Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2025 Exécuté par rpgis (administrateur) sur FREDO (Acer Nitro N50-620) (07-02-2025 19:47:54) Exécuté depuis C:\Users\rpgis\OneDrive\Bureau\FRST64.exe Profils chargés: rpgis Plate-forme: Microsoft Windows 11 Famille Version 24H2 26100.2894 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe (C:\Program Files\Google\NearbyShare\nearby_share.exe ->) (Google LLC -> ) C:\Program Files\Google\NearbyShare\crashpad_handler.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\MSTeams_25007.607.3371.8436_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\msedgewebview2.exe <13> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleaner64.exe (Google LLC -> Google) C:\Program Files\Google\NearbyShare\nearby_share.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25007.607.3371.8436_x64__8wekyb3d8bbwe\ms-teams.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3f588d3320db982f\Intel_PIE_Service.exe (services.exe ->) (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f69bde81e5bc91ec\RstMwService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.005.0112.0003\FileSyncHelper.exe (services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.24.8.36\NortonSecurity.exe <2> (services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.24.8.36\nsWscSvc.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvae.inf_amd64_6cfe691434859c61\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25011.11.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.005.0112.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Mirillis Sp. z o.o. -> Mirillis) C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f82b8b1a0b601f77\RtkAudUService64.exe [1343072 2021-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [] => [X] HKLM\...\Run: [Nearby Share] => C:\Program Files\Google\NearbyShare\nearby_share_launcher.exe [3048032 2025-01-24] (Google LLC -> Google) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Avira Security startup helper] => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [262312 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-684664964-2853107246-2488223059-1001\...\Run: [Xvid] => WScript "C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files (x86)\Xvid\CheckUpdate.ps1" [16457 2016-10-17] () [Fichier non signé] HKU\S-1-5-21-684664964-2853107246-2488223059-1001\...\Run: [] => [X] HKU\S-1-5-21-684664964-2853107246-2488223059-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [5007376 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-684664964-2853107246-2488223059-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45368112 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) HKU\S-1-5-21-684664964-2853107246-2488223059-1001\...\Run: [MicrosoftEdgeAutoLaunch_627851D3B871CE5E279583B813A26346] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3923496 2025-01-30] (Microsoft Corporation -> Microsoft Corporation) GroupPolicy-Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {47B5FCCA-5107-45CC-B9AF-C0D5F3A478D5} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto Task: {4FA0EDB7-1D7E-4458-B5C8-FC372606662D} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> ) Task: {170EC903-686E-4DC6-A29C-95C7FE7EF3A5} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> ) Task: {648F9398-E4E6-47AA-81FB-580C0A269747} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {F53A555C-F862-4F64-8786-B8B6A3A05EE5} - System32\Tasks\ActionLauncher_rpgis => C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe [540552 2023-11-27] (Mirillis Sp. z o.o. -> Mirillis) -> C:\Program Files (x86)\Mirillis\Action!\\5 Task: {468EF506-267F-4D3B-959E-CC2BF53ACB75} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.) Task: {3C7B3391-85E2-4EFE-943C-F35E05C459A8} - System32\Tasks\App Explorer => %LOCALAPPDATA%\Host App Service\Engine\HostAppServiceUpdater.exe /LOGON (Pas de fichier) <==== ATTENTION Task: {67FFA6A8-EB3E-4016-A29F-22E501403C64} - System32\Tasks\Avira\System Speedup\Delayed Startup\rpgis\1 => C:\Program Files (x86)\Steam\steam.exe [4435552 2025-01-28] (Valve Corp. -> Valve Corporation) Task: {7344B2D2-836F-4B74-9CA5-D88582878E3C} - System32\Tasks\Avira\System Speedup\Delayed Startup\rpgis\2 => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482128 2022-11-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) Task: {B20E8EF9-52DA-42FD-9E32-469B7CF93EEA} - System32\Tasks\Avira\System Speedup\SecurityTestScheduler => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [262312 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) Task: {8807748D-1F1C-4DD3-A3F9-2F34DA3E72E0} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\System32\sc.exe [102400 2024-10-24] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false Task: {8DD10DF2-A433-48A2-B66E-7B9A02C8CF42} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry Task: {8DD10DF2-A433-48A2-B66E-7B9A02C8CF42} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog Task: {8DD10DF2-A433-48A2-B66E-7B9A02C8CF42} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector Task: {8394AD1D-BF8F-4967-92A4-07094EA2C19D} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [262312 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) Task: {5A46B2EA-24C8-44FA-B2E3-D05287A173D6} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1791192 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) Task: {3767565E-B618-434D-9C39-6B7025C1F2D1} - System32\Tasks\Avira_Security_Update => C:\Windows\System32\net.exe [81920 2024-10-24] (Microsoft Windows -> Microsoft Corporation) Task: {C9681E57-3DCE-4986-9954-3438B34ADEB0} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [36817136 2024-10-09] (Avira Operations GmbH -> Avira Operations GmbH) Task: {FCA0529F-C914-4E75-9316-C18064624E90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) Task: {F3AC4D8B-474D-4EB0-A758-A85375CBCE37} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "14a92e34-813c-42d7-814e-e715fde36271" --version "6.32.0.11432" --silent Task: {82F4A843-DD13-48E7-9770-DB405E328759} - System32\Tasks\CCleanerSkipUAC - rpgis => C:\Program Files\CCleaner\CCleaner.exe [39138608 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) Task: {5127586D-E9AF-49E0-8DB8-9396829FE969} - System32\Tasks\DragonStart => C:\Program Files (x86)\Realtek\Dragon\Dragon.exe [1685800 2020-03-20] (Realtek Semiconductor Corp. -> ) Task: {CF9E23C6-3FE5-4E06-8707-0D2FF82527F0} - System32\Tasks\Google\Quick Share Relaunch => C:\Program Files\Google\NearbyShare\nearby_share_launcher.exe [3048032 2025-01-24] (Google LLC -> Google) Task: {ABEA409E-80DD-44DF-A8AA-EE1C673218FD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{7947787A-840D-464A-B0D9-CCD919EA3596} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC) Task: {1C4B352D-B755-4AA0-9908-C3DA6A929969} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {22C1C036-EA95-47C1-85CC-81358C9020B6} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {FD9F7692-BC2B-462E-A4D0-66D9958AB827} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752104 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) Task: {3D41BA29-01EC-4D76-AFBB-9DBB7414B870} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752104 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) Task: {D30EB6D2-750C-445C-8EB0-0E1E63CA17CA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {4416835C-2105-488F-A6B4-7878E15445CD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312432 2025-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {29BF405E-7A89-45E6-8BAB-547FD3215177} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [194672 2025-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier) Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {EF7D549C-EB53-41D8-BF71-3D03857DAFEA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-01-30] (Mozilla Corporation -> Mozilla Foundation) Task: {12988656-EE8C-4C3C-86FF-5417DEC49F7F} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [593448 2020-04-16] (Acer Incorporated -> Acer Incorporated) Task: {E6BB4423-7CAA-4B15-A95A-96EE4FBDA83A} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Autofix => C:\Program Files\Norton Security\Engine\22.24.8.36\symerr.exe [379024 2024-09-13] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {DEFDBEDE-1198-4785-879F-6EBC754CD040} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Analyzer => C:\Program Files\Norton Security\Engine\22.24.8.36\symerr.exe [379024 2024-09-13] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {E1C4528C-D523-4CB2-9698-E277D92B590A} - System32\Tasks\Norton Security Ultra\Norton Security Ultra Error Processor => C:\Program Files\Norton Security\Engine\22.24.8.36\symerr.exe [379024 2024-09-13] (NortonLifeLock Inc. -> Gen Digital