000000 ____D C:\Users\ordic\AppData\Roaming\vlc
2024-12-06 12:23 - 2023-12-02 22:48 - 000000000 ____D C:\Users\ordic\AppData\Roaming\HandBrake
2024-12-06 12:00 - 2024-02-25 21:13 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Subtitle Edit
2024-12-06 06:51 - 2023-11-28 19:14 - 000000000 ____D C:\Program Files\HandBrake
2024-12-06 05:14 - 2023-11-30 18:14 - 000002327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-04 20:25 - 2023-11-30 18:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-12-04 18:17 - 2023-11-29 14:16 - 000000000 ____D C:\Users\ordic\AppData\Roaming\tixati
2024-12-04 15:02 - 2023-11-27 14:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2024-12-04 15:02 - 2023-11-27 14:37 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-04 15:02 - 2023-11-27 14:37 - 000000000 ____D C:\Program Files\ASUS
2024-12-04 15:02 - 2023-11-27 14:35 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-12-04 09:47 - 2023-11-27 14:34 - 000000000 ____D C:\Users\ordic\AppData\Local\Packages
2024-12-04 09:47 - 2023-11-27 14:10 - 000000000 ____D C:\ProgramData\Packages
2024-12-04 09:46 - 2023-11-27 14:38 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2024-12-03 09:16 - 2023-11-27 14:35 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2288617496-1674908155-242909765-1001
2024-12-03 09:16 - 2023-11-27 14:35 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2288617496-1674908155-242909765-1001
2024-12-03 09:16 - 2023-11-27 14:35 - 000002417 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-02 15:29 - 2023-11-28 14:04 - 000004298 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1701176653
2024-12-02 15:29 - 2023-11-28 14:04 - 000001386 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-11-24 10:29 - 2023-11-27 14:09 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 10:29 - 2023-11-27 14:09 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-22 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-11-22 11:05 - 2023-11-27 14:09 - 000840088 _____ C:\Windows\system32\FNTCACHE.DAT
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\UNP
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\PrintDialog
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Dism
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr
2024-11-22 11:03 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp
2024-11-22 11:02 - 2023-11-27 14:12 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-11-20 21:06 - 2023-11-28 14:00 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Opera Software
2024-11-18 22:52 - 2023-11-27 14:26 - 000000000 ____D C:\Users\ordic
2024-11-17 15:17 - 2023-11-29 16:56 - 000000000 ____D C:\Program Files (x86)\PicPick
2024-11-17 12:34 - 2023-11-28 13:43 - 000000000 ____D C:\Program Files\LibreOffice
2024-11-16 21:10 - 2023-11-28 14:24 - 000000000 ____D C:\Users\ordic\AppData\Local\NVIDIA
2024-11-16 18:29 - 2023-11-28 10:49 - 000000000 ____D C:\Users\ordic\AppData\Local\NVIDIA Corporation
2024-11-16 18:29 - 2023-11-28 10:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-11-16 18:29 - 2023-11-27 14:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-11-16 18:28 - 2023-11-28 10:46 - 000000000 ____D C:\NVIDIA
2024-11-16 18:28 - 2023-11-27 14:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-11-15 15:03 - 2023-11-29 14:45 - 000000000 ____D C:\Program Files\FreeFileSync
2024-11-15 11:35 - 2024-04-08 14:56 - 000000000 ____D C:\Users\ordic\AppData\Roaming\dvdcss
2024-11-14 20:57 - 2023-12-10 17:07 - 000000000 ____D C:\ProgramData\UCheck
2024-11-14 20:56 - 2023-12-10 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2024-11-14 20:56 - 2023-12-10 17:13 - 000000000 ____D C:\Program Files\UCheck
2024-11-14 20:39 - 2024-05-18 10:04 - 000000000 ____D C:\Games
2024-11-14 20:26 - 2024-05-18 09:45 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2024-11-14 19:05 - 2023-11-30 17:00 - 000000000 ____D C:\ProgramData\LogiShrd
2024-11-13 13:32 - 2023-11-27 15:28 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-11-13 13:32 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-11-13 12:33 - 2023-11-27 15:13 - 000000000 ____D C:\Windows\system32\MRT
2024-11-13 12:30 - 2023-11-27 15:13 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-12 11:29 - 2024-07-05 21:12 - 000000000 ____D C:\Extension
2024-11-11 20:33 - 2023-11-28 17:00 - 000001173 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2024-11-11 20:33 - 2023-11-28 17:00 - 000000000 ____D C:\Program Files\MediaInfo
2024-11-11 10:05 - 2024-06-08 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizFile
2024-11-11 10:05 - 2024-06-08 18:43 - 000000000 ____D C:\Program Files\WizFile
==================== Fichiers à la racine de certains dossiers ========
2024-04-26 11:04 - 2024-04-26 11:04 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-26 13:32 - 2024-05-26 09:24 - 000000082 _____ () C:\Users\Public\log.dat
2023-11-30 06:14 - 2023-11-30 06:14 - 000000171 _____ () C:\Users\ordic\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2023-11-30 11:52 - 2023-11-30 13:28 - 000009400 _____ () C:\Users\ordic\AppData\Roaming\Discus 4 Prefs.ini
==================== SigCheckExt =========================
2024-02-17 14:11 - 2013-01-31 17:21 - 000152064 _____ (CANON INC.) C:\Windows\system32\CNCENPM6.dll
2024-02-17 14:11 - 2013-03-28 23:00 - 000196096 _____ (CANON INC.) C:\Windows\system32\CNCENPR6.dll
2024-02-17 14:11 - 2013-01-31 17:21 - 000105984 _____ (CANON INC.) C:\Windows\system32\CNCENPU6.dll
2023-11-27 15:03 - 2023-11-27 14:50 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\devcon.exe
2023-03-18 16:32 - 2023-03-18 16:32 - 000176128 _____ C:\Windows\system32\FCStdThumbnail.dll
2023-11-30 20:01 - 2023-06-19 13:06 - 000163328 _____ C:\Windows\system32\setupdrvx64.exe
2023-11-30 20:01 - 2022-12-29 13:34 - 000174216 _____ C:\Windows\system32\setupepmdrvx64.exe
2023-11-29 19:46 - 2023-11-29 19:46 - 001005278 _____ C:\Windows\unins000.exe
2024-02-17 14:11 - 2013-01-31 17:21 - 000152064 _____ (CANON INC.) C:\Windows\SysWOW64\CNCENPM6.dll
2024-02-07 14:02 - 1997-04-22 01:00 - 000027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ctl3dv2.dll
2022-10-11 14:40 - 2022-10-11 14:40 - 000120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
1998-03-23 00:00 - 1998-03-23 00:00 - 000041984 _____ C:\Windows\SysWOW64\msh_zwf.dll
2000-03-14 00:00 - 2000-03-14 00:00 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
1997-06-11 19:18 - 1997-06-11 19:18 - 000124960 _____ (Adobe Systems Inc.) C:\Windows\SysWOW64\PDFDDUI.DLL
2024-04-26 11:04 - 2024-04-26 11:04 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-12-09 09:12 - 2024-12-09 09:12 - 002402304 _____ (Farbar) C:\Users\ordic\Desktop\FRST64.exe
