Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Exécuté par theom (administrateur) sur PC_MATERIEL_NET (ASUS System Product Name) (09-02-2022 20:47:33)
Exécuté depuis C:\Users\theom\Desktop
Profils chargés: theom
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1526 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) [Fichier non signé] C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\11.0.0.4854\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Users\theom\AppData\Roaming\Autodesk\ADPSDK\bin\ADPClientService.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Chaos Software Ltd. -> ) [Fichier non signé] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(Chaos Software Ltd.) [Fichier non signé] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Program Files\Opera\83.0.4254.27\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\opera.exe <20>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [221992 2020-12-09] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-10-15] (Adobe Inc. -> )
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk)
HKLM\...\Windows x64\Print Processors\Canon TX-3000 Print Processor: C:\Windows\System32\spool\prtprocs\x64\cnwfdpTB.dll [96768 2019-07-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\CnXP0PP: C:\Windows\System32\spool\prtprocs\x64\CnXP0PP.DLL [655360 2021-04-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TX-3000: C:\windows\system32\CNMLMDY.DLL [937984 2019-07-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor4: C:\windows\system32\CNAS0MPK.DLL [1784320 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {01451CEA-A415-450A-9271-AD61D9AF3EE9} - System32\Tasks\Microsoft\Windows\Autodesk\Autodesk => wscript.exe "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.vbs" "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.bat"
Task: {0A848865-C18B-496B-8D2B-2E87C3B016F7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0BA44EA6-DE52-43DF-9C3A-E8C74AD5F561} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D22E8E0-976A-4F53-915B-0CFB84846877} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC)
Task: {0FBB4C8E-CF9A-4741-9163-6F2364D784E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1271DF06-3CCF-4E4E-8808-F971742D473B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {149FB85D-075A-459F-878E-EEFEA3BC89D8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {16B06652-B131-4094-A9B3-61DD3E91FFCC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31561964-1540-4434-A111-C43B93894AB1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC)
Task: {40A3D0FC-E99D-466A-9369-8E2076F7C2D9} - System32\Tasks\Telemetry Logging => C:\Users\theom\AppData\Roaming\Microsoft\Protect\oobeldr.exe (Pas de fichier)
Task: {4FDDCE83-BF4A-4015-AA35-A72E97D3D79F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C8D754E-8256-4C14-A0CB-E578C611DC6D} - System32\Tasks\Opera scheduled assistant Autoupdate 1634203695 => C:\Program Files\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {5FB7C9CD-1827-48A4-A447-5AB68FBDBF1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {787694CF-2401-446D-A6C2-970E9B1BE2B1} - System32\Tasks\Opera scheduled Autoupdate 1634203693 => C:\Program Files\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software)
Task: {8A685E06-ED8C-4689-88DE-A7FD3314EFFF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DF79C9F-D500-46B2-9B76-281B6F8B4154} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9AFD0379-50F8-4E5B-831F-C7C51B825DFB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9B2208BB-BA13-49A8-9270-4F63D955DA29} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A568C2DA-ABA7-47EC-A2B7-945D008EBF80} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B5996A32-638B-42BE-8D43-8DF8817D5BC0} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B66FBCA4-2446-410C-BEED-86C222DEEF9E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E213FEF1-D529-46DF-A129-C9247D9E9A15} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3DC175E-429D-46A6-A854-83F36ACAACFE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E62F265D-E617-4A34-B21F-DD8F3BAAE33B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F407CBB9-7414-4F3D-818A-1C0AE9C8AFAE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {FE59F777-C0C0-4C2F-A17C-8FD17235470F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0a4e0c43-fc4c-4093-9a8f-22c99850c96c}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\theom\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-09]
Edge Extension: (yTrustTable) - C:\ProgramData\Qvaz\Yaxasp\E0D481C5 [2022-01-20]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDAPP\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default [2022-02-09]
CHR Extension: (Slides) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-03]
CHR Extension: (Safe Torrent Scanner) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-12-07]
CHR Extension: (Docs) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-03]
CHR Extension: (Google Drive) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-03]
CHR Extension: (YouTube) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-03]
CHR Extension: (Adobe Acrobat) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-12-07]
CHR Extension: (Sheets) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-07]
CHR Extension: (Google Translate) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn [2022-01-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-03]
CHR Extension: (Gmail) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-03]
Opera:
=======
OPR Profile: C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable [2022-02-09]
OPR StartupUrls: Opera Stable -> "hxxp://www.google.fr/"
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-01-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-14]
OPR Extension: (yTrustTable) - C:\ProgramData\Qvaz\Yaxasp [2022-01-20]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2021-03-29] (Autodesk, Inc. -> Autodesk) [Fichier non signé]
