Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2022 Exécuté par Laurent (administrateur) sur DESKTOP-Q4OA6AC (Gigabyte Technology Co., Ltd. B550M AORUS ELITE) (07-04-2022 11:24:39) Exécuté depuis C:\Users\Laurent\Desktop Profils chargés: Laurent Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.593 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\100.0.1185.29\msedgewebview2.exe <6> (C:\Windows\SysWOW64\runonce.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2112.32.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe (explorer.exe ->) (Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\runonce.exe (explorer.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (runonce.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe (services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\Gigabyte\GService\GCloud.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (WATERFOX LIMITED -> Waterfox Limited) C:\Program Files\Waterfox\waterfox.exe <9> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe [1345104 2021-09-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33681376 2022-03-31] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3146936 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35888256 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2150848 2022-01-24] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2022-02-15] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [7908968 2022-02-03] (Proton Technologies AG -> ) HKU\S-1-5-21-1324647586-1979836659-912804765-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [280952 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2022-04-02] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {03010AA5-7AC9-4FDA-B297-4D515D3A55F4} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1324647586-1979836659-912804765-1002 => C:\Users\Laurent\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier) Task: {0A36AAA4-3886-4D52-A364-D98AB07D0CB7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {0DA2368A-F901-4A9E-9CA2-1C14A6833EB4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {1014C33D-1135-4F15-A315-DB185C9E2FEA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {117BD001-BD41-4945-B9CA-B158777D0F28} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [234880 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {1232D7CF-FC8E-49D2-B900-6058FD237E0E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {17B97A70-C8EC-48EF-BECB-97BACFC7187D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2194A2AE-8C27-4610-95A8-C57687D73363} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [257408 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {234D3FD9-983A-4989-9229-AD886F46A77A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3ECB2CB3-4E5F-400B-90C1-2DB4A3195A49} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {47015D40-88E5-49CE-AFAF-68D365F3D0C6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {63124075-E64C-47B1-A8CE-7FCFFEC1E696} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [17280 2021-04-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {68BC9CBB-3D54-4A7F-8551-F00C827A80AC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {68C73147-33D3-48F7-AC58-7DBDA798121A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6AB4A8FF-063F-4A63-BA95-B371A8468F84} - System32\Tasks\WaterfoxLimited\Waterfox Default Browser Agent 6F940AC27A98DD61 => C:\Program Files\Waterfox\default-browser-agent.exe [680280 2022-03-07] (WATERFOX LIMITED -> Mozilla Foundation) Task: {6C044144-889A-49CF-AB4A-AF83BF45D1E5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {7465A83F-1D74-4289-A88C-FE0E23EF4B9B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {75172538-7774-4BC1-A9AA-3FA040E46F0D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-03-10] (Piriform Software Ltd -> Piriform) Task: {968695A7-42C8-4DE2-BB29-C2925C5B9614} - System32\Tasks\CCleanerSkipUAC - Laurent => C:\Program Files\CCleaner\CCleaner.exe [30053504 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {B66983DF-0CEA-4587-ABEE-C67BBC234B40} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {BE30371A-721F-4097-9528-105929B48261} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1324647586-1979836659-912804765-1002 => C:\Users\Laurent\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {D3C3F004-06C7-440F-8E56-CB2EC759471F} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [20352 2021-10-11] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {E18465B0-F887-4245-BC74-5F355EC6AC09} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {E5ECB1BA-C77C-45A3-8050-DB9AC8269509} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) Task: {F40B9DB0-079B-4EF0-8601-9613E8C179A2} - System32\Tasks\GBTECService => C:\Program Files (x86)\GIGABYTE\GBTECService\LiquidSensord.exe [253312 2021-06-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {FE59AE85-A508-4495-99C1-12F5A5800A31} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [389504 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\..