2024-12-08 19:53 - 2024-12-08 19:53 - 003364552 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPCleaner.exe
2024-12-07 09:29 - 2024-12-07 09:29 - 003539144 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPSuite.exe
2024-07-14 09:21 - 2024-07-14 09:24 - 109943371 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.3 Windows 64bits.exe
2024-10-18 20:14 - 2024-10-18 20:18 - 111913861 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.5 Windows 64bits.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{280c85ec-92fc-11ef-999e-806e6f6e6963}
{280c85ed-92fc-11ef-999e-806e6f6e6963}
{280c85ee-92fc-11ef-999e-806e6f6e6963}
timeout 1
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {f91942b8-8d25-11ee-ba63-a2201b0e1483}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ec-92fc-11ef-999e-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ed-92fc-11ef-999e-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ee-92fc-11ef-999e-806e6f6e6963}
description UEFI:Network Device
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {f91942ba-8d25-11ee-ba63-a2201b0e1483}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {f91942b8-8d25-11ee-ba63-a2201b0e1483}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {f91942ba-8d25-11ee-ba63-a2201b0e1483}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fc48c164-5da3-11ef-9914-c85ea97356e9}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fc48c164-5da3-11ef-9914-c85ea97356e9}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {f91942b8-8d25-11ee-ba63-a2201b0e1483}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {f91942ba-8d25-11ee-ba63-a2201b0e1483}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {fc48c164-5da3-11ef-9914-c85ea97356e9}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Michel (administrateur) sur DESKTOP-4N5V02F (ASUS System Product Name) (09-12-2024 09:15:33)
Exécuté depuis C:\Users\ordic\Desktop\FRST64.exe
Profils chargés: Michel
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.4541 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\LGHUB\lghub_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe <6>
(C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\ordic\AppData\Local\Programs\Opera\114.0.5282.235\opera_crashreporter.exe
(explorer.exe ->) (ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP3LAK.EXE
(explorer.exe ->) (IDRIX SARL -> IDRIX) C:\Program Files\VeraCrypt\VeraCrypt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe <65>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(nssm\nssm.exe ->) (OpenJS Foundation -> Node.js) C:\Users\ordic\AppData\Local\nodejs\node.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) () [Fichier non signé] C:\Windows\System32\nssm\nssm.exe
(services.exe ->) (ABBYY PRODUCTION LLC -> ABBYY Production LLC) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.4.1\ABService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
(services.exe ->) (Cyberghost SRL -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (GuinpinSoft inc) [Fichier non signé] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_d0ba3dc7378fedf6\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_289adb86c54e3a76\Intel_PIE_Service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_af39e9e3e46451d8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (VMware Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24102.48.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(spool\drivers\x64\3\CNAP3LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABISWD.EXE <2>
(svchost.exe ->) (Antibody Software Limited -> Antibody Software) C:\Program Files\WieFile\WizFile64.exe
(svchost.exe ->) (ASCOMP Software GmbH -> ASCOMP Software GmbH) C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe [1994128 2024-04-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1073144 2021-09-25] (Heidi Computers Ltd -> The Eraser Project)
HKLM\...\Run: [CNAP3 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP3LAK.EXE [228520 2012-06-14] (CANON INC. -> CANON INC.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2752312 2023-02-06] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [Opera Stable] => C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe [1573784 2024-12-02] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417696 2024-09-18] (Cyberghost SRL -> CyberGhost S.R.L.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\Update Notifier\QMxNetworkSync.exe [1024336 2022-12-20] (MAGIX Software GmbH -> MAGIX)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [f3d982516fff56ad03059f303c64ef1c] => C:\Program Files\DVDFab\DVDFab 13\LiveUpdate.exe [7737872 2023-11-16] (DVDFab Software Inc. -> DVDFab Inc.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Pas de fichier)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [ABBYY Screenshot Reader Bonus] => C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe [941376 2015-09-01] (ABBYY Production LLC -> ABBYY Production LLC)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [MicrosoftEdgeAutoLaunch_9E690F9975BD04185215969FA82CA1C3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-12-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22365592 2024-11-14] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2288617496-1674908155-242909765-1001\...\MountPoints2: {29ec6496-8d26-11ee-9724-806e6f6e6963} - "E:\Launcher.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\Windows\system32\CNCENPM6.dll [152064 2013-01-31] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CNAP3 Monitor: C:\Windows\system32\CNAP3SMD.DLL [1470464 2014-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.109\Installer\chrmstp.exe [2024-12-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.97\Installer\chrmstp.exe [2024-12-04] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{C6CB981E-DB30-4876-8639-109F8933582C}] -> C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\132.1.75.76\Installer\chrmstp.exe [2024-12-05] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BackupMaker.lnk [2023-11-29]
ShortcutTarget: BackupMaker.lnk -> C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe (ASCOMP Software GmbH -> ASCOMP Software GmbH)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Core Temp.lnk [2023-11-29]
ShortcutTarget: Core Temp.lnk -> C:\Program Files\Core Temp\Core Temp.exe (ALCPU -> ALCPU)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Corel PaintShop Pro.lnk [2023-11-29]
ShortcutTarget: Corel PaintShop Pro.lnk -> C:\Program Files (x86)\Corel\Corel PaintShop Pro 2022\Corel PaintShop Pro.exe (Corel Corporation -> Corel, Inc.)