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AppServicea; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceb; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiced; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AsusUpdateCheck; C:\windows\System32\AsusUpdateCheck.exe [842128 2022-02-09] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20309528 2021-10-14] (Chaos Software Ltd. -> )
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2021-10-14] (Chaos Software Ltd. -> ) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 FlexNet Licensing Service; "C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 NVHDA; C:\windows\system32\drivers\nvhda64v.sys [129960 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-09 20:43 - 2022-02-09 20:43 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\LPKLKMU143.tmp
2022-02-09 20:36 - 2022-02-09 20:42 - 000021024 _____ C:\Users\theom\Desktop\Fixlog.txt
2022-02-09 18:29 - 2022-02-09 18:29 - 000035467 _____ C:\Users\theom\Desktop\Shortcut.txt
2022-02-09 18:28 - 2022-02-09 18:29 - 000053430 _____ C:\Users\theom\Desktop\Addition.txt
2022-02-09 18:26 - 2022-02-09 20:47 - 000021901 _____ C:\Users\theom\Desktop\FRST.txt
2022-02-09 18:22 - 2022-02-09 20:47 - 000000000 ____D C:\FRST
2022-02-09 18:20 - 2022-02-09 18:20 - 002311680 _____ (Farbar) C:\Users\theom\Desktop\FRST64.exe
2022-02-09 17:25 - 2022-02-09 17:47 - 000001279 _____ C:\Users\theom\Desktop\ESET Online Scanner.lnk
2022-02-09 17:24 - 2022-02-09 17:47 - 000001385 _____ C:\Users\theom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-02-09 17:24 - 2022-02-09 17:24 - 015274968 _____ (ESET) C:\Users\theom\Desktop\esetonlinescanner.exe
2022-02-09 17:24 - 2022-02-09 17:24 - 000000000 ____D C:\Users\theom\AppData\Local\ESET
2022-02-09 15:12 - 2022-02-09 15:12 - 000288768 _____ C:\windows\system32\Windows.Management.InprocObjects.dll
2022-02-09 15:12 - 2022-02-09 15:12 - 000272384 _____ C:\windows\system32\TpmTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000223744 _____ C:\windows\SysWOW64\TpmTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000162816 _____ C:\windows\system32\DataStoreCacheDumpTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000011813 _____ C:\windows\system32\DrtmAuthTxt.wim
2022-02-09 15:08 - 2022-02-09 15:08 - 000000000 ___HD C:\$WinREAgent
2022-02-09 10:52 - 2022-02-09 10:52 - 000123853 _____ C:\Users\theom\Downloads\FACTURE SITUATION N°1 - TEGID - AFF ATEME2.pdf
2022-02-08 20:01 - 2022-02-08 20:01 - 003963225 _____ C:\Users\theom\Downloads\220130_MH.dwg
2022-02-08 20:00 - 2022-02-08 22:24 - 000000204 ____H C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwl2
2022-02-08 20:00 - 2022-02-08 22:24 - 000000053 ____H C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwl
2022-02-08 20:00 - 2022-02-08 20:00 - 002625323 _____ C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwg
2022-02-07 21:48 - 2022-02-07 21:48 - 000774144 _____ C:\Users\theom\Downloads\Mise en page A1.indd
2022-02-07 21:38 - 2022-02-07 21:38 - 002120640 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_height.tif
2022-02-07 21:38 - 2022-02-07 21:38 - 001574054 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_albedo.tif
2022-02-07 21:38 - 2022-02-07 21:38 - 001466818 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_ao.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 006323352 _____ C:\Users\theom\Downloads\TexturesCom_Roofing_AsbestosOndulated_1K_normal.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 001843516 _____ C:\Users\theom\Downloads\TexturesCom_Roofing_AsbestosOndulated_1K_albedo.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 000477089 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_alpha.tif
2022-02-07 21:36 - 2022-02-07 21:36 - 006291772 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_normal.tif
2022-02-07 21:36 - 2022-02-07 21:36 - 001676236 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_albedo.tif
2022-02-04 19:19 - 2022-02-04 19:19 - 000508299 _____ C:\Users\theom\Downloads\DEVIS CFV - AFF BAGAIT MORAU.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 005660733 _____ C:\Users\theom\Downloads\ATTESTATION D'ASSURANCE SOCIETE CFV.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 002024212 _____ C:\Users\theom\Downloads\plan fermetures (1).pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 000327834 _____ C:\Users\theom\Downloads\Fiche produit coulissant.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 000117838 _____ C:\Users\theom\Downloads\CELESTE_COUPESTRUCTURE_072020.pdf
2022-02-03 17:56 - 2022-02-09 20:37 - 000000000 ____D C:\Users\theom\AppData\LocalLow\Temp
2022-02-03 16:27 - 2022-02-03 16:27 - 000202735 _____ C:\Users\theom\Downloads\PC5_FACADES_A1.pdf
2022-01-31 17:03 - 2022-01-31 17:04 - 001323529 _____ C:\Users\theom\Downloads\CL_ESTIEU_20220131_PLANS INTERIEURS.pdf
2022-01-31 14:47 - 2022-01-31 14:47 - 000406027 _____ C:\Users\theom\Downloads\459 - NOTE HONORAIRE n°01.xlsx
2022-01-31 12:28 - 2022-02-03 16:34 - 000001569 _____ C:\Users\theom\Desktop\Serveur_bis (192.168.1.75) - Raccourci.lnk
2022-01-28 18:02 - 2022-01-28 18:02 - 006063494 _____ C:\Users\theom\Downloads\CL_AGRICYCLAGE_PC_20220128--.pdf
2022-01-27 12:42 - 2022-01-27 12:42 - 000033644 _____ C:\Users\theom\AppData\LocalLow\EvQsAk1yVQV.zip
2022-01-26 16:30 - 2022-01-26 16:30 - 000336254 _____ C:\Users\theom\Downloads\cerfa_13405-07.pdf
2022-01-26 11:12 - 2022-01-26 11:12 - 000032707 _____ C:\Users\theom\AppData\LocalLow\8UHpnDPcNHz.zip
2022-01-25 11:59 - 2022-01-25 11:59 - 000186095 _____ C:\Users\theom\Desktop\CARTOUCHE-A1.pdf
2022-01-25 11:21 - 2022-01-25 11:21 - 000704008 _____ C:\Users\theom\Downloads\cerfa_13404-08.pdf
2022-01-24 17:40 - 2022-01-24 17:40 - 000045187 _____ C:\Users\theom\Downloads\070122-AVP-AGRICYCLAGE-Bâtiment Process-stockage.pdf
2022-01-24 17:40 - 2022-01-24 17:40 - 000030396 _____ C:\Users\theom\Downloads\070122-AVP-AGRICYCLAGE-Bâtiment Bureaux.pdf
2022-01-24 14:44 - 2022-01-24 14:44 - 020257342 _____ C:\Users\theom\Downloads\ICPE.bak
2022-01-21 10:58 - 2022-01-26 11:15 - 005228544 _____ (VideoLAN) C:\ProgramData\752_1642674357_477.exe
2022-01-21 10:58 - 2022-01-26 11:15 - 000006144 _____ () C:\ProgramData\7297_1642674434_9372.exe