\Interfaces\{462e9600-35d0-49b1-b1da-d8b1a3851536}: [NameServer] 10.38.0.1 Tcpip\..\Interfaces\{c6a303a4-0e66-45a7-b297-d21ad6427b9c}: [NameServer] 103.86.96.100,103.86.99.100 Tcpip\..\Interfaces\{ff1e6a11-ac1a-4d83-942d-822c1d2d471f}: [DhcpNameServer] 192.168.178.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Laurent\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-05] FireFox: ======== FF DefaultProfile: 7unfnia6.68-edition-default FF DefaultProfile: faodxd80.default FF ProfilePath: C:\Users\Laurent\AppData\Roaming\Waterfox\Profiles\7unfnia6.68-edition-default [2022-04-05] FF ProfilePath: C:\Users\Laurent\AppData\Roaming\Waterfox\Profiles\9zl874ot.default-default [2022-04-07] FF Session Restore: Waterfox\Profiles\9zl874ot.default-default -> est activé. FF Extension: (AdBlocker for YouTube™) - C:\Users\Laurent\AppData\Roaming\Waterfox\Profiles\9zl874ot.default-default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2022-04-05] FF Extension: (uBlock Origin) - C:\Users\Laurent\AppData\Roaming\Waterfox\Profiles\9zl874ot.default-default\Extensions\uBlock0@raymondhill.net.xpi [2022-04-06] FF ProfilePath: C:\Users\Laurent\AppData\Roaming\Mozilla\Firefox\Profiles\faodxd80.default [2022-02-18] FF ProfilePath: C:\Users\Laurent\AppData\Roaming\Mozilla\Firefox\Profiles\uh978g10.default-release [2022-04-07] FF Session Restore: Mozilla\Firefox\Profiles\uh978g10.default-release -> est activé. FF Extension: (Dark Reader) - C:\Users\Laurent\AppData\Roaming\Mozilla\Firefox\Profiles\uh978g10.default-release\Extensions\addon@darkreader.org.xpi [2022-03-15] FF Extension: (uBlock Origin) - C:\Users\Laurent\AppData\Roaming\Mozilla\Firefox\Profiles\uh978g10.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-04-02] FF Extension: (Bitwarden) - C:\Users\Laurent\AppData\Roaming\Mozilla\Firefox\Profiles\uh978g10.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2022-03-23] FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2022-04-02] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-03-08] (EasyAntiCheat Oy -> Epic Games, Inc) R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [147840 2022-01-25] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2017-03-09] (FUTUREMARK INC -> Futuremark) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-02-15] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2022-02-15] (GOG Sp. z o.o. -> GOG.com) S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [16768 2021-06-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Fichier non signé] R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2021-06-07] (nordvpn s.a. -> TEFINCOM S.A.) R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [281464 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.) S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [127360 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2563288 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481824 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts) S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [119912 2022-02-03] (Proton Technologies AG -> ) S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [65640 2022-02-03] (Proton Technologies AG -> ) S3 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [50792 2022-02-03] (Proton Technologies AG -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6207696 2022-03-31] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [27256 2022-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) R3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [41480 2022-01-19] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-01-26] (Microsoft Windows -> Microsoft Corporation) R2 NDivert; C:\Program Files\NordVPN\6.44.5.0\Drivers\NDivert.sys [130392 2022-02-09] (nordvpn s.a. -> Nordvpn S.A.) R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [44928 2022-02-08] (nordvpn s.a. -> TEFINCOM S.A.) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG) S1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2022-04-01] (Realtek Semiconductor Corp. -> Realtek) R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project) R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [439544 2022-03-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-15] (Microsoft Windows -> Microsoft Corporation) R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-01-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S2 CLFCL5.21; \SystemRoot\System32\drivers\CLFCL5.21\000.fcl [X] S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-04-07 11:20 - 2022-04-07 11:20 - 008540344 _____ (Malwarebytes) C:\Users\Laurent\Desktop\adwcleaner_8.3.1.exe 2022-04-07 11:20 - 2022-04-07 11:20 - 000000000 ____D C:\AdwCleaner 2022-04-07 11:18 - 2022-04-07 11:18 - 000025060 _____ C:\Users\Laurent\Desktop\ZHPFix.txt 2022-04-07 11:15 - 2022-04-07 11:15 - 000000860 _____ C:\Users\Laurent\Desktop\ZHPFix2.lnk 2022-04-07 11:13 - 2022-04-07 11:13 - 001769112 _____ (Nicolas Coolman) C:\Users\Laurent\Desktop\ZHPFix2.exe 2022-04-07 07:21 - 2022-04-07 07:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2022-04-07 07:21 - 2022-04-07 07:21 - 000000000 ____D C:\Program Files\qBittorrent 2022-04-07 07:03 - 2022-04-07 07:03 - 000044548 _____ C:\Users\Laurent\Desktop\Addition.txt 2022-04-07 07:03 - 2022-04-07 07:03 - 000036903 _____ C:\Users\Laurent\Desktop\Shortcut.txt 2022-04-07 07:02 - 2022-04-07 11:24 - 000023172 _____ C:\Users\Laurent\Desktop\FRST.txt 2022-04-07 07:01 - 2022-04-07 11:24 - 000000000 ____D C:\FRST 2022-04-07 07:00 - 2022-04-07 07:00 - 000398459 _____ C:\Users\Laurent\Desktop\ZHPDiag.html 2022-04-07 07:00 - 2022-04-07 07:00 - 000324029 _____ C:\Users\Laurent\Desktop\ZHPDiag.txt 2022-04-07 06:58 - 2022-04-07 06:58 - 002365440 _____ (Farbar) C:\Users\Laurent\Desktop\FRST64.exe 2022-04-07 06:56 - 2022-04-07 06:56 - 003482312 _____ (Nicolas Coolman) C:\Users\Laurent\ZHPSuite.exe 2022-04-05 17:57 - 2022-04-05 17:57 - 000000975 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox.lnk 2022-04-05 17:57 - 2022-04-05 17:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\WaterfoxLimited 2022-04-05 17:57 - 2022-04-05 17:57 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\Waterfox 2022-04-05 17:57 - 2022-04-05 17:57 - 000000000 ____D C:\Users\Laurent\AppData\Local\Waterfox 2022-04-05 17:57 - 2022-04-05 17:57 - 000000000 ____D C:\ProgramData\WaterfoxLimited 2022-04-05 17:57 - 2022-04-05 17:57 - 000000000 ____D C:\Program Files\Waterfox 2022-04-05 17:31 - 2022-04-05 17:31 - 000000000 ____D C:\Users\Laurent\AppData\Local\AMDSoftwareInstaller 2022-04-05 17:22 - 2022-04-05 18:08 - 000000000 ____D C:\WINDOWS\Minidump 2022-04-05 16:44 - 2022-04-05 17:25 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-04-05 06:20 - 2022-04-05 06:20 - 000000000 ___HD C:\$WinREAgent 2022-04-04 18:20 - 2022-04-07 11:15 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\ZHP 2022-04-04 18:20 - 2022-04-07 11:15 - 000000000 ____D C:\Users\Laurent\AppData\Local\ZHP 2022-04-04 18:20 - 2022-04-07 06:56 - 000000726 _____ C:\Users\Laurent\Desktop\ZHPSuite.lnk 2022-04-04 18:19 - 2022-04-04 18:19 - 003481240 _____ (Nicolas Coolman) C:\Users\Laurent\Desktop\ZHPSuite.exe 2022-04-04 07:51 - 2022-04-04 07:51 - 000000000 ____D C:\Users\Laurent\Documents\MAXON 2022-04-04 07:51 - 2022-04-04 07:51 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\Maxon 2022-04-04 07:50 - 2022-04-04 07:51 - 000000000 ____D C:\Users\Laurent\Desktop\cinebench_r23-200_en_197870_64 2022-04-04 07:44 - 2022-04-04 07:44 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2022-04-03 16:13 - 2022-04-03 16:13 - 023562480 _____ (OCCT - Ocbase - Adrien Mercier) C:\Users\Laurent\Desktop\OCCT.exe 2022-04-03 07:35 - 2022-04-03 07:35 - 000000000 ____D C:\Users\Laurent\AppData\Local\BattlEye 2022-04-02 15:19 - 2022-04-02 15:19 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk 2022-04-02 15:19 - 2022-04-02 15:19 - 000000000 ____D C:\Users\Laurent\Documents\Rainmeter 2022-04-02 15:19 - 2022-04-02 15:19 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\Rainmeter 2022-04-02 15:19 - 2022-04-02 15:19 - 000000000 ____D C:\Program Files\Rainmeter 2022-04-02 11:56 - 2022-04-02 11:56 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\The Creative Assembly 2022-04-01 18:54 - 2022-04-01 18:53 - 000070560 _____ (Realtek) C:\WINDOWS\system32\Drivers\rtf64x64.sys 2022-03-31 18:55 - 2022-03-31 18:55 - 002550832 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2022-03-31 18:55 - 2022-03-31 18:55 - 002080992 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2022-03-31 18:55 - 2022-03-31 18:55 - 000372736 _____ C:\WINDOWS\system32\hwreqchk.dll 2022-03-31 18:55 - 