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2023-11-29]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [Fichier non signé]
Startup: C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VeraCrypt.lnk [2023-11-29]
ShortcutTarget: VeraCrypt.lnk -> C:\Program Files\VeraCrypt\VeraCrypt.exe (IDRIX SARL -> IDRIX)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-11-28]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {B3DE5774-9F0F-402F-B53D-82489F99D31E} - System32\Tasks\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [681568 2007-01-10] (Apple Computer, Inc. -> Apple Computer, Inc.)
Task: {6D38296C-C421-4BA7-8819-515513BD3624} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [361320 2024-03-11] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {F2035881-CF6C-453B-BF2E-451F90958C03} - System32\Tasks\ASUS\Armoury Crate Service Task_CountDown => C:\ProgramData\ASUS\FestsEffect\data\CountDown\CountDown.exe [108504 2023-10-31] (ASUSTeK COMPUTER INC. -> )
Task: {7B656EBF-7A6C-4CDF-B371-8E7299B3142E} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1809256 2024-03-11] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {B41BD8A1-DA1C-42A0-8850-CBF41763F688} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1da2136f0ede816 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {31FB55C9-77D4-4B9A-8CB9-70AB8C3DFC62} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {22D509D8-389F-40B2-927F-A34EECD13BCB} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2024-01-18] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {DABE3F74-F85E-404A-A5C4-70B1B0721209} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1261928 2023-12-07] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {1FC10422-AD57-4FF1-AC72-0EEA0F6EF1E0} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Pas de fichier)
Task: {D662190E-975B-4D93-AC9C-E89EE1297CCD} - System32\Tasks\BackUp_Maker-Michel => C:\Program Files (x86)\ASCOMP Software\BackUp Maker\bkmaker.exe [11657832 2024-11-17] (ASCOMP Software GmbH -> ASCOMP Software GmbH)
Task: {D85876E6-D479-476A-8C23-B7FC7621C5A2} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{87A2AE36-A46B-4790-914D-0692D83EFEAB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {14B6E98C-D718-498D-BC2C-1EB8BA11EA52} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{0D76B7ED-F364-4441-B727-2C6EB18CCDA4} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {FBE2C496-AB43-4743-BF73-2F0EE07BE8C4} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {79A88278-5A0C-48B3-BBBF-5E6348C03869} - System32\Tasks\Core Temp Autostart Michel => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {239AD049-6FC1-4820-8BFE-25DCCDEFFDE6} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {4B60B9FA-90E7-4140-A13D-51B3BFCA5E53} - System32\Tasks\CorelUpdateHelperTask-F4F217AABFD323BE6183C17C40B21197 => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3774160 2021-01-21] (Corel Corporation -> Corel Corporation)
Task: {7F53EE29-B47F-4683-88D4-626574F501B0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{9F145D9B-D331-4808-A9BF-EB2EBA07BB36} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {B08F8C7E-881E-4A70-8D25-EFCB2260C1E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8DFD89B-1C63-486B-BF21-BF4D161406AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7350C499-7534-4D54-B011-9C46D7568841} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76FA2A46-9266-464D-8941-9D5F5CAF15F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12D41E9E-59F9-459A-970A-62727FE92084} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3333672 2024-11-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C5051AE4-CD5C-4DAA-915F-03577C127781} - System32\Tasks\Opera scheduled Autoupdate 1701176653 => C:\Users\ordic\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software)
Task: {EBAA04B9-86B9-4203-9369-C28E23A75E6C} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\VideoCutter 1.17\VideoCutter.exe [2547200 2019-07-25] (Moo0) [Fichier non signé]
Task: {BD6D5155-33CD-4BD9-923B-3EC3DF45C524} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {00F40BCD-73D9-4F47-849B-E02A0AA1E770} - System32\Tasks\WizFile => C:\Program Files\WieFile\WizFile64.exe [11135616 2023-02-27] (Antibody Software Limited -> Antibody Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0104774e-2b61-4315-a147-8cf53b9e49b7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0104774e-2b61-4315-a147-8cf53b9e49b7}: [DhcpDomain] home
Tcpip\..\Interfaces\{398d59f9-8ad0-4399-9fe1-6b9cbaabbc14}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{398d59f9-8ad0-4399-9fe1-6b9cbaabbc14}: [DhcpDomain] home
Tcpip\..\Interfaces\{989f084e-e01b-45ec-a390-034da98ffaa3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{989f084e-e01b-45ec-a390-034da98ffaa3}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-08]
Edge Session Restore: Default -> est activé.