Inc.) Task: {007F28E2-1ED3-4FDA-8DA6-F9A505DA0621} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.24.8.36\WSCStub.exe [646520 2024-09-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {87951D85-5F67-4AEB-B1CB-DAB3861AC286} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {B8669182-0028-4F7A-B966-9540CC7668D6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {371AB6C7-CE80-4723-AA89-69047B480635} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BB6C9D56-D6FE-4791-B42F-8CB6BD6C5E40} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {73EBAD37-0097-4A0A-8FEF-F89775A5965F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9ABC40E0-30D3-4D57-BC4B-5AD0E189D687} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FB1F8368-3BBC-4072-A3AE-8BF80E42A2F9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {542C2322-9896-4D63-9CD4-5DBEA8A0BD7A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D488B153-4499-4D63-BE75-FBC1E7FE154B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2329F878-B6E2-45BA-ADC0-2BC8F65710A8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6F255C65-039C-4B42-8646-AD01A5FBD9E1} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> ) Task: {5A33F055-6035-4E93-99F3-96138B99BB7E} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-22] (Acer Incorporated -> ) Task: {5986AEB8-BDF9-4513-A2A6-90C3C41B9492} - System32\Tasks\Oem\xvpnHelperTask => "%localappdata%\OEM\PromoX\XvpnHelper\XvpnInstaller.exe" /install (Pas de fichier) Task: {3572208F-0F7C-417B-A5E5-72FE5EAB7D38} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {AC01B78D-023B-4D2C-AD42-ECED8A199D0B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-684664964-2853107246-2488223059-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {F76D4E22-167A-4A13-AA58-EDF643B17E51} - System32\Tasks\OneDrive Startup Task-S-1-5-21-684664964-2853107246-2488223059-1001 => C:\Program Files\Microsoft OneDrive\25.005.0112.0003\OneDriveLauncher.exe [447032 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {751BCCE0-BF98-44E6-9D85-7DA4B1B3E299} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-684664964-2853107246-2488223059-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-10-24] (Microsoft Windows -> Microsoft Corporation) Task: {266107E4-3AA6-40F5-B61D-1BD6E80884C0} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {0E3C013D-203E-4028-88E2-235AB18D014C} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Ultra\Upgrade.exe [2353000 2024-09-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {9A098368-C8DE-4547-8E84-44DCE0A2981C} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-30] (Acer Incorporated -> Acer Incorporated) Task: {7F2B7A0D-F463-4F50-B182-50A5EFC88C35} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268520 2021-04-19] (Acer Incorporated -> Acer Incorporated) Task: {D779A22E-27AD-4A14-A0FB-355AC8C454C4} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-04-19] (Acer Incorporated -> Acer Incorporated) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\DragonStart.job => C:\Program Files (x86)\Realtek\Dragon\Dragon.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones) Tcpip\Parameters: [DhcpNameServer] 172.16.1.254 Tcpip\..\Interfaces\{968b3640-dd0d-4fbd-b456-449627298239}: [DhcpNameServer] 172.16.1.254 Tcpip\..\Interfaces\{aec1aefc-0271-44bd-a5d2-f030dcec7b46}: [DhcpNameServer] 172.39.128.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-07] Edge Extension: (Avira Safe Shopping) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-11-03] Edge Extension: (AdBlocker & Privacy Protector) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dlhepclcmjgefcgjjbfdagmjhidhjagk [2024-11-12] Edge Extension: (Avira Password Manager) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-10-22] Edge Extension: (Google Docs hors connexion) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-05] Edge Extension: (Edge relevant text changes) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge Extension: (Add Results) - C:\Users\rpgis\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\olkcmjmnlaepdbemdbbpgpkabemfpand [2024-02-11] Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip] Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle] FireFox: ======== FF DefaultProfile: hftjvqwr.default FF ProfilePath: C:\Users\rpgis\AppData\Roaming\Mozilla\Firefox\Profiles\hftjvqwr.default [2022-11-05] FF