2022-03-31 18:55 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-03-31 18:55 - 2022-03-31 18:55 - 000032768 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2022-03-31 18:55 - 2022-03-31 18:55 - 000015018 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-03-28 19:18 - 2022-03-28 19:19 - 001590685 _____ C:\Users\Laurent\Downloads\MFL71757402_00_QSG.pdf 2022-03-26 15:41 - 2022-03-26 15:41 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\LibreOffice 2022-03-26 15:39 - 2022-03-26 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.3 2022-03-26 15:38 - 2022-03-26 15:39 - 000000000 ____D C:\Program Files\LibreOffice 2022-03-24 20:08 - 2022-03-17 18:33 - 000047792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001905904 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-03-24 20:07 - 2022-03-18 07:43 - 001905904 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-03-24 20:07 - 2022-03-18 07:43 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-03-24 20:07 - 2022-03-18 07:43 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-03-24 20:07 - 2022-03-18 07:43 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001209400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-03-24 20:07 - 2022-03-18 07:43 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-03-24 20:07 - 2022-03-18 07:40 - 000795704 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-03-24 20:07 - 2022-03-18 07:40 - 000715944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2022-03-24 20:07 - 2022-03-18 07:40 - 000636480 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 002121688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 001600680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 001529936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 001175696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 000981648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 000792208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-03-24 20:07 - 2022-03-18 07:39 - 000712664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2022-03-24 20:07 - 2022-03-18 07:38 - 008610472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-03-24 20:07 - 2022-03-18 07:38 - 007713872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-03-24 20:07 - 2022-03-18 07:38 - 005729752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2022-03-24 20:07 - 2022-03-18 07:38 - 005101528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-03-24 20:07 - 2022-03-18 07:38 - 002931856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-03-24 20:07 - 2022-03-18 07:38 - 000456872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2022-03-24 20:07 - 2022-03-18 07:36 - 000850088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2022-03-24 20:07 - 2022-03-18 07:35 - 006458872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2022-03-24 20:07 - 2022-03-17 18:33 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb 2022-03-23 20:08 - 2022-03-23 20:08 - 000000000 ____D C:\Users\Laurent\AppData\Local\UL 2022-03-23 20:08 - 2022-03-23 20:08 - 000000000 ____D C:\ProgramData\UL 2022-03-23 20:01 - 2022-03-23 20:01 - 000089356 _____ C:\ProgramData\agent.uninstall.1648058434.bdinstall.v2.bin 2022-03-22 20:21 - 2022-03-22 20:21 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-03-21 08:29 - 2022-04-04 07:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2022-03-21 08:29 - 2022-04-04 07:44 - 000000000 ____D C:\Program Files\CPUID 2022-03-20 19:49 - 2022-03-23 20:15 - 000000022 _____ C:\WINDOWS\GPU-Z.INI 2022-03-20 19:49 - 2022-03-20 19:49 - 000000000 ____D C:\Users\Laurent\AppData\Local\Futuremark 2022-03-20 19:47 - 2022-03-23 20:20 - 000000000 ____D C:\Users\Laurent\Documents\3DMark 2022-03-20 19:47 - 2022-03-23 20:14 - 000000000 ____D C:\Program Files\Futuremark 2022-03-20 10:21 - 2022-03-20 10:21 - 000000000 ____D C:\Users\Laurent\.oracle_jre_usage 2022-03-20 10:21 - 2022-03-20 10:21 - 000000000 ____D C:\Users\Laurent Std\.oracle_jre_usage 2022-03-20 10:21 - 2022-03-20 10:21 - 000000000 ____D C:\ProgramData\Futuremark 2022-03-20 10:21 - 2022-03-20 10:21 - 000000000 ____D C:\Program Files (x86)\Futuremark 2022-03-19 17:30 - 2022-03-19 17:30 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\Comms 2022-03-19 17:15 - 2022-03-19 17:15 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1324647586-1979836659-912804765-1002 2022-03-19 17:15 - 2022-03-19 17:15 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1324647586-1979836659-912804765-1002 2022-03-19 17:15 - 2022-03-19 17:15 - 000002419 _____ C:\Users\Laurent Std\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-03-19 17:15 - 2022-03-19 17:15 - 000000000 ___RD C:\Users\Laurent Std\OneDrive 2022-03-19 17:15 - 2022-03-19 17:15 - 000000000 ___HD C:\$Windows.