Edge Extension: (Google Docs hors connexion) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-04]
Edge Extension: (Edge relevant text changes) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
Edge Extension: (DipiTabsToTheFront Plus) - C:\Users\ordic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oemokhnklcgpdiifncejiangpfbhcoba [2024-05-21]
Edge Extension: (Google Sheets) - C:\Extension\6.3.1._0 [2024-12-08]
FireFox:
========
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2288617496-1674908155-242909765-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR Profile: C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default [2024-12-08]
CHR Notifications: Default -> hxxps://epargnant.amundi-ee.com; hxxps://www.zone-telechargement.al
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Docs hors connexion) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-07]
CHR Extension: (Tabs to Front v2) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiojfifkpjkhcdjfgekmfobhfdohlecg [2024-09-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ordic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-30]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2288617496-1674908155-242909765-1001) OperaStable - "C:\Users\ordic\AppData\Local\Programs\Opera\opera.exe"
Brave:
=======
BRA Profile: C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-12-08]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-06-22]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-06-22]
BRA Extension: (Brave NTP background images) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-03-23]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-06-22]
BRA Extension: (Brave Ads Resources) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2024-06-22]
BRA Extension: (Wallet Data Files Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-15]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-06-22]
BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2024-06-22]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-06-22]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-11-30]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-06-22]
BRA Extension: (Brave NTP sponsored images) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2024-06-22]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-06-22]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\ordic\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-11-30]
StartMenuInternet: Brave Nightly - C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\brave.exe
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [764216 2013-08-15] (ABBYY PRODUCTION LLC -> ABBYY Production LLC)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5328200 2024-05-26] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe [907112 2023-12-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [502120 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-11-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1204688 2024-12-09] (ASUSTeK COMPUTER INC. -> )
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.4.1\ABService.exe [1109232 2024-09-19] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 bcef68c6-c429-4f1c-b0ee-04c3e976b82c; C:\Windows\System32\nssm\nssm.exe [331264 2014-08-31] () [Fichier non signé] <==== ATTENTION
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.97\elevation_service.exe [2738704 2024-12-04] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveNightlyElevationService; C:\Program Files\BraveSoftware\Brave-Browser-Nightly\Application\132.1.75.76\elevation_service.exe [2753040 2024-12-05] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe [9728 2023-11-30] (GuinpinSoft inc) [Fichier non signé]
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69088 2024-09-18] (Cyberghost SRL -> CyberGhost S.R.L.)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2024-04-02] (DTS, Inc. -> DTS Inc.)
R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [32448 2023-08-22] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 EPMVssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{51008A89-A054-4DB1-86DA-767CD7CDC104} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2023-06-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-28] (HP Inc. -> HP Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11712920 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-10-30] (The Document Foundation -> The Document Foundation)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
R2 logi_lamparray_service; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe [11177064 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9441760 2024-12-08] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-12-08] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_af39e9e3e46451d8\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2022872 2024-04-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [2004352 2023-03-15] (Synology Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2024-04-29] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2024-12-06] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2024-12-06] (AOMEI International Network Limited -> )
R3 aqnic650; C:\Windows\System32\drivers\aqnic650.sys [234776 2021-07-21] (Marvell Semiconductor Inc -> Marvell Semiconductor Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [59344 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-05-05] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-05-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 busenum; C:\Windows\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2024-10-25] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34520 2023-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_f00467d5bba0b3ef\e2f.sys [526520 2022-06-02] (Intel Corporation -> Intel Corporation)
R3 e2fnexpress; C:\Windows\System32\DriverStore\FileRepository\e2fn.inf_amd64_d9445744f52b5b9b\e2fn.sys [1410688 2023-11-27] (Intel Corporation -> Intel Corporation)
S3 ebrntdrv; C:\Windows\system32\ebrntdrv.sys [27728 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 epmdkdrv; C:\Windows\system32\epmdkdrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [30136 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [76344 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\Windows\system32\drivers\EUEDKEPM.sys [24656 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R2 hcmon; C:\Windows\system32\DRIVERS\hcmon.sys [72144 2023-08-08] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1606816 2023-07-24] (Intel Corporation -> Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54888 2024-07-01] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 ITEUcmCxClient; C:\Windows\System32\drivers\ITEUcmCxClient.sys [81672 2023-11-27] (ITE Tech. Inc. -> ITE Tech. Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2023-12-20] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-18] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray.sys [89192 2024-11-14] (Logitech Inc -> Logitech, Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl1352c711; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5D27808D-DAD3-4C6F-8A26-07716A1E9753}\MpKslDrv.sys [267552 2024-12-09] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 R0FanControl; C:\Program Files\FanControl\FanControl.sys [14544 2024-12-08] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [813112 2023-09-29] (Microsoft Windows Hardware Compatibility Publisher -> IDRIX)
R0 vmci; C:\Windows\System32\drivers\vmci.sys [104888 2023-06-14] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R1 vmkbd3; C:\Windows\system32\DRIVERS\vmkbd.sys [60344 2023-10-10] (VMware, Inc. -> VMware, Inc.)