2022-01-21 10:19 - 2022-01-21 10:19 - 000000000 ____D C:\Users\theom\AppData\Local\OneDrive
2022-01-20 19:41 - 2022-01-20 19:41 - 002120532 _____ C:\Users\theom\Downloads\Devis PRO TECH FERMETURE - PLAT n°DEVIS00403.pdf
2022-01-20 19:41 - 2022-01-20 19:41 - 000117609 _____ C:\Users\theom\Downloads\devis plat surelevation mod.pdf
2022-01-20 19:20 - 2022-02-09 20:36 - 000000000 ____D C:\windows\system32\Tasks\X-7-1-36-1212955605-1010456855-1193237747-6038
2022-01-20 19:20 - 2022-01-21 10:15 - 000000000 __SHD C:\Users\theom\AppData\Roaming\amd64_microsoft.windows.c..-controls.resources
2022-01-20 19:00 - 2022-01-20 19:00 - 000171013 _____ C:\Users\theom\AppData\LocalLow\x58DTzo8YC6.zip
2022-01-20 18:29 - 2022-01-20 18:29 - 000170587 _____ C:\Users\theom\AppData\LocalLow\6QZTyQvHK32.zip
2022-01-20 17:00 - 2022-01-20 17:04 - 000101888 _____ C:\Users\theom\Downloads\Existant-Annexe_financiere_Remuneration_au_pourcentage2-outil.xls
2022-01-20 16:43 - 2022-01-20 16:43 - 000119296 _____ C:\Users\theom\Downloads\existant-annexe_financiere_remuneration_au_pourcentage2-modele-rev30092016.xls
2022-01-20 16:16 - 2022-01-20 16:16 - 000170466 _____ C:\Users\theom\AppData\LocalLow\G1d6LFRjkFU.zip
2022-01-20 16:09 - 2022-01-20 16:09 - 000000000 ____D C:\Users\theom\AppData\Roaming\DemoServices
2022-01-20 15:58 - 2022-01-25 19:30 - 008315904 _____ (Microsoft Corporation) C:\Users\theom\AppData\Roamingproquota.exe
2022-01-20 15:57 - 2022-01-25 19:17 - 000000000 ____D C:\Users\theom\AppData\Roaming\BrowserSettings
2022-01-20 15:56 - 2022-01-20 16:17 - 000000000 ____D C:\Users\theom\AppData\Roaming\WindowsSetupServices
2022-01-20 12:51 - 2022-02-03 18:08 - 000000000 ___HD C:\ProgramData\Qvaz
2022-01-20 10:51 - 2022-01-20 10:51 - 000170419 _____ C:\Users\theom\AppData\LocalLow\82CdZFZ7PQq.zip
2022-01-20 10:20 - 2022-01-27 12:42 - 000000000 ____D C:\Users\theom\AppData\LocalLow\fB9oV
2022-01-20 10:20 - 2022-01-20 10:20 - 000172945 _____ C:\Users\theom\AppData\LocalLow\gj215n9QjNU.zip
2022-01-20 10:20 - 2022-01-20 10:20 - 000170527 _____ C:\Users\theom\AppData\LocalLow\hO1HgYBhTRx.zip
2022-01-20 10:20 - 2022-01-20 10:20 - 000170360 _____ C:\Users\theom\AppData\LocalLow\mUAtoMScB5G.zip
2022-01-19 18:09 - 2022-01-19 18:09 - 000008080 _____ C:\Users\theom\Downloads\RIB PLOMBERIE.pdf
2022-01-19 17:39 - 2022-01-19 17:54 - 000266498 _____ C:\Users\theom\Downloads\DEVIS TEGID (ELECTRICIEN) - AFF BEAUGAD.pdf
2022-01-19 17:30 - 2022-02-09 17:37 - 000000000 ____D C:\Users\theom\AppData\Roaming\URkQhHZHEH
2022-01-19 17:30 - 2022-01-20 10:20 - 000000000 ____D C:\Users\theom\AppData\LocalLow\sG8rM8v
2022-01-19 17:30 - 2022-01-19 17:30 - 000645592 _____ C:\ProgramData\sqlite3.dll
2022-01-19 17:30 - 2022-01-19 17:30 - 000176409 _____ C:\Users\theom\AppData\LocalLow\3btMUzgp6ih.zip
2022-01-19 17:30 - 2022-01-19 17:30 - 000003618 _____ C:\windows\system32\Tasks\Telemetry Logging
2022-01-19 17:30 - 2022-01-19 17:30 - 000000000 ____D C:\Users\theom\AppData\Roaming\Green
2022-01-19 17:30 - 2022-01-19 17:30 - 000000000 ____D C:\Users\theom\AppData\Roaming\defang
2022-01-19 17:29 - 2022-02-09 15:48 - 000000000 ____D C:\Users\theom\AppData\Local\Yandex
2022-01-19 17:29 - 2022-01-19 17:29 - 000000000 ____D C:\Users\theom\AppData\Roaming\ProfCleaner
2022-01-19 15:37 - 2022-01-19 15:37 - 000000000 ____D C:\Users\theom\AppData\Local\BitRecover
2022-01-18 16:34 - 2021-12-02 12:44 - 000001918 _____ C:\Users\theom\Desktop\PC CARO 2021 07 09.lnk
2022-01-18 13:58 - 2022-01-18 13:58 - 004659284 _____ C:\Users\theom\Downloads\01_merged (7).pdf
2022-01-17 17:36 - 2022-01-17 17:36 - 000394047 _____ C:\Users\theom\Downloads\FICHE-TECHNIQUE.pdf
2022-01-17 14:55 - 2022-01-17 14:55 - 000000000 ___HD C:\ProgramData\CanonBJ
2022-01-17 14:55 - 2022-01-17 14:55 - 000000000 ____D C:\Users\theom\AppData\Roaming\Canon
2022-01-17 14:54 - 2022-01-17 14:54 - 000000000 ___HD C:\Program Files\CanonBJ
2022-01-17 14:54 - 2019-07-12 05:00 - 000937984 _____ (CANON INC.) C:\windows\system32\CNMLMDY.DLL
2022-01-17 14:52 - 2022-02-03 16:38 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-01-17 14:52 - 2022-01-17 14:55 - 000000000 ____D C:\ProgramData\Canon
2022-01-17 14:52 - 2022-01-17 14:55 - 000000000 ____D C:\Program Files (x86)\Canon
2022-01-17 14:48 - 2022-01-17 14:48 - 019431072 _____ C:\Users\theom\Downloads\win-tx_3000-1_0-n_mcd.exe
2022-01-15 18:11 - 2022-01-15 18:11 - 000836394 _____ C:\Users\theom\Downloads\ilovepdf_pages-to-jpg.zip
2022-01-14 17:07 - 2022-01-14 17:07 - 004342628 _____ C:\Users\theom\Downloads\DOSSIER SCI RAPSAIL - COLOMBES.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000455993 _____ C:\Users\theom\Downloads\04_01_02_03_merged.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000178352 _____ C:\Users\theom\Downloads\20220113200452.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000148776 _____ C:\Users\theom\Downloads\20220113195015.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000148776 _____ C:\Users\theom\Downloads\20220113195015 (1).pdf
2022-01-13 17:57 - 2022-01-13 17:57 - 000262001 _____ C:\Users\theom\Downloads\0220 (Sistema de Guardas BL-Vidro) (2).pdf
2022-01-13 17:38 - 2022-01-13 17:38 - 004827271 _____ C:\Users\theom\Downloads\concarneaugeraldine.zip
2022-01-12 10:23 - 2022-01-12 10:23 - 000523776 _____ (curl, hxxps://curl.se/) C:\windows\system32\curl.exe
2022-01-12 10:23 - 2022-01-12 10:23 - 000464384 _____ (curl, hxxps://curl.se/) C:\windows\SysWOW64\curl.exe
2022-01-11 12:02 - 2022-01-11 12:02 - 003354198 _____ C:\Users\theom\Downloads\01.pdf
2022-01-10 16:07 - 2022-01-10 16:07 - 000142054 _____ C:\Users\theom\Downloads\AttestationDroits.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-09 20:45 - 2021-10-18 16:01 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-09 20:45 - 2021-10-12 13:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-09 20:43 - 2021-11-02 15:30 - 000000000 ___RD C:\Users\theom\iCloudDrive
2022-02-09 20:43 - 2021-10-11 13:38 - 000880672 _____ C:\windows\system32\wpbbin.exe
2022-02-09 20:43 - 2021-10-11 13:38 - 000842128 _____ C:\windows\system32\AsusUpdateCheck.exe
2022-02-09 20:43 - 2021-08-12 11:51 - 000000006 ____H C:\windows\Tasks\SA.DAT