~WS 2022-03-19 17:15 - 2022-03-19 17:15 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\PlaceholderTileLogoFolder 2022-03-19 17:13 - 2022-03-19 17:30 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\Packages 2022-03-19 17:13 - 2022-03-19 17:19 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\D3DSCache 2022-03-19 17:13 - 2022-03-19 17:15 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\NVIDIA Corporation 2022-03-19 17:13 - 2022-03-19 17:13 - 000002352 _____ C:\Users\Laurent Std\Desktop\Microsoft Edge.lnk 2022-03-19 17:13 - 2022-03-19 17:13 - 000002276 _____ C:\Users\Laurent Std\Desktop\Google Chrome.lnk 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Roaming\Adobe 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\VirtualStore 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\Publishers 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\NVIDIA 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\Google 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\AppData\Local\ConnectedDevicesPlatform 2022-03-19 17:13 - 2022-03-19 17:13 - 000000000 ____D C:\Users\Laurent Std\ansel 2022-03-19 17:09 - 2022-03-19 17:38 - 000000000 ____D C:\ESD 2022-03-19 17:08 - 2022-03-19 17:08 - 000000000 ____D C:\$WINDOWS.~BT 2022-03-19 08:33 - 2022-03-19 08:33 - 000000000 ____D C:\My Games 2022-03-18 20:26 - 2022-03-18 20:26 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-18 20:26 - 2022-03-18 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2022-03-18 20:26 - 2022-02-10 08:18 - 002859520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2022-03-18 20:26 - 2022-02-10 08:18 - 002201800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2022-03-18 20:26 - 2022-02-10 08:18 - 001295872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2022-03-18 20:26 - 2022-02-10 08:18 - 000168648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2022-03-18 20:26 - 2022-02-10 08:18 - 000144584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2022-03-18 20:26 - 2022-02-10 08:18 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2022-03-18 20:24 - 2022-02-10 08:18 - 000048552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2022-03-18 20:24 - 2022-02-10 08:18 - 000043408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys 2022-03-13 15:59 - 2022-03-20 10:21 - 000000000 ____D C:\Users\Laurent Std 2022-03-13 15:59 - 2022-03-13 15:59 - 000000020 ___SH C:\Users\Laurent Std\ntuser.ini 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Voisinage réseau 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Voisinage d'impression 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Modèles 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Mes documents 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Menu Démarrer 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Documents\Mes vidéos 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Documents\Mes images 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\Documents\Ma musique 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2022-03-13 15:59 - 2022-03-13 15:59 - 000000000 _SHDL C:\Users\Laurent Std\AppData\Local\Historique 2022-03-13 15:59 - 2021-06-05 14:04 - 000001281 _____ C:\Users\Laurent Std\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2022-03-13 15:59 - 2021-06-05 14:04 - 000000407 _____ C:\Users\Laurent Std\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2022-03-13 15:57 - 2022-03-13 15:57 - 000423484 _____ C:\ProgramData\cl.uninstall.1647179529.bdinstall.v2.bin 2022-03-11 09:38 - 2022-03-12 19:28 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\dvdcss 2022-03-09 21:15 - 2022-03-09 21:15 - 000029592 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys 2022-03-08 18:14 - 2022-04-03 07:35 - 000000000 ____D C:\Users\Laurent\AppData\Local\My Games 2022-03-08 15:16 - 2022-03-08 15:18 - 000000000 ____D C:\Users\Laurent\AppData\Local\babl-0.1 2022-03-08 15:16 - 2022-03-08 15:16 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\GIMP 2022-03-08 15:16 - 2022-03-08 15:16 - 000000000 ____D C:\Users\Laurent\AppData\Local\GIMP 2022-03-08 15:16 - 2022-03-08 15:16 - 000000000 ____D C:\Users\Laurent\AppData\Local\gegl-0.4 2022-03-08 15:16 - 2022-03-08 15:16 - 000000000 ____D C:\Users\Laurent\.cache ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-04-07 11:23 - 