R3 VMnetAdapter; C:\Windows\system32\DRIVERS\vmnetadapter.sys [31120 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [53704 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\DRIVERS\vmnetuserif.sys [30664 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 vmx86; C:\Windows\system32\DRIVERS\vmx86.sys [100776 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [88976 2023-06-14] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2024-01-21] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
S3 cpuz158; \??\C:\Windows\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-09 09:15 - 2024-12-09 09:15 - 000042303 _____ C:\Users\ordic\Desktop\FRST.txt
2024-12-09 09:14 - 2024-12-09 09:15 - 000000000 ____D C:\FRST
2024-12-09 09:12 - 2024-12-09 09:12 - 002402304 _____ (Farbar) C:\Users\ordic\Desktop\FRST64.exe
2024-12-09 09:02 - 2024-12-09 09:02 - 000826260 _____ C:\Windows\system32\perfh00C.dat
2024-12-09 09:02 - 2024-12-09 09:02 - 000162582 _____ C:\Windows\system32\perfc00C.dat
2024-12-08 20:28 - 2024-12-08 20:28 - 000001549 _____ C:\Users\ordic\Desktop\Malwarebytes Compte-rendu d’analyse 2024-12-08 192435.txt
2024-12-08 20:16 - 2024-12-08 20:16 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-12-08 20:16 - 2024-12-08 20:16 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-12-08 20:14 - 2024-12-08 20:14 - 000002305 _____ C:\Users\ordic\Desktop\AdwCleaner[C05].txt
2024-12-08 20:10 - 2024-12-08 20:10 - 000068945 _____ C:\Users\ordic\Desktop\ZHPCleaner.txt
2024-12-08 20:07 - 2024-12-08 20:07 - 000068931 _____ C:\Users\ordic\Desktop\ZHPCleaner (R).txt
2024-12-08 20:02 - 2024-12-08 20:02 - 000070026 _____ C:\Users\ordic\Desktop\ZHPCleaner (S).txt
2024-12-08 19:58 - 2024-12-08 19:58 - 000000875 _____ C:\Users\ordic\Desktop\ZHPCleaner.lnk
2024-12-08 19:57 - 2024-12-08 19:57 - 002741720 _____ (Malwarebytes) C:\Users\ordic\Downloads\MBSetup.exe
2024-12-08 19:53 - 2024-12-08 19:53 - 003364552 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPCleaner.exe
2024-12-07 09:34 - 2024-12-07 09:34 - 000447716 _____ C:\Users\ordic\Desktop\ZHPDiag.txt
2024-12-07 09:30 - 2024-12-08 20:07 - 000000000 ____D C:\Users\ordic\AppData\Roaming\ZHP
2024-12-07 09:30 - 2024-12-08 19:58 - 000000000 ____D C:\Users\ordic\AppData\Local\ZHP
2024-12-07 09:29 - 2024-12-07 09:29 - 003539144 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPSuite.exe
2024-12-07 00:25 - 2024-12-07 00:25 - 000000000 ___HD C:\AomeiRecovery
2024-12-06 23:01 - 2024-12-06 23:01 - 000000361 _____ C:\am_pe_log.txt
2024-12-06 22:54 - 2024-12-06 22:54 - 000001024 ____H C:\SYSTAG.BIN
2024-12-06 22:53 - 2024-12-09 08:55 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-12-06 22:53 - 2024-12-09 08:55 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-12-06 22:53 - 2024-12-06 22:53 - 000172928 _____ C:\Windows\system32\ammntdrv.sys
2024-12-06 22:53 - 2024-12-06 22:53 - 000032176 _____ C:\Windows\system32\amwrtdrv.sys
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\ProgramData\Aomei
2024-12-06 22:53 - 2024-12-06 22:53 - 000000000 ____D C:\Program Files (x86)\AOMEI
2024-12-06 22:53 - 2024-04-29 17:21 - 000051120 _____ C:\Windows\system32\ambakdrv.sys
2024-12-06 22:52 - 2024-12-07 00:27 - 000000000 ____D C:\ProgramData\AomeiBR
2024-12-04 16:11 - 2024-12-04 16:11 - 000000000 ____D C:\Windows-11_20241101
2024-11-25 08:31 - 2024-12-08 20:21 - 000000000 ___HD C:\Windows\SysWOW64\microsofts
2024-11-17 12:34 - 2024-11-17 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 24.2
2024-11-16 18:29 - 2024-11-07 19:11 - 002060664 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 002060664 _____ C:\Windows\system32\vulkaninfo.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-11-16 18:29 - 2024-11-07 19:11 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-11-16 18:29 - 2024-11-07 19:11 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 001452408 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 001452408 _____ C:\Windows\system32\vulkan-1.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 000477832 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-11-16 18:29 - 2024-11-07 19:10 - 000374408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 001554600 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 001114792 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 000669832 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-11-16 18:29 - 2024-11-07 19:07 - 000505504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 025450672 _____ C:\Windows\system32\nvidia-pcc.exe
2024-11-16 18:29 - 2024-11-07 19:06 - 002184840 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001634464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001208968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 001041544 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-11-16 18:29 - 2024-11-07 19:06 - 000863392 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-11-16 18:29 - 2024-11-07 19:06 - 000800904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 017736864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 016811664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 006953104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 005435016 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 003807368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-11-16 18:29 - 2024-11-07 19:05 - 000461960 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-11-16 18:29 - 2024-11-07 19:04 - 005910192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-11-16 18:29 - 2024-11-07 19:04 - 000853648 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-11-16 18:29 - 2024-11-07 19:03 - 007159088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-11-16 18:29 - 2024-11-07 19:03 - 006236288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-11-16 18:29 - 2024-11-07 03:41 - 000132703 _____ C:\Windows\system32\nvinfo.pb