2022-02-09 20:43 - 2021-08-12 11:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-09 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-09 20:43 - 2019-12-07 10:03 - 000786432 _____ C:\windows\system32\config\BBI
2022-02-09 20:34 - 2021-12-07 14:16 - 000000000 ____D C:\Users\theom\Desktop\Earth School Competition
2022-02-09 19:28 - 2021-10-15 11:25 - 000000000 ____D C:\Users\theom\Desktop\DOSSIER EN COURS
2022-02-09 17:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-09 17:51 - 2019-12-07 10:14 - 000000000 ____D C:\windows\AppReadiness
2022-02-09 17:40 - 2021-08-12 11:59 - 001770906 _____ C:\windows\system32\PerfStringBackup.INI
2022-02-09 17:40 - 2019-12-07 15:49 - 000791594 _____ C:\windows\system32\perfh00C.dat
2022-02-09 17:40 - 2019-12-07 15:49 - 000149760 _____ C:\windows\system32\perfc00C.dat
2022-02-09 17:40 - 2019-12-07 10:13 - 000000000 ____D C:\windows\INF
2022-02-09 17:36 - 2021-08-12 11:50 - 000412840 _____ C:\windows\system32\FNTCACHE.DAT
2022-02-09 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\windows\Registration
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\SysWOW64\Dism
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\SystemResources
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\et-EE
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\es-MX
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\Dism
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\appraiser
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\ShellExperiences
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\PolicyDefinitions
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\bcastdvr
2022-02-09 17:35 - 2019-12-07 10:03 - 000000000 ____D C:\windows\servicing
2022-02-09 17:22 - 2021-10-15 17:09 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-09 17:06 - 2021-08-12 11:50 - 000000000 ____D C:\windows\system32\SleepStudy
2022-02-09 15:23 - 2021-10-14 10:15 - 000000000 ____D C:\Users\theom\AppData\Local\Packages
2022-02-09 15:14 - 2019-12-07 10:03 - 000000000 ____D C:\windows\CbsTemp
2022-02-09 15:13 - 2021-10-15 17:15 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-02-09 15:12 - 2021-08-12 11:53 - 002877440 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2022-02-09 15:08 - 2021-10-14 13:12 - 000000000 ____D C:\windows\system32\MRT
2022-02-09 15:07 - 2021-10-14 13:12 - 149611728 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2022-02-09 10:05 - 2021-11-03 18:45 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-09 10:05 - 2021-11-03 18:45 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-02-07 18:47 - 2021-10-19 10:48 - 000000000 ____D C:\Users\theom\Desktop\48 RUE DE PARIS
2022-02-07 17:17 - 2021-12-03 12:15 - 000000000 ____D C:\Users\theom\AppData\Local\Archireport
2022-02-07 16:31 - 2021-10-14 10:17 - 000000000 ____D C:\Users\theom\AppData\Local\Comms
2022-02-07 10:11 - 2021-08-12 11:51 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-04 20:54 - 2021-10-15 16:20 - 000000000 ____D C:\Users\theom\AppData\Local\CrashDumps
2022-02-03 15:25 - 2021-10-14 10:15 - 000000000 ____D C:\Users\theom\AppData\Local\D3DSCache
2022-02-02 16:27 - 2021-10-15 15:58 - 000000000 ____D C:\ProgramData\Adobe
2022-02-02 16:26 - 2021-10-14 10:28 - 000000000 ____D C:\Program Files\Opera
2022-02-02 16:22 - 2021-12-03 15:43 - 000000000 ____D C:\Program Files\Wondershare
2022-02-02 10:24 - 2021-10-18 12:14 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-02 10:18 - 2021-10-14 10:28 - 000003984 _____ C:\windows\system32\Tasks\Opera scheduled Autoupdate 1634203693
2022-02-02 10:18 - 2021-10-14 10:28 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-01-31 12:12 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\NDF
2022-01-28 09:40 - 2021-08-12 11:51 - 000003634 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 09:40 - 2021-08-12 11:51 - 000003510 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-27 16:11 - 2021-12-13 12:30 - 000003584 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1968406187-103373859-842200942-1003
2022-01-27 16:11 - 2021-10-14 10:16 - 000003376 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1968406187-103373859-842200942-1003
2022-01-27 16:11 - 2021-10-14 10:16 - 000002424 _____ C:\Users\theom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-24 16:33 - 2021-12-03 15:43 - 000000000 ____D C:\Users\theom\AppData\Roaming\Wondershare
2022-01-20 19:21 - 2021-10-14 10:12 - 000000000 ____D C:\Users\theom
2022-01-20 11:12 - 2021-10-18 16:01 - 000003590 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-20 11:12 - 2021-10-18 16:01 - 000003466 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 17:57 - 2019-12-07 10:14 - 000000000 ____D C:\windows\LiveKernelReports
2022-01-19 15:34 - 2021-11-24 10:34 - 000000000 ____D C:\Users\theom\AppData\Roaming\vlc
2022-01-17 14:55 - 2021-10-15 16:41 - 000000000 ____D C:\Program Files\Canon
2022-01-17 14:55 - 2021-10-12 13:56 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-01-17 14:55 - 2019-12-07 15:51 - 000000000 ____D C:\windows\system32\FxsTmp
2022-01-15 15:36 - 2021-11-26 12:11 - 000000000 ____D C:\Users\theom\Desktop\wetransfer_pc-colombes_2021-11-26_0935
2022-01-14 09:43 - 2021-10-15 15:58 - 000000000 ____D C:\Users\theom\AppData\Local\Adobe
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ___SD C:\windows\system32\DiagSvcs
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\setup
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\oobe
==================== Fichiers à la racine de certains dossiers ========
2022-01-21 10:58 - 2022-01-26 11:15 - 000006144 _____ () C:\ProgramData\7297_1642674434_9372.exe
2022-01-21 10:58 - 2022-01-26 11:15 - 005228544 _____ (VideoLAN) C:\ProgramData\752_1642674357_477.exe
2022-01-19 17:30 - 2022-01-19 17:30 - 000645592 _____ () C:\ProgramData\sqlite3.dll
2021-10-15 17:19 - 2021-10-15 17:19 - 000000000 _____ () C:\Users\theom\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par theom (administrateur) sur PC_MATERIEL_NET (ASUS System Product Name) (09-02-2022 20:47:33)
Exécuté depuis C:\Users\theom\Desktop
Profils chargés: theom