2022-01-15 16:44 - 000000000 ____D C:\Users\Laurent\AppData\LocalLow\Mozilla 2022-04-07 11:20 - 2022-02-09 09:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-04-07 11:20 - 2022-01-25 06:55 - 000000000 ____D C:\Program Files\CCleaner 2022-04-07 11:19 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-04-07 11:19 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-04-07 11:18 - 2022-01-18 17:47 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\qBittorrent 2022-04-07 11:18 - 2022-01-18 17:24 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\molotov 2022-04-07 11:18 - 2022-01-16 13:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-04-07 11:18 - 2022-01-15 16:38 - 000000000 ____D C:\ProgramData\NVIDIA 2022-04-07 11:18 - 2022-01-15 16:35 - 000012288 ___SH C:\DumpStack.log.tmp 2022-04-07 11:18 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-04-07 11:18 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-04-07 10:59 - 2022-01-16 13:26 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-04-07 10:59 - 2021-06-05 20:15 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat 2022-04-07 10:59 - 2021-06-05 20:15 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat 2022-04-07 10:59 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF 2022-04-07 10:58 - 2022-01-25 06:55 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-04-07 08:15 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-04-07 06:56 - 2022-01-16 13:19 - 000000000 ____D C:\Users\Laurent 2022-04-06 16:54 - 2022-01-16 13:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-04-06 08:29 - 2022-01-15 16:39 - 000000000 ____D C:\Users\Laurent\AppData\Local\D3DSCache 2022-04-05 18:08 - 2022-01-23 18:49 - 000000000 ____D C:\Users\Laurent\AppData\Local\CrashDumps 2022-04-05 18:08 - 2022-01-16 12:13 - 000000000 ____D C:\Program Files (x86)\Steam 2022-04-05 18:07 - 2022-01-15 17:07 - 000000000 ____D C:\Users\Laurent\AppData\Local\Google 2022-04-05 18:07 - 2022-01-15 17:07 - 000000000 ____D C:\Program Files (x86)\Google 2022-04-05 17:58 - 2022-01-15 16:44 - 000000000 ____D C:\ProgramData\Mozilla 2022-04-05 17:57 - 2022-01-15 16:44 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\Mozilla 2022-04-05 17:32 - 2022-01-15 16:49 - 000000000 ____D C:\AMD 2022-04-05 17:25 - 2022-01-15 16:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-04-05 17:23 - 2022-01-16 13:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-04-05 17:23 - 2022-01-15 16:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-04-05 16:40 - 2022-01-15 16:43 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-04-04 19:20 - 2022-01-16 17:12 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\vlc 2022-04-03 15:47 - 2022-01-16 21:16 - 000000000 ____D C:\Users\Laurent\AppData\Local\Ubisoft Game Launcher 2022-04-03 07:35 - 2022-01-16 21:20 - 000000000 ____D C:\Users\Laurent\Documents\My Games 2022-04-03 06:57 - 2022-01-15 16:35 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-04-02 18:45 - 2022-01-15 16:54 - 000000000 ____D C:\Users\Laurent\AppData\Local\NVIDIA Corporation 2022-04-02 18:43 - 2022-01-26 19:16 - 000000000 ____D C:\Users\Laurent\AppData\Local\MK11 2022-04-02 11:56 - 2022-01-18 17:55 - 000000000 ____D C:\Users\Laurent\AppData\Local\EpicGamesLauncher 2022-04-02 11:56 - 2022-01-18 17:55 - 000000000 ____D C:\Users\Laurent\AppData\Local\Epic Games 2022-04-02 10:44 - 2022-02-11 13:22 - 000000000 ____D C:\Program Files\Epic Games 2022-04-02 08:25 - 2022-01-19 06:41 - 000000000 ____D C:\Program Files (x86)\Realtek 2022-04-02 08:25 - 2022-01-19 06:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-03-31 19:03 - 2022-01-16 13:18 - 000498880 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-03-31 19:02 - 2021-06-05 20:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\DiagTrack 2022-03-31 19:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-03-31 18:57 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-03-31 18:55 - 2022-01-16 13:21 - 003102208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-03-28 17:25 - 2022-03-06 21:02 - 000000000 ____D C:\Users\Laurent\AppData\Local\NordVPN 2022-03-28 17:25 - 2022-03-06 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec 2022-03-28 17:25 - 2022-03-06 21:02 - 000000000 ____D C:\Program Files\NordVPN 2022-03-28 17:24 - 2022-03-06 21:02 - 000000000 ____D C:\Program Files\NordUpdater 2022-03-24 20:09 - 2022-01-15 16:50 - 000000000 ____D C:\Users\Laurent\AppData\Local\NVIDIA 2022-03-24 20:07 - 2022-01-15 16:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-03-23 