2024-11-16 18:28 - 2024-11-16 18:28 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-11-16 18:28 - 2024-11-16 18:28 - 000001430 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2024-11-16 18:28 - 2024-11-16 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-11-16 18:28 - 2024-11-08 01:29 - 003074088 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-11-16 18:28 - 2024-11-08 01:29 - 002369064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-11-15 15:03 - 2024-11-15 15:03 - 020718832 _____ (FreeFileSync.org ) C:\Users\ordic\Downloads\FreeFileSync_13.8_[Donation_Edition]_Windows_Setup.exe
2024-11-15 15:03 - 2024-11-15 15:03 - 000000500 _____ C:\Users\ordic\Downloads\FreeFileSync_13.8_[Donation_Edition]_Windows_Setup.key
2024-11-15 15:02 - 2024-11-15 15:06 - 000000000 ____D C:\Users\ordic\AppData\Roaming\FreeFileSync
2024-11-15 15:02 - 2024-11-15 15:03 - 000001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000001017 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000987 _____ C:\Users\Public\Desktop\RealTimeSync.lnk
2024-11-15 15:02 - 2024-11-15 15:03 - 000000000 ____D C:\ProgramData\FreeFileSync
2024-11-14 20:56 - 2024-11-14 20:56 - 000000837 _____ C:\Users\Public\Desktop\UCheck.lnk
2024-11-14 20:26 - 2024-11-14 20:26 - 000001657 _____ C:\Users\ordic\Desktop\World of Tanks EU.lnk
2024-11-14 19:05 - 2024-12-06 14:01 - 000000000 ____D C:\Users\ordic\AppData\Roaming\lghub
2024-11-14 19:05 - 2024-11-14 19:05 - 000000928 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2024-11-14 19:05 - 2024-11-14 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-11-14 19:05 - 2024-11-14 19:05 - 000000000 ____D C:\Program Files\LGHUB
2024-11-14 19:04 - 2024-11-14 19:05 - 000000000 ____D C:\ProgramData\LGHUB
2024-11-14 19:00 - 2024-11-14 19:00 - 000000000 ____D C:\Users\ordic\AppData\Local\Sentry
2024-11-14 18:56 - 2024-11-14 18:56 - 000000000 ____D C:\Users\ordic\AppData\Roaming\LGHUB_BKP
2024-11-10 21:37 - 2024-11-10 21:37 - 000000000 ____D C:\Users\ordic\AppData\Local\INetHistory
2024-11-07 22:42 - 2024-11-07 22:42 - 000000432 __RSH C:\ProgramData\ntuser.pol
2024-11-04 22:08 - 2024-11-04 22:09 - 000001407 _____ C:\Users\ordic\Desktop\Draw.io.lnk
2024-11-04 22:07 - 2024-11-04 22:07 - 000001842 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\draw.io.lnk
2024-11-04 22:07 - 2024-11-04 22:07 - 000000000 ____D C:\Users\ordic\AppData\Local\draw.io-updater
2024-11-02 21:59 - 2024-11-02 21:59 - 000001473 _____ C:\Users\ordic\Desktop\FanControl 2.lnk
2024-11-02 21:57 - 2024-12-08 10:39 - 000000000 ____D C:\Program Files\FanControl
2024-11-02 00:51 - 2024-11-02 00:51 - 000000000 ___HD C:\$Windows.~WS
2024-11-02 00:34 - 2024-11-02 00:35 - 000000000 ____D C:\Program Files\Windows MediaCreationTool
2024-11-01 19:59 - 2024-11-01 19:59 - 000000000 ____D C:\Users\ordic\AppData\Roaming\iTubeGo
2024-11-01 11:35 - 2024-11-02 21:58 - 000001473 _____ C:\Users\ordic\Desktop\FanControl.lnk
2024-11-01 11:25 - 2024-11-01 11:29 - 000000000 ____D C:\Windows\SysWOW64\directx
2024-11-01 11:25 - 2024-11-01 11:28 - 000000000 ___HD C:\Windows\msdownld.tmp
2024-10-27 11:10 - 2024-11-04 22:07 - 000000000 ____D C:\Program Files\draw.io
2024-10-27 11:10 - 2024-10-27 18:05 - 000000000 ____D C:\Users\ordic\AppData\Roaming\draw.io
2024-10-25 19:15 - 2024-10-25 19:15 - 000000000 ____D C:\Program Files (x86)\Eidos Interactive
2024-10-24 20:46 - 2024-12-08 20:21 - 000000000 ___HD C:\Users\ordic\AppData\Roaming\Item
2024-10-23 13:21 - 2024-10-23 13:21 - 000026650 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-10-23 13:20 - 2024-10-23 13:20 - 000026650 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-10-20 21:05 - 2024-09-28 19:32 - 000125048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-10-18 20:18 - 2024-10-18 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shutter Encoder
2024-10-18 20:14 - 2024-10-18 20:18 - 111913861 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.5 Windows 64bits.exe
2024-10-11 06:33 - 2024-10-11 06:33 - 000001615 _____ C:\ProgramData\QueryAllDevice.xml
2024-09-18 18:06 - 2024-09-18 18:06 - 000073040 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys
2024-09-18 18:06 - 2024-09-18 18:06 - 000044880 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys
2024-09-17 18:18 - 2024-12-05 22:30 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave Nightly.lnk
2024-09-17 18:09 - 2024-09-17 18:09 - 012407464 _____ (Tim Kosse) C:\Users\ordic\Downloads\FileZilla_3.67.1_win64-setup.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-09 09:15 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-09 09:05 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp
2024-12-09 09:02 - 2023-11-27 14:14 - 001841248 _____ C:\Windows\system32\PerfStringBackup.INI
2024-12-09 09:02 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF
2024-12-09 08:55 - 2023-12-16 20:40 - 000000000 ____D C:\ProgramData\VMware
2024-12-09 08:55 - 2023-11-28 10:48 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-09 08:55 - 2023-11-27 14:09 - 001256320 _____ () C:\Windows\system32\wpbbin.exe