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1526 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) [Fichier non signé] C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\11.0.0.4854\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe <3>
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Users\theom\AppData\Roaming\Autodesk\ADPSDK\bin\ADPClientService.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Chaos Software Ltd. -> ) [Fichier non signé] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(Chaos Software Ltd.) [Fichier non signé] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Program Files\Opera\83.0.4254.27\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\opera.exe <20>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [221992 2020-12-09] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-10-15] (Adobe Inc. -> )
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk)
HKLM\...\Windows x64\Print Processors\Canon TX-3000 Print Processor: C:\Windows\System32\spool\prtprocs\x64\cnwfdpTB.dll [96768 2019-07-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\CnXP0PP: C:\Windows\System32\spool\prtprocs\x64\CnXP0PP.DLL [655360 2021-04-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TX-3000: C:\windows\system32\CNMLMDY.DLL [937984 2019-07-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor4: C:\windows\system32\CNAS0MPK.DLL [1784320 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {01451CEA-A415-450A-9271-AD61D9AF3EE9} - System32\Tasks\Microsoft\Windows\Autodesk\Autodesk => wscript.exe "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.vbs" "%CommonProgramFiles(x86)%\Autodesk Shared\Network License Manager\Service.bat"
Task: {0A848865-C18B-496B-8D2B-2E87C3B016F7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0BA44EA6-DE52-43DF-9C3A-E8C74AD5F561} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D22E8E0-976A-4F53-915B-0CFB84846877} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC)
Task: {0FBB4C8E-CF9A-4741-9163-6F2364D784E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1271DF06-3CCF-4E4E-8808-F971742D473B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {149FB85D-075A-459F-878E-EEFEA3BC89D8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {16B06652-B131-4094-A9B3-61DD3E91FFCC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31561964-1540-4434-A111-C43B93894AB1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-18] (Google LLC -> Google LLC)
Task: {40A3D0FC-E99D-466A-9369-8E2076F7C2D9} - System32\Tasks\Telemetry Logging => C:\Users\theom\AppData\Roaming\Microsoft\Protect\oobeldr.exe (Pas de fichier)
Task: {4FDDCE83-BF4A-4015-AA35-A72E97D3D79F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C8D754E-8256-4C14-A0CB-E578C611DC6D} - System32\Tasks\Opera scheduled assistant Autoupdate 1634203695 => C:\Program Files\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {5FB7C9CD-1827-48A4-A447-5AB68FBDBF1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {787694CF-2401-446D-A6C2-970E9B1BE2B1} - System32\Tasks\Opera scheduled Autoupdate 1634203693 => C:\Program Files\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software)
Task: {8A685E06-ED8C-4689-88DE-A7FD3314EFFF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DF79C9F-D500-46B2-9B76-281B6F8B4154} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9AFD0379-50F8-4E5B-831F-C7C51B825DFB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {9B2208BB-BA13-49A8-9270-4F63D955DA29} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A568C2DA-ABA7-47EC-A2B7-945D008EBF80} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B5996A32-638B-42BE-8D43-8DF8817D5BC0} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B66FBCA4-2446-410C-BEED-86C222DEEF9E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E213FEF1-D529-46DF-A129-C9247D9E9A15} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3DC175E-429D-46A6-A854-83F36ACAACFE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E62F265D-E617-4A34-B21F-DD8F3BAAE33B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F407CBB9-7414-4F3D-818A-1C0AE9C8AFAE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {FE59F777-C0C0-4C2F-A17C-8FD17235470F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-09-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0a4e0c43-fc4c-4093-9a8f-22c99850c96c}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Profile: C:\Users\theom\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-09]
Edge Extension: (yTrustTable) - C:\ProgramData\Qvaz\Yaxasp\E0D481C5 [2022-01-20]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDAPP\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default [2022-02-09]
CHR Extension: (Slides) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-03]
CHR Extension: (Safe Torrent Scanner) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-12-07]
CHR Extension: (Docs) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-03]
CHR Extension: (Google Drive) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-03]
CHR Extension: (YouTube) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-03]
CHR Extension: (Adobe Acrobat) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-12-07]
CHR Extension: (Sheets) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-07]
CHR Extension: (Google Translate) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhgpjbcoignfibliobpclhpfnadhofn [2022-01-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-03]
CHR Extension: (Gmail) - C:\Users\theom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-03]
Opera:
=======
OPR Profile: C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable [2022-02-09]
OPR StartupUrls: Opera Stable -> "hxxp://www.google.fr/"
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-01-28]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\theom\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-14]
OPR Extension: (yTrustTable) - C:\ProgramData\Qvaz\Yaxasp [2022-01-20]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2021-03-29] (Autodesk, Inc. -> Autodesk) [Fichier non signé]