ProfilePath: C:\Users\rpgis\AppData\Roaming\Mozilla\Firefox\Profiles\f21ll3os.default-release [2025-02-07] FF Homepage: Mozilla\Firefox\Profiles\f21ll3os.default-release -> hxxps://www.google.com/ FF Extension: (Amazon Assistant) - C:\Users\rpgis\AppData\Roaming\Mozilla\Firefox\Profiles\f21ll3os.default-release\Extensions\abb-acer@amazon.com.xpi [2022-11-02] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json] FF Extension: (Language: Français (French)) - C:\Users\rpgis\AppData\Roaming\Mozilla\Firefox\Profiles\f21ll3os.default-release\Extensions\langpack-fr@firefox.mozilla.org.xpi [2025-01-21] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-01-29] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.21 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.) S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6738360 2024-04-26] (Avira Operations GmbH -> Avira Operations GmbH) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2977248 2024-07-16] (Avira Operations GmbH -> Avira Operations GmbH) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [398816 2024-04-23] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [268376 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [299352 2025-01-13] (Avira Operations GmbH -> Avira Operations GmbH) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13617336 2025-01-29] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4976976 2022-11-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [219992 2021-09-15] (DTS, Inc. -> DTS Inc.) R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [12013640 2025-01-14] (Avira Operations GmbH -> Avira Operations GmbH) S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [12013640 2025-01-14] (Avira Operations GmbH -> Avira Operations GmbH) R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.005.0112.0003\FileSyncHelper.exe [3532816 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-01-12] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2025-02-05] (Malwarebytes Inc. -> Malwarebytes) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.24.8.36\NortonSecurity.exe [344888 2024-09-13] (NortonLifeLock Inc. -> NortonLifelock Inc.) R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.24.8.36\nsWscSvc.exe [1059176 2024-09-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvae.inf_amd64_6cfe691434859c61\Display.NvContainer\NVDisplay.Container.exe [1274992 2024-03-25] (NVIDIA Corporation -> NVIDIA Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.005.0112.0003\OneDriveUpdaterService.exe [3879464 2025-02-06] (Microsoft Corporation -> Microsoft Corporation) R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [862248 2020-04-16] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2022-10-04] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2022-10-04] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [343272 2021-04-19] (Acer Incorporated -> Acer Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 BdNet; C:\WINDOWS\System32\DRIVERS\BdNet.sys [179768 2025-01-07] (Microsoft Windows Hardware Compatibility Publisher -> Avira Operations GmbH) R1 BdSentry; C:\WINDOWS\System32\DRIVERS\BdSentry.sys [223296 2025-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Avira Operations GmbH) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.21.5.49\Definitions\BASHDefs\20221228.001\BHDrvx64.sys [1705040 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [573440 2024-10-24] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-10-24] (Microsoft Corporation) [Fichier non signé] R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\ccSetx64.sys [199256 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2022-11-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-11-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527864 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.21.5.49\Definitions\IPSDefs\20221230.061\IDSvia64.sys [1526776 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2025-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2025-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 netprotection_network_filter; C:\WINDOWS\System32\drivers\netprotection_network_filter.sys [116544 2025-01-07] (Avira Operations GmbH -> Avira Operations GmbH) S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\nsvst.sys [50400 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> NortonLifeLock Inc.) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek) R1 rtp1; C:\WINDOWS\System32\DRIVERS\rtp1.sys [438896 2025-01-14] (Avira Operations GmbH -> Avira Operations GmbH) R1 rtp2; C:\WINDOWS\System32\DRIVERS\rtp2.sys [438872 2025-01-14] (Avira Operations GmbH -> Avira Operations GmbH) S0 rtp_elam; C:\WINDOWS\System32\DRIVERS\rtp_elam.sys [28792 2025-01-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH) R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\SRTSP64.SYS [962264 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\SRTSPX64.SYS [53968 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\SYMEFASI64.SYS [2181336 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\SymELAM.sys [37016 2024-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100328 2022-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.21.5.49\SymPlatform\SymEvnt.sys [722400 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\Ironx64.SYS [307912 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\symnets.sys [493672 2024-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-10-24] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-10-31] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-31] (Microsoft Windows -> Microsoft Corporation) S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618080.024\wpCtrlDrv.sys [1016792 2024-09-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2025-02-07 19:47 - 2025-02-07 19:48 - 000039084 _____ C:\Users\rpgis\OneDrive\Bureau\FRST.txt 2025-02-07 19:47 - 2025-02-07 19:48 - 000000000 ____D C:\FRST 2025-02-07 19:46 - 2025-02-07 19:46 - 002403328 _____ (Farbar) C:\Users\rpgis\OneDrive\Bureau\FRST64.exe 2025-02-07 18:57 - 2025-02-07 18:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2025-02-07 17:49 - 2025-02-07 17:49 - 000553949 _____ C:\Users\rpgis\OneDrive\Bureau\Validité de la carte ter hauts-de-France 07-02-2025 au 06-02-2026.pdf 2025-02-06 21:02 - 2025-02-06 21:02 - 000082282 _____ C:\Users\rpgis\OneDrive\Bureau\Microsoft 365 Personnel.pdf 2025-02-06 21:01 - 2025-02-06 21:01 - 000082282 _____ C:\Users\rpgis\Downloads\92562793494.pdf 2025-02-06 20:41 - 2025-02-06 20:41 - 000000000 ___RD C:\Users\rpgis\OneDrive\Bureau\Microsoft account _ Abonnements_files 2025-02-06 20:40 - 2025-02-06 20:41 - 001370982 _____ C:\Users\rpgis\OneDrive\Bureau\Microsoft account _ Abonnements.html 2025-02-06 20:08 - 2025-02-06 20:08 - 000009558 _____ C:\Users\rpgis\OneDrive\Bureau\rapport ZHPCleaner.txt 2025-02-06 17:39 - 2025-02-06 17:39 - 000790768 _____ C:\WINDOWS\system32\perfh00C.dat 2025-02-06 17:39 - 2025-02-06 17:39 - 000158516 _____ C:\WINDOWS\system32\perfc00C.dat 2025-02-06 17:36 - 2025-02-06 17:36 - 000001145 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Quick Share.lnk 2025-02-06 17:36 - 2025-02-06 17:36 - 000000000 ____D C:\Program Files\Google 2025-02-05 21:35 - 2025-02-05 21:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira 2025-02-05 21:28 - 2025-02-05 21:28 - 000017259 _____ C:\Users\rpgis\OneDrive\Bureau\ZHPCleaner-[S]-05022025-21_26_09.html 2025-02-05 21:28 - 2025-02-05 21:28 - 000000000 ___RD C:\Users\rpgis\OneDrive\Bureau\ZHPCleaner-[S]-05022025-21_26_09_files 2025-02-05 21:05 - 2025-02-05 21:05 - 003371720 _____ (Nicolas Coolman) C:\Users\rpgis\Downloads\ZHPDiag3.exe 2025-02-05 21:05 - 2025-02-05 21:05 - 000000875 _____ C:\Users\rpgis\OneDrive\Bureau\ZHPDiag.lnk 2025-02-05 21:00 - 2025-02-05 21:08 - 000382566 _____ C:\Users\rpgis\OneDrive\Bureau\ZHPDiag.txt 2025-02-05 21:00 - 2025-02-05 21:00 - 000476133 _____ C:\Users\rpgis\OneDrive\Bureau\ZHPDiag.html 2025-02-05 20:54 - 2025-02-05 21:35 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\ZHP 2025-02-05 20:54 - 2025-02-05 21:15 - 000000000 ____D C:\Users\rpgis\AppData\Local\ZHP 2025-02-05 20:54 - 2025-02-05 20:54 - 000000875 _____ C:\Users\rpgis\OneDrive\Bureau\ZHPSuite.lnk 2025-02-05 20:53 - 2025-02-05 20:54 - 003540168 _____ (Nicolas Coolman) C:\Users\rpgis\Downloads\ZHPSuite.exe 2025-02-05 20:24 - 2025-02-05 20:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2025-02-05 20:19 - 2025-02-05 20:19 - 000373472 _____ (Mozilla) C:\Users\rpgis\Downloads\Firefox Installer (2).exe 2025-02-05 20:19 - 2025-02-05 20:19 - 000373472 _____ (Mozilla) C:\Users\rpgis\Downloads\Firefox Installer (1).exe 2025-02-05 20:18 - 2025-02-05 20:18 - 000002042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk 2025-02-05 20:13 - 2025-02-05 20:13 - 000373472 _____ (Mozilla) C:\Users\rpgis\Downloads\Firefox Installer.exe 2025-02-05 20:13 - 2025-02-05 20:13 - 000002050 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk 2025-02-05 20:03 - 2025-02-05 20:09 - 043123136 _____ C:\Users\rpgis\Downloads\vlc-3.0.21-win32 (1).exe 2025-02-05 20:02 - 2025-02-05 20:02 - 000000000 ____D C:\Program Files (x86)\VideoLAN 2025-02-05 20:01 - 2025-02-07 17:44 - 000000000 ____D C:\Users\rpgis\AppData\Local\Malwarebytes 2025-02-05 19:53 - 2025-02-05 20:01 - 043123136 _____ C:\Users\rpgis\Downloads\vlc-3.0.21-win32.exe 2025-02-05 19:47 - 2025-02-05 19:47 - 000001523 _____ C:\Users\rpgis\OneDrive\Bureau\154.txt 2025-02-05 17:44 - 2025-02-05 21:36 - 004040992 _____ C:\WINDOWS\system32\rtp.db 2025-02-05 17:44 - 2025-01-07 10:22 - 000116544 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\netprotection_network_filter.sys 2025-02-05 17:43 - 2025-02-05 17:43 - 000000000 ____D C:\Program Files\Avira 2025-02-05 17:43 - 2025-01-14 19:29 - 000438896 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp1.sys 2025-02-05 17:43 - 2025-01-14 19:29 - 000438872 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp2.sys 2025-02-05 17:41 - 2025-02-05 17:41 - 000055160 _____ C:\Users\rpgis\OneDrive\Bureau\Avira prime.pdf 2025-02-05 17:24 - 2025-02-05 17:25 - 006738360 _____ (Avira Operations GmbH) C:\Users\rpgis\Downloads\avira_fr_aps10_3956333345_8ehg3xmo05bxf4hlp5zd_wdp.exe 2025-02-04 17:33 - 2025-02-06 17:49 - 000003546 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-684664964-2853107246-2488223059-1001 2025-02-04 17:33 - 2025-02-06 17:49 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2025-02-04 17:33 - 2025-02-04 17:33 - 000000000 ____D C:\WINDOWS\system32\%userprofile% 2025-02-03 21:19 - 2025-02-06 17:49 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2025-02-03 21:19 - 2025-02-06 17:49 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2025-02-03 21:19 - 2025-02-04 17:33 - 000000000 ___RD C:\Users\Default\OneDrive 2025-02-03 21:19 - 2025-02-03 21:19 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2025-02-03 17:22 - 2025-02-04 19:34 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\Microsoft\Excel 2025-01-26 20:53 - 2025-02-07 19:43 - 000000000 ____D C:\WINDOWS\CbsTemp 2025-01-25 08:58 - 2025-02-05 21:40 - 000000000 ____D C:\Program Files\Mozilla Firefox 2025-01-16 18:29 - 2025-01-16 18:29 - 000003888 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Maintenance 2025-01-16 18:29 - 2025-01-16 18:29 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog 2025-01-16 18:29 - 2025-01-16 18:29 - 000002818 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2025-02-07 19:36 - 2022-11-02 19:42 - 000000000 ___SD C:\Users\rpgis\AppData\Roaming\Microsoft\Credentials 2025-02-07 19:34 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-02-07 19:28 - 2022-11-05 16:13 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\vlc 2025-02-07 19:13 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp 2025-02-07 18:20 - 2024-12-19 17:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security Ultra 2025-02-07 17:54 - 2022-11-04 15:49 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\Microsoft\Word 2025-02-07 17:49 - 2024-10-24 19:32 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2025-02-07 17:49 - 2022-11-06 14:42 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2025-02-07 17:49 - 2022-03-03 11:27 - 000000000 ____D C:\ProgramData\NVIDIA 2025-02-07 17:44 - 2023-08-15 15:35 - 000000000 ____D C:\Users\rpgis\AppData\Local\Google 2025-02-07 17:44 - 2022-11-05 10:42 - 000000000 ____D C:\Program Files (x86)\Steam 2025-02-07 17:43 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness 2025-02-07 17:43 - 2022-11-06 14:42 - 000000000 ____D C:\Program Files\CCleaner 2025-02-07 17:43 - 2022-11-04 00:55 - 000000000 ____D C:\Users\Public\Security Sessions 2025-02-07 17:43 - 2022-11-02 19:53 - 000000000 ___RD C:\Users\rpgis\OneDrive 2025-02-06 20:43 - 2022-11-04 15:50 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\Microsoft\UProof 2025-02-06 18:14 - 2022-11-02 19:51 - 000000000 ____D C:\Users\rpgis\AppData\Local\D3DSCache 2025-02-06 18:05 - 2024-10-24 19:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2025-02-06 17:49 - 2024-10-24 19:32 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-684664964-2853107246-2488223059-1001 