2024-12-09 08:55 - 2023-11-27 14:09 - 001204688 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-12-09 08:55 - 2023-11-27 14:09 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-09 08:55 - 2023-11-27 14:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-12-09 08:55 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ServiceState
2024-12-08 23:00 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-12-08 22:05 - 2023-11-27 14:09 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-12-08 20:34 - 2024-08-22 21:54 - 000000000 ____D C:\Users\ordic\AppData\Local\Malwarebytes
2024-12-08 20:28 - 2023-11-27 14:34 - 000000000 ____D C:\Users\ordic\AppData\Local\D3DSCache
2024-12-08 20:21 - 2024-04-28 10:36 - 000000000 ___HD C:\Windows\system32\webs
2024-12-08 20:21 - 2024-04-20 05:11 - 000000000 ___HD C:\Users\ordic\AppData\Roaming\Intel
2024-12-08 20:21 - 2023-11-28 16:58 - 000000000 ____D C:\Users\ordic\Desktop\U_VIDEO
2024-12-08 20:21 - 2023-11-28 16:51 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-12-08 20:16 - 2024-08-22 21:50 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-12-08 20:16 - 2024-08-22 21:50 - 000000000 ____D C:\Program Files\Malwarebytes
2024-12-08 20:16 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-12-08 18:53 - 2023-11-28 16:40 - 000000000 ____D C:\Users\ordic\AppData\Local\CyberGhost
2024-12-08 11:25 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness
2024-12-08 10:36 - 2023-11-28 17:49 - 000003338 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-F4F217AABFD323BE6183C17C40B21197
2024-12-08 10:26 - 2023-11-28 15:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-08 10:13 - 2023-12-20 12:00 - 000000000 ____D C:\Users\ordic\AppData\Local\LGHUB
2024-12-07 10:10 - 2023-11-28 15:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-07 00:42 - 2023-11-28 16:50 - 000000000 ____D C:\Users\ordic\Desktop\U_SYSTEME
2024-12-07 00:28 - 2023-11-28 17:53 - 000000000 ____D C:\Users\ordic\AppData\Local\CrashDumps
2024-12-07 00:27 - 2023-11-27 14:40 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Microsoft\MMC
2024-12-06 22:52 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-06 19:35 - 2023-11-27 14:09 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-06 14:01 - 2023-12-20 12:00 - 000000000 ____D C:\Users\ordic\AppData\Roaming\G HUB
2024-12-06 13:01 - 2023-11-28 17:13 - 000000000 ____D C:\Users\ordic\AppData\Roaming\vlc
2024-12-06 12:23 - 2023-12-02 22:48 - 000000000 ____D C:\Users\ordic\AppData\Roaming\HandBrake
2024-12-06 12:00 - 2024-02-25 21:13 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Subtitle Edit
2024-12-06 06:51 - 2023-11-28 19:14 - 000000000 ____D C:\Program Files\HandBrake
2024-12-06 05:14 - 2023-11-30 18:14 - 000002327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-04 20:25 - 2023-11-30 18:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-12-04 18:17 - 2023-11-29 14:16 - 000000000 ____D C:\Users\ordic\AppData\Roaming\tixati
2024-12-04 15:02 - 2023-11-27 14:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2024-12-04 15:02 - 2023-11-27 14:37 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-04 15:02 - 2023-11-27 14:37 - 000000000 ____D C:\Program Files\ASUS
2024-12-04 15:02 - 2023-11-27 14:35 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-12-04 09:47 - 2023-11-27 14:34 - 000000000 ____D C:\Users\ordic\AppData\Local\Packages
2024-12-04 09:47 - 2023-11-27 14:10 - 000000000 ____D C:\ProgramData\Packages
2024-12-04 09:46 - 2023-11-27 14:38 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2024-12-03 09:16 - 2023-11-27 14:35 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2288617496-1674908155-242909765-1001
2024-12-03 09:16 - 2023-11-27 14:35 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2288617496-1674908155-242909765-1001
2024-12-03 09:16 - 2023-11-27 14:35 - 000002417 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-02 15:29 - 2023-11-28 14:04 - 000004298 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1701176653
2024-12-02 15:29 - 2023-11-28 14:04 - 000001386 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-11-24 10:29 - 2023-11-27 14:09 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 10:29 - 2023-11-27 14:09 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-22 11:20 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-11-22 11:05 - 2023-11-27 14:09 - 000840088 _____ C:\Windows\system32\FNTCACHE.DAT
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\UNP
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\PrintDialog
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Dism
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-11-22 11:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr
2024-11-22 11:03 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp
2024-11-22 11:02 - 2023-11-27 14:12 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-11-20 21:06 - 2023-11-28 14:00 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Opera Software
2024-11-18 22:52 - 2023-11-27 14:26 - 000000000 ____D C:\Users\ordic
2024-11-17 15:17 - 2023-11-29 16:56 - 000000000 ____D C:\Program Files (x86)\PicPick
2024-11-17 12:34 - 2023-11-28 13:43 - 000000000 ____D C:\Program Files\LibreOffice
2024-11-16 21:10 - 2023-11-28 14:24 - 000000000 ____D C:\Users\ordic\AppData\Local\NVIDIA
2024-11-16 18:29 - 2023-11-28 10:49 - 000000000 ____D C:\Users\ordic\AppData\Local\NVIDIA Corporation