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AppServicea; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceb; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiced; C:\windows\system32\LPKLKMU143.tmp [6144 2022-02-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AsusUpdateCheck; C:\windows\System32\AsusUpdateCheck.exe [842128 2022-02-09] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-02-02] (Microsoft Corporation -> Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20309528 2021-10-14] (Chaos Software Ltd. -> )
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2021-10-14] (Chaos Software Ltd. -> ) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 FlexNet Licensing Service; "C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 NVHDA; C:\windows\system32\drivers\nvhda64v.sys [129960 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-09 20:43 - 2022-02-09 20:43 - 000006144 _____ (Microsoft Corporation) C:\windows\system32\LPKLKMU143.tmp
2022-02-09 20:36 - 2022-02-09 20:42 - 000021024 _____ C:\Users\theom\Desktop\Fixlog.txt
2022-02-09 18:29 - 2022-02-09 18:29 - 000035467 _____ C:\Users\theom\Desktop\Shortcut.txt
2022-02-09 18:28 - 2022-02-09 18:29 - 000053430 _____ C:\Users\theom\Desktop\Addition.txt
2022-02-09 18:26 - 2022-02-09 20:47 - 000021901 _____ C:\Users\theom\Desktop\FRST.txt
2022-02-09 18:22 - 2022-02-09 20:47 - 000000000 ____D C:\FRST
2022-02-09 18:20 - 2022-02-09 18:20 - 002311680 _____ (Farbar) C:\Users\theom\Desktop\FRST64.exe
2022-02-09 17:25 - 2022-02-09 17:47 - 000001279 _____ C:\Users\theom\Desktop\ESET Online Scanner.lnk
2022-02-09 17:24 - 2022-02-09 17:47 - 000001385 _____ C:\Users\theom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-02-09 17:24 - 2022-02-09 17:24 - 015274968 _____ (ESET) C:\Users\theom\Desktop\esetonlinescanner.exe
2022-02-09 17:24 - 2022-02-09 17:24 - 000000000 ____D C:\Users\theom\AppData\Local\ESET
2022-02-09 15:12 - 2022-02-09 15:12 - 000288768 _____ C:\windows\system32\Windows.Management.InprocObjects.dll
2022-02-09 15:12 - 2022-02-09 15:12 - 000272384 _____ C:\windows\system32\TpmTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000223744 _____ C:\windows\SysWOW64\TpmTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000162816 _____ C:\windows\system32\DataStoreCacheDumpTool.exe
2022-02-09 15:12 - 2022-02-09 15:12 - 000011813 _____ C:\windows\system32\DrtmAuthTxt.wim
2022-02-09 15:08 - 2022-02-09 15:08 - 000000000 ___HD C:\$WinREAgent
2022-02-09 10:52 - 2022-02-09 10:52 - 000123853 _____ C:\Users\theom\Downloads\FACTURE SITUATION N°1 - TEGID - AFF ATEME2.pdf
2022-02-08 20:01 - 2022-02-08 20:01 - 003963225 _____ C:\Users\theom\Downloads\220130_MH.dwg
2022-02-08 20:00 - 2022-02-08 22:24 - 000000204 ____H C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwl2
2022-02-08 20:00 - 2022-02-08 22:24 - 000000053 ____H C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwl
2022-02-08 20:00 - 2022-02-08 20:00 - 002625323 _____ C:\Users\theom\Downloads\EARTH SCHOOL-20220201.dwg
2022-02-07 21:48 - 2022-02-07 21:48 - 000774144 _____ C:\Users\theom\Downloads\Mise en page A1.indd
2022-02-07 21:38 - 2022-02-07 21:38 - 002120640 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_height.tif
2022-02-07 21:38 - 2022-02-07 21:38 - 001574054 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_albedo.tif
2022-02-07 21:38 - 2022-02-07 21:38 - 001466818 _____ C:\Users\theom\Downloads\TexturesCom_Wood_BambooWall_1K_ao.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 006323352 _____ C:\Users\theom\Downloads\TexturesCom_Roofing_AsbestosOndulated_1K_normal.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 001843516 _____ C:\Users\theom\Downloads\TexturesCom_Roofing_AsbestosOndulated_1K_albedo.tif
2022-02-07 21:37 - 2022-02-07 21:37 - 000477089 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_alpha.tif
2022-02-07 21:36 - 2022-02-07 21:36 - 006291772 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_normal.tif
2022-02-07 21:36 - 2022-02-07 21:36 - 001676236 _____ C:\Users\theom\Downloads\TexturesCom_Wicker_Webbing_1K_albedo.tif
2022-02-04 19:19 - 2022-02-04 19:19 - 000508299 _____ C:\Users\theom\Downloads\DEVIS CFV - AFF BAGAIT MORAU.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 005660733 _____ C:\Users\theom\Downloads\ATTESTATION D'ASSURANCE SOCIETE CFV.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 002024212 _____ C:\Users\theom\Downloads\plan fermetures (1).pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 000327834 _____ C:\Users\theom\Downloads\Fiche produit coulissant.pdf
2022-02-04 19:17 - 2022-02-04 19:17 - 000117838 _____ C:\Users\theom\Downloads\CELESTE_COUPESTRUCTURE_072020.pdf
2022-02-03 17:56 - 2022-02-09 20:37 - 000000000 ____D C:\Users\theom\AppData\LocalLow\Temp
2022-02-03 16:27 - 2022-02-03 16:27 - 000202735 _____ C:\Users\theom\Downloads\PC5_FACADES_A1.pdf
2022-01-31 17:03 - 2022-01-31 17:04 - 001323529 _____ C:\Users\theom\Downloads\CL_ESTIEU_20220131_PLANS INTERIEURS.pdf
2022-01-31 14:47 - 2022-01-31 14:47 - 000406027 _____ C:\Users\theom\Downloads\459 - NOTE HONORAIRE n°01.xlsx
2022-01-31 12:28 - 2022-02-03 16:34 - 000001569 _____ C:\Users\theom\Desktop\Serveur_bis (192.168.1.75) - Raccourci.lnk
2022-01-28 18:02 - 2022-01-28 18:02 - 006063494 _____ C:\Users\theom\Downloads\CL_AGRICYCLAGE_PC_20220128--.pdf
2022-01-27 12:42 - 2022-01-27 12:42 - 000033644 _____ C:\Users\theom\AppData\LocalLow\EvQsAk1yVQV.zip
2022-01-26 16:30 - 2022-01-26 16:30 - 000336254 _____ C:\Users\theom\Downloads\cerfa_13405-07.pdf
2022-01-26 11:12 - 2022-01-26 11:12 - 000032707 _____ C:\Users\theom\AppData\LocalLow\8UHpnDPcNHz.zip
2022-01-25 11:59 - 2022-01-25 11:59 - 000186095 _____ C:\Users\theom\Desktop\CARTOUCHE-A1.pdf
2022-01-25 11:21 - 2022-01-25 11:21 - 000704008 _____ C:\Users\theom\Downloads\cerfa_13404-08.pdf
2022-01-24 17:40 - 2022-01-24 17:40 - 000045187 _____ C:\Users\theom\Downloads\070122-AVP-AGRICYCLAGE-Bâtiment Process-stockage.pdf
2022-01-24 17:40 - 2022-01-24 17:40 - 000030396 _____ C:\Users\theom\Downloads\070122-AVP-AGRICYCLAGE-Bâtiment Bureaux.pdf
2022-01-24 14:44 - 2022-01-24 14:44 - 020257342 _____ C:\Users\theom\Downloads\ICPE.bak
2022-01-21 10:58 - 2022-01-26 11:15 - 005228544 _____ (VideoLAN) C:\ProgramData\752_1642674357_477.exe