2025-02-06 17:49 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps 2025-02-06 17:39 - 2024-10-24 19:35 - 001774664 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2025-02-06 17:39 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF 2025-02-06 17:37 - 2022-11-02 19:51 - 000000000 ____D C:\Users\rpgis\AppData\Local\Packages 2025-02-06 17:36 - 2024-10-24 19:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Google 2025-02-06 17:32 - 2024-10-24 19:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2025-02-06 17:32 - 2024-10-24 19:31 - 000002190 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 2025-02-06 17:32 - 2022-03-03 11:22 - 000012288 ___SH C:\DumpStack.log.tmp 2025-02-05 21:36 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2025-02-05 21:35 - 2022-11-05 09:36 - 000000000 ____D C:\ProgramData\TEMP 2025-02-05 21:35 - 2022-11-03 20:21 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2025-02-05 21:34 - 2022-11-02 19:42 - 000000000 ____D C:\Users\rpgis\AppData\Local\Host App Service 2025-02-05 21:30 - 2022-11-06 09:19 - 000000000 ____D C:\Users\rpgis\AppData\Local\Norton 2025-02-05 20:29 - 2024-04-01 08:21 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2025-02-05 20:27 - 2024-10-24 19:30 - 000515048 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2025-02-05 20:27 - 2022-03-03 12:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2025-02-05 20:06 - 2022-11-05 09:36 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster 2025-02-05 20:05 - 2022-03-03 11:25 - 000000000 ____D C:\ProgramData\Package Cache 2025-02-05 20:03 - 2022-11-05 17:44 - 000000000 ____D C:\Program Files\WinRAR 2025-02-05 20:03 - 2022-11-02 19:51 - 000000000 ____D C:\ProgramData\Packages 2025-02-05 20:01 - 2022-11-05 10:53 - 000239568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2025-02-05 20:00 - 2022-11-05 17:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2025-02-05 19:44 - 2022-03-03 12:02 - 000000000 ____D C:\Users\Default\AppData\Local\Host App Service 2025-02-05 19:29 - 2022-11-04 16:46 - 000000000 ____D C:\Users\rpgis\AppData\Roaming\Planet9Stub 2025-02-05 17:44 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2025-02-05 17:44 - 2022-11-02 19:57 - 000000000 ____D C:\ProgramData\Avira 2025-02-04 17:24 - 2022-03-03 11:22 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-02-03 21:19 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2025-02-03 21:19 - 2022-03-03 12:06 - 000000000 ____D C:\Program Files\Microsoft Office 2025-02-02 17:57 - 2024-10-24 19:32 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2025-02-02 17:57 - 2022-11-05 10:22 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2025-01-29 20:52 - 2022-11-05 16:10 - 000000000 ____D C:\vidéos 2025-01-29 20:49 - 2022-11-05 11:10 - 000000000 ____D C:\Users\rpgis\AppData\Local\Steam 2025-01-29 20:20 - 2023-01-15 19:55 - 000000000 ____D C:\Program Files\Bandicam 2025-01-29 20:20 - 2023-01-15 19:55 - 000000000 ____D C:\Program Files (x86)\BandiMPEG1 2025-01-29 17:42 - 2024-10-24 19:32 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2025-01-27 19:33 - 2022-11-05 08:44 - 000000000 ____D C:\Users\rpgis\AppData\Local\Mirillis 2025-01-27 16:52 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate 2025-01-26 20:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources 2025-01-26 20:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2025-01-26 20:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2025-01-26 20:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr 2025-01-26 20:53 - 2022-03-03 12:08 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64 2025-01-25 20:30 - 2022-11-06 14:43 - 000000000 ____D C:\Users\rpgis\OneDrive\Bureau\registre ccleaner 2025-01-16 18:29 - 2024-10-24 19:32 - 000003474 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update 2025-01-16 18:29 - 2022-11-02 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2025-01-15 18:06 - 2022-11-03 20:41 - 000000000 ____D C:\WINDOWS\system32\MRT 2025-01-15 18:04 - 2022-11-03 20:41 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2025-01-12 10:00 - 2024-10-24 19:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2025-01-12 10:00 - 2022-11-04 16:29 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2025-01-08 15:02 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================