2024-11-16 18:29 - 2023-11-28 10:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-11-16 18:29 - 2023-11-27 14:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-11-16 18:28 - 2023-11-28 10:46 - 000000000 ____D C:\NVIDIA
2024-11-16 18:28 - 2023-11-27 14:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-11-15 15:03 - 2023-11-29 14:45 - 000000000 ____D C:\Program Files\FreeFileSync
2024-11-15 11:35 - 2024-04-08 14:56 - 000000000 ____D C:\Users\ordic\AppData\Roaming\dvdcss
2024-11-14 20:57 - 2023-12-10 17:07 - 000000000 ____D C:\ProgramData\UCheck
2024-11-14 20:56 - 2023-12-10 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2024-11-14 20:56 - 2023-12-10 17:13 - 000000000 ____D C:\Program Files\UCheck
2024-11-14 20:39 - 2024-05-18 10:04 - 000000000 ____D C:\Games
2024-11-14 20:26 - 2024-05-18 09:45 - 000000000 ____D C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2024-11-14 19:05 - 2023-11-30 17:00 - 000000000 ____D C:\ProgramData\LogiShrd
2024-11-13 13:32 - 2023-11-27 15:28 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-11-13 13:32 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-11-13 12:33 - 2023-11-27 15:13 - 000000000 ____D C:\Windows\system32\MRT
2024-11-13 12:30 - 2023-11-27 15:13 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-12 11:29 - 2024-07-05 21:12 - 000000000 ____D C:\Extension
2024-11-11 20:33 - 2023-11-28 17:00 - 000001173 _____ C:\Users\ordic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2024-11-11 20:33 - 2023-11-28 17:00 - 000000000 ____D C:\Program Files\MediaInfo
2024-11-11 10:05 - 2024-06-08 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizFile
2024-11-11 10:05 - 2024-06-08 18:43 - 000000000 ____D C:\Program Files\WizFile
==================== Fichiers à la racine de certains dossiers ========
2024-04-26 11:04 - 2024-04-26 11:04 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-26 13:32 - 2024-05-26 09:24 - 000000082 _____ () C:\Users\Public\log.dat
2023-11-30 06:14 - 2023-11-30 06:14 - 000000171 _____ () C:\Users\ordic\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2023-11-30 11:52 - 2023-11-30 13:28 - 000009400 _____ () C:\Users\ordic\AppData\Roaming\Discus 4 Prefs.ini
==================== SigCheckExt =========================
2024-02-17 14:11 - 2013-01-31 17:21 - 000152064 _____ (CANON INC.) C:\Windows\system32\CNCENPM6.dll
2024-02-17 14:11 - 2013-03-28 23:00 - 000196096 _____ (CANON INC.) C:\Windows\system32\CNCENPR6.dll
2024-02-17 14:11 - 2013-01-31 17:21 - 000105984 _____ (CANON INC.) C:\Windows\system32\CNCENPU6.dll
2023-11-27 15:03 - 2023-11-27 14:50 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\devcon.exe
2023-03-18 16:32 - 2023-03-18 16:32 - 000176128 _____ C:\Windows\system32\FCStdThumbnail.dll
2023-11-30 20:01 - 2023-06-19 13:06 - 000163328 _____ C:\Windows\system32\setupdrvx64.exe
2023-11-30 20:01 - 2022-12-29 13:34 - 000174216 _____ C:\Windows\system32\setupepmdrvx64.exe
2023-11-29 19:46 - 2023-11-29 19:46 - 001005278 _____ C:\Windows\unins000.exe
2024-02-17 14:11 - 2013-01-31 17:21 - 000152064 _____ (CANON INC.) C:\Windows\SysWOW64\CNCENPM6.dll
2024-02-07 14:02 - 1997-04-22 01:00 - 000027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ctl3dv2.dll
2022-10-11 14:40 - 2022-10-11 14:40 - 000120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
1998-03-23 00:00 - 1998-03-23 00:00 - 000041984 _____ C:\Windows\SysWOW64\msh_zwf.dll
2000-03-14 00:00 - 2000-03-14 00:00 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
1997-06-11 19:18 - 1997-06-11 19:18 - 000124960 _____ (Adobe Systems Inc.) C:\Windows\SysWOW64\PDFDDUI.DLL
2024-04-26 11:04 - 2024-04-26 11:04 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-12-09 09:12 - 2024-12-09 09:12 - 002402304 _____ (Farbar) C:\Users\ordic\Desktop\FRST64.exe
2024-12-08 19:53 - 2024-12-08 19:53 - 003364552 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPCleaner.exe
2024-12-07 09:29 - 2024-12-07 09:29 - 003539144 _____ (Nicolas Coolman) C:\Users\ordic\Desktop\ZHPSuite.exe
2024-07-14 09:21 - 2024-07-14 09:24 - 109943371 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.3 Windows 64bits.exe
2024-10-18 20:14 - 2024-10-18 20:18 - 111913861 _____ (Paul Pacifico ) C:\Users\ordic\Downloads\Shutter Encoder 18.5 Windows 64bits.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{280c85ec-92fc-11ef-999e-806e6f6e6963}
{280c85ed-92fc-11ef-999e-806e6f6e6963}
{280c85ee-92fc-11ef-999e-806e6f6e6963}
timeout 1
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {f91942b8-8d25-11ee-ba63-a2201b0e1483}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ec-92fc-11ef-999e-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ed-92fc-11ef-999e-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {280c85ee-92fc-11ef-999e-806e6f6e6963}
description UEFI:Network Device
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {f91942ba-8d25-11ee-ba63-a2201b0e1483}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {f91942b8-8d25-11ee-ba63-a2201b0e1483}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {f91942ba-8d25-11ee-ba63-a2201b0e1483}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fc48c164-5da3-11ef-9914-c85ea97356e9}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fc48c164-5da3-11ef-9914-c85ea97356e9}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {f91942b8-8d25-11ee-ba63-a2201b0e1483}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {f91942ba-8d25-11ee-ba63-a2201b0e1483}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {fc48c164-5da3-11ef-9914-c85ea97356e9}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================