2022-01-21 10:58 - 2022-01-26 11:15 - 000006144 _____ () C:\ProgramData\7297_1642674434_9372.exe
2022-01-21 10:19 - 2022-01-21 10:19 - 000000000 ____D C:\Users\theom\AppData\Local\OneDrive
2022-01-20 19:41 - 2022-01-20 19:41 - 002120532 _____ C:\Users\theom\Downloads\Devis PRO TECH FERMETURE - PLAT n°DEVIS00403.pdf
2022-01-20 19:41 - 2022-01-20 19:41 - 000117609 _____ C:\Users\theom\Downloads\devis plat surelevation mod.pdf
2022-01-20 19:20 - 2022-02-09 20:36 - 000000000 ____D C:\windows\system32\Tasks\X-7-1-36-1212955605-1010456855-1193237747-6038
2022-01-20 19:20 - 2022-01-21 10:15 - 000000000 __SHD C:\Users\theom\AppData\Roaming\amd64_microsoft.windows.c..-controls.resources
2022-01-20 19:00 - 2022-01-20 19:00 - 000171013 _____ C:\Users\theom\AppData\LocalLow\x58DTzo8YC6.zip
2022-01-20 18:29 - 2022-01-20 18:29 - 000170587 _____ C:\Users\theom\AppData\LocalLow\6QZTyQvHK32.zip
2022-01-20 17:00 - 2022-01-20 17:04 - 000101888 _____ C:\Users\theom\Downloads\Existant-Annexe_financiere_Remuneration_au_pourcentage2-outil.xls
2022-01-20 16:43 - 2022-01-20 16:43 - 000119296 _____ C:\Users\theom\Downloads\existant-annexe_financiere_remuneration_au_pourcentage2-modele-rev30092016.xls
2022-01-20 16:16 - 2022-01-20 16:16 - 000170466 _____ C:\Users\theom\AppData\LocalLow\G1d6LFRjkFU.zip
2022-01-20 16:09 - 2022-01-20 16:09 - 000000000 ____D C:\Users\theom\AppData\Roaming\DemoServices
2022-01-20 15:58 - 2022-01-25 19:30 - 008315904 _____ (Microsoft Corporation) C:\Users\theom\AppData\Roamingproquota.exe
2022-01-20 15:57 - 2022-01-25 19:17 - 000000000 ____D C:\Users\theom\AppData\Roaming\BrowserSettings
2022-01-20 15:56 - 2022-01-20 16:17 - 000000000 ____D C:\Users\theom\AppData\Roaming\WindowsSetupServices
2022-01-20 12:51 - 2022-02-03 18:08 - 000000000 ___HD C:\ProgramData\Qvaz
2022-01-20 10:51 - 2022-01-20 10:51 - 000170419 _____ C:\Users\theom\AppData\LocalLow\82CdZFZ7PQq.zip
2022-01-20 10:20 - 2022-01-27 12:42 - 000000000 ____D C:\Users\theom\AppData\LocalLow\fB9oV
2022-01-20 10:20 - 2022-01-20 10:20 - 000172945 _____ C:\Users\theom\AppData\LocalLow\gj215n9QjNU.zip
2022-01-20 10:20 - 2022-01-20 10:20 - 000170527 _____ C:\Users\theom\AppData\LocalLow\hO1HgYBhTRx.zip
2022-01-20 10:20 - 2022-01-20 10:20 - 000170360 _____ C:\Users\theom\AppData\LocalLow\mUAtoMScB5G.zip
2022-01-19 18:09 - 2022-01-19 18:09 - 000008080 _____ C:\Users\theom\Downloads\RIB PLOMBERIE.pdf
2022-01-19 17:39 - 2022-01-19 17:54 - 000266498 _____ C:\Users\theom\Downloads\DEVIS TEGID (ELECTRICIEN) - AFF BEAUGAD.pdf
2022-01-19 17:30 - 2022-02-09 17:37 - 000000000 ____D C:\Users\theom\AppData\Roaming\URkQhHZHEH
2022-01-19 17:30 - 2022-01-20 10:20 - 000000000 ____D C:\Users\theom\AppData\LocalLow\sG8rM8v
2022-01-19 17:30 - 2022-01-19 17:30 - 000645592 _____ C:\ProgramData\sqlite3.dll
2022-01-19 17:30 - 2022-01-19 17:30 - 000176409 _____ C:\Users\theom\AppData\LocalLow\3btMUzgp6ih.zip
2022-01-19 17:30 - 2022-01-19 17:30 - 000003618 _____ C:\windows\system32\Tasks\Telemetry Logging
2022-01-19 17:30 - 2022-01-19 17:30 - 000000000 ____D C:\Users\theom\AppData\Roaming\Green
2022-01-19 17:30 - 2022-01-19 17:30 - 000000000 ____D C:\Users\theom\AppData\Roaming\defang
2022-01-19 17:29 - 2022-02-09 15:48 - 000000000 ____D C:\Users\theom\AppData\Local\Yandex
2022-01-19 17:29 - 2022-01-19 17:29 - 000000000 ____D C:\Users\theom\AppData\Roaming\ProfCleaner
2022-01-19 15:37 - 2022-01-19 15:37 - 000000000 ____D C:\Users\theom\AppData\Local\BitRecover
2022-01-18 16:34 - 2021-12-02 12:44 - 000001918 _____ C:\Users\theom\Desktop\PC CARO 2021 07 09.lnk
2022-01-18 13:58 - 2022-01-18 13:58 - 004659284 _____ C:\Users\theom\Downloads\01_merged (7).pdf
2022-01-17 17:36 - 2022-01-17 17:36 - 000394047 _____ C:\Users\theom\Downloads\FICHE-TECHNIQUE.pdf
2022-01-17 14:55 - 2022-01-17 14:55 - 000000000 ___HD C:\ProgramData\CanonBJ
2022-01-17 14:55 - 2022-01-17 14:55 - 000000000 ____D C:\Users\theom\AppData\Roaming\Canon
2022-01-17 14:54 - 2022-01-17 14:54 - 000000000 ___HD C:\Program Files\CanonBJ
2022-01-17 14:54 - 2019-07-12 05:00 - 000937984 _____ (CANON INC.) C:\windows\system32\CNMLMDY.DLL
2022-01-17 14:52 - 2022-02-03 16:38 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-01-17 14:52 - 2022-01-17 14:55 - 000000000 ____D C:\ProgramData\Canon
2022-01-17 14:52 - 2022-01-17 14:55 - 000000000 ____D C:\Program Files (x86)\Canon
2022-01-17 14:48 - 2022-01-17 14:48 - 019431072 _____ C:\Users\theom\Downloads\win-tx_3000-1_0-n_mcd.exe
2022-01-15 18:11 - 2022-01-15 18:11 - 000836394 _____ C:\Users\theom\Downloads\ilovepdf_pages-to-jpg.zip
2022-01-14 17:07 - 2022-01-14 17:07 - 004342628 _____ C:\Users\theom\Downloads\DOSSIER SCI RAPSAIL - COLOMBES.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000455993 _____ C:\Users\theom\Downloads\04_01_02_03_merged.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000178352 _____ C:\Users\theom\Downloads\20220113200452.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000148776 _____ C:\Users\theom\Downloads\20220113195015.pdf
2022-01-13 20:13 - 2022-01-13 20:13 - 000148776 _____ C:\Users\theom\Downloads\20220113195015 (1).pdf
2022-01-13 17:57 - 2022-01-13 17:57 - 000262001 _____ C:\Users\theom\Downloads\0220 (Sistema de Guardas BL-Vidro) (2).pdf
2022-01-13 17:38 - 2022-01-13 17:38 - 004827271 _____ C:\Users\theom\Downloads\concarneaugeraldine.zip
2022-01-12 10:23 - 2022-01-12 10:23 - 000523776 _____ (curl, hxxps://curl.se/) C:\windows\system32\curl.exe
2022-01-12 10:23 - 2022-01-12 10:23 - 000464384 _____ (curl, hxxps://curl.se/) C:\windows\SysWOW64\curl.exe
2022-01-11 12:02 - 2022-01-11 12:02 - 003354198 _____ C:\Users\theom\Downloads\01.pdf
2022-01-10 16:07 - 2022-01-10 16:07 - 000142054 _____ C:\Users\theom\Downloads\AttestationDroits.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-09 20:45 - 2021-10-18 16:01 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-09 20:45 - 2021-10-12 13:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-09 20:43 - 2021-11-02 15:30 - 000000000 ___RD C:\Users\theom\iCloudDrive
2022-02-09 20:43 - 2021-10-11 13:38 - 000880672 _____ C:\windows\system32\wpbbin.exe