20:56 - 2022-01-15 16:43 - 000509296 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2022-03-23 20:56 - 2022-01-15 16:43 - 000492912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2022-03-23 20:20 - 2022-01-15 16:49 - 000000000 ____D C:\ProgramData\Package Cache 2022-03-22 20:20 - 2021-06-05 14:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-03-19 17:38 - 2022-01-16 12:45 - 000000000 ___DC C:\WINDOWS\Panther 2022-03-19 17:29 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-03-19 17:15 - 2022-01-16 13:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-03-19 17:15 - 2022-01-15 16:39 - 000000000 ____D C:\ProgramData\Packages 2022-03-19 17:13 - 2022-01-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-03-18 20:26 - 2022-01-15 16:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-03-18 20:26 - 2022-01-15 16:38 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-03-18 07:35 - 2022-01-15 16:52 - 007611808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2022-03-17 18:33 - 2022-01-15 16:52 - 000134832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2022-03-15 07:27 - 2022-01-15 16:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-03-13 15:52 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-03-10 06:43 - 2022-01-19 06:24 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d80acaf6c3793b 2022-03-10 06:43 - 2022-01-16 13:21 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-03-09 20:39 - 2022-01-15 16:42 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-03-09 20:38 - 2022-01-15 16:42 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-03-08 18:14 - 2022-01-16 21:20 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\EasyAntiCheat 2022-03-08 17:51 - 2022-01-16 12:15 - 000000000 ____D C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam ==================== Fichiers à la racine de certains dossiers ======== 2022-04-07 06:56 - 2022-04-07 06:56 - 003482312 _____ (Nicolas Coolman) C:\Users\Laurent\ZHPSuite.exe ==================== SigCheckExt ========================= 2021-10-06 15:29 - 2021-10-06 15:29 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll 2019-12-07 11:09 - 2019-12-07 11:09 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe 2021-10-06 15:29 - 2021-10-06 15:29 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcAntiTheftApi.dll 2021-10-06 15:29 - 2021-10-06 15:29 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandlerPS.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DucUpdateAgent.dll 2022-01-16 12:11 - 2022-01-16 12:11 - 001652736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe 2019-12-07 11:09 - 2019-12-07 11:09 - 000072192 _____ C:\WINDOWS\system32\nettraceex.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OcpUpdateAgent.dll 2021-10-06 15:30 - 2021-10-06 15:30 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-10-06 15:29 - 2021-10-06 15:29 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-10-06 15:30 - 2021-10-06 15:30 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_QuickActions.dll 2022-01-16 12:11 - 2022-01-16 12:11 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2019-12-07 11:08 - 2019-12-07 11:08 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateHeartbeat.dll 2022-01-16 12:11 - 2022-01-16 12:11 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-12-07 11:08 - 2019-12-07 11:08 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcManaged.dll 2021-10-06 15:29 - 2021-10-06 15:29 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsInternal.ComposableShell.ComposerFramework.dll 2019-12-07 11:08 - 2019-12-07 11:08 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsInternal.ComposableShell.DesktopHosting.dll 2022-01-16 12:11 - 2022-01-16 12:11 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscadminui.exe 2021-10-06 15:30 - 2021-10-06 15:30 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll 2021-10-06 15:31 - 2021-10-06 15:31 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll 2022-01-16 12:11 - 2022-01-16 12:11 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscadminui.exe 2022-04-07 06:56 - 2022-04-07 06:56 - 003482312 _____ (Nicolas Coolman) C:\Users\Laurent\ZHPSuite.exe 2022-04-07 06:58 - 2022-04-07 06:58 - 002365440 _____ (Farbar) C:\Users\Laurent\Desktop\FRST64.exe 2022-04-07 11:13 - 2022-04-07 11:13 - 001769112 _____ (Nicolas Coolman) C:\Users\Laurent\Desktop\ZHPFix2.exe 2022-04-04 18:19 - 2022-04-04 18:19 - 003481240 _____ (Nicolas Coolman) C:\Users\Laurent\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================