2022-02-09 20:43 - 2021-10-11 13:38 - 000842128 _____ C:\windows\system32\AsusUpdateCheck.exe
2022-02-09 20:43 - 2021-08-12 11:51 - 000000006 ____H C:\windows\Tasks\SA.DAT
2022-02-09 20:43 - 2021-08-12 11:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-09 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-09 20:43 - 2019-12-07 10:03 - 000786432 _____ C:\windows\system32\config\BBI
2022-02-09 20:34 - 2021-12-07 14:16 - 000000000 ____D C:\Users\theom\Desktop\Earth School Competition
2022-02-09 19:28 - 2021-10-15 11:25 - 000000000 ____D C:\Users\theom\Desktop\DOSSIER EN COURS
2022-02-09 17:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-09 17:51 - 2019-12-07 10:14 - 000000000 ____D C:\windows\AppReadiness
2022-02-09 17:40 - 2021-08-12 11:59 - 001770906 _____ C:\windows\system32\PerfStringBackup.INI
2022-02-09 17:40 - 2019-12-07 15:49 - 000791594 _____ C:\windows\system32\perfh00C.dat
2022-02-09 17:40 - 2019-12-07 15:49 - 000149760 _____ C:\windows\system32\perfc00C.dat
2022-02-09 17:40 - 2019-12-07 10:13 - 000000000 ____D C:\windows\INF
2022-02-09 17:36 - 2021-08-12 11:50 - 000412840 _____ C:\windows\system32\FNTCACHE.DAT
2022-02-09 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\windows\Registration
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\SysWOW64\Dism
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\SystemResources
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\et-EE
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\es-MX
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\Dism
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\appraiser
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\ShellExperiences
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\PolicyDefinitions
2022-02-09 17:35 - 2019-12-07 10:14 - 000000000 ____D C:\windows\bcastdvr
2022-02-09 17:35 - 2019-12-07 10:03 - 000000000 ____D C:\windows\servicing
2022-02-09 17:22 - 2021-10-15 17:09 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-09 17:06 - 2021-08-12 11:50 - 000000000 ____D C:\windows\system32\SleepStudy
2022-02-09 15:23 - 2021-10-14 10:15 - 000000000 ____D C:\Users\theom\AppData\Local\Packages
2022-02-09 15:14 - 2019-12-07 10:03 - 000000000 ____D C:\windows\CbsTemp
2022-02-09 15:13 - 2021-10-15 17:15 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-02-09 15:12 - 2021-08-12 11:53 - 002877440 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2022-02-09 15:08 - 2021-10-14 13:12 - 000000000 ____D C:\windows\system32\MRT
2022-02-09 15:07 - 2021-10-14 13:12 - 149611728 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2022-02-09 10:05 - 2021-11-03 18:45 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-09 10:05 - 2021-11-03 18:45 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-02-07 18:47 - 2021-10-19 10:48 - 000000000 ____D C:\Users\theom\Desktop\48 RUE DE PARIS
2022-02-07 17:17 - 2021-12-03 12:15 - 000000000 ____D C:\Users\theom\AppData\Local\Archireport
2022-02-07 16:31 - 2021-10-14 10:17 - 000000000 ____D C:\Users\theom\AppData\Local\Comms
2022-02-07 10:11 - 2021-08-12 11:51 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-04 20:54 - 2021-10-15 16:20 - 000000000 ____D C:\Users\theom\AppData\Local\CrashDumps
2022-02-03 15:25 - 2021-10-14 10:15 - 000000000 ____D C:\Users\theom\AppData\Local\D3DSCache
2022-02-02 16:27 - 2021-10-15 15:58 - 000000000 ____D C:\ProgramData\Adobe
2022-02-02 16:26 - 2021-10-14 10:28 - 000000000 ____D C:\Program Files\Opera
2022-02-02 16:22 - 2021-12-03 15:43 - 000000000 ____D C:\Program Files\Wondershare
2022-02-02 10:24 - 2021-10-18 12:14 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-02 10:18 - 2021-10-14 10:28 - 000003984 _____ C:\windows\system32\Tasks\Opera scheduled Autoupdate 1634203693
2022-02-02 10:18 - 2021-10-14 10:28 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-01-31 12:12 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\NDF
2022-01-28 09:40 - 2021-08-12 11:51 - 000003634 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 09:40 - 2021-08-12 11:51 - 000003510 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-27 16:11 - 2021-12-13 12:30 - 000003584 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1968406187-103373859-842200942-1003
2022-01-27 16:11 - 2021-10-14 10:16 - 000003376 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1968406187-103373859-842200942-1003
2022-01-27 16:11 - 2021-10-14 10:16 - 000002424 _____ C:\Users\theom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-24 16:33 - 2021-12-03 15:43 - 000000000 ____D C:\Users\theom\AppData\Roaming\Wondershare
2022-01-20 19:21 - 2021-10-14 10:12 - 000000000 ____D C:\Users\theom
2022-01-20 11:12 - 2021-10-18 16:01 - 000003590 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-20 11:12 - 2021-10-18 16:01 - 000003466 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 17:57 - 2019-12-07 10:14 - 000000000 ____D C:\windows\LiveKernelReports
2022-01-19 15:34 - 2021-11-24 10:34 - 000000000 ____D C:\Users\theom\AppData\Roaming\vlc
2022-01-17 14:55 - 2021-10-15 16:41 - 000000000 ____D C:\Program Files\Canon
2022-01-17 14:55 - 2021-10-12 13:56 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-01-17 14:55 - 2019-12-07 15:51 - 000000000 ____D C:\windows\system32\FxsTmp
2022-01-15 15:36 - 2021-11-26 12:11 - 000000000 ____D C:\Users\theom\Desktop\wetransfer_pc-colombes_2021-11-26_0935
2022-01-14 09:43 - 2021-10-15 15:58 - 000000000 ____D C:\Users\theom\AppData\Local\Adobe
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ___SD C:\windows\system32\DiagSvcs
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\setup
2022-01-12 19:00 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\oobe
==================== Fichiers à la racine de certains dossiers ========
2022-01-21 10:58 - 2022-01-26 11:15 - 000006144 _____ () C:\ProgramData\7297_1642674434_9372.exe
2022-01-21 10:58 - 2022-01-26 11:15 - 005228544 _____ (VideoLAN) C:\ProgramData\752_1642674357_477.exe
2022-01-19 17:30 - 2022-01-19 17:30 - 000645592 _____ () C:\ProgramData\sqlite3.dll
2021-10-15 17:19 - 2021-10-15 17:19 - 000000000 _____ () C:\Users\theom\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================