Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
Exécuté par loge_ (administrateur) sur DESKTOP-JCGONUD (ASUSTeK Computer Inc. G74Sx) (29-05-2023 22:06:40)
Exécuté depuis C:\Users\loge_\OneDrive\Bureau\FRST64.exe
Profils chargés: loge_
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3031 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\loge_\AppData\Roaming\ZHP\ZHPSuite.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [6348112 2022-05-16] (Sentelic Corporation -> Sentelic Corporation)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [67504 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [2242376 2022-05-16] (Sentelic Corporation -> TODO:)
HKLM\...\Run: [FLxHCIm] => C:\WINDOWS\system32\FLxHCIm.exe [73648 2022-06-23] (Fresco Logic Inc -> Fresco Logic)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [846848 2014-06-20] (Qualcomm Atheros) [Fichier non signé]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [WindowsMasterUI] => C:\Program Files\Microsoft PC Manager\MSPCManager.exe [552344 2023-03-07] (Microsoft Corporation -> MSPCManager)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1318024 2021-04-15] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [SedServer] => "C:\Program Files (x86)\ATRis_Technik\Sed.exe" server (Pas de fichier)
HKLM-x32\...\Run: [TrayProcess] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe [965312 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUSTeK Computer Inc. -> ASUS)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [128000 2014-06-30] (Qualcomm Atheros) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [MicrosoftEdgeAutoLaunch_394D44E9BEF283A10F88559E465ACA27] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152208 2023-05-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [ManyCam] => "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [YandexDisk2] => C:\Users\loge_\AppData\Roaming\Yandex\YandexDisk2\3.2.19.4651\YandexDisk2.exe -autostart (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Print\Monitors\EPSON WF-2810 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBWCE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\113.0.5672.127\Installer\chrmstp.exe [2023-05-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2022-06-02]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CE4D03F-1664-4F52-86C3-BA6AF1595EFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {169106B7-89E8-4CF7-9A1F-8F4E38E50F6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC)
Task: {184E62CF-AAE5-4EDC-B70C-4FEBC3EB8934} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC)
Task: {1B9CEA46-1360-4593-9168-96DF55620174} - System32\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {23AE5A6F-5E87-4F9E-8616-3484C961D29B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D43E5D8-3D93-433D-B07B-E2A287A8F214} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {3D799C45-8964-46DF-B346-551D57659743} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3EC8E855-CF9A-452B-9108-DF16D4694A6C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5BAC0A-548D-4306-A816-443942C07B41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65B638DF-6D83-4439-B712-F5B8A3DBC0D0} - System32\Tasks\Opera scheduled Autoupdate 1641414850 => C:\Users\loge_\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {6CC48ABE-B05F-4D91-B877-360E7209D067} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7037DC78-C0AC-4F88-8FAF-2A55C32F98CA} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {7FA03780-C63D-4F37-B4F5-D55B35557099} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {83EED6EC-DB96-4238-A0B9-718A7F08A044} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B50DF82-86A5-425B-A8E7-7C72A8E6833F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9EC964FE-9B6C-4DCA-A6BF-40701121B92F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A431217E-53B5-433B-81F2-D8C1329C4A6B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B304B3D9-CD08-4BD0-824F-CF8996DCA716} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C68A0654-8234-4AA8-9C7D-083E09075D4B} - System32\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {DF75E6DD-7355-499F-98A8-A2CD1DC45576} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB54AB9F-6A7F-4F6B-BD45-B9E81AF0D47B} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121605552 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\windows\explorer.exe
Task: C:\windows\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{1D9E84AE-CA80-44C3-872B-36B1B8E080F3} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\windows\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{D264494B-9230-403B-A5D6-46F1E54D62B2} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2c1627b7-7254-47cb-b9a6-28aab1c54692}: [DhcpNameServer] 192.168.5.1
Tcpip\..\Interfaces\{799644ae-b99a-42ed-a464-4eb6183fecb2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4b94cb3-c10e-4ee7-86aa-f070b25863c0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ce895fed-d0c5-49d3-8039-f0308b6654c1}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{d30028d5-451f-47ec-aeae-83675fbbe087}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-29]
Edge Notifications: Default -> hxxps://www.bienici.com; hxxps://www.facebook.com; hxxps://www.slkworld.com
Edge HomePage: Default -> hxxps://www.google.com/
Edge DefaultSearchURL: Default -> hxxps://www.google.fr/search?q={searchTerms}&btnK=Recherche+Google&source=hp&ei=663WYa-UF4aIU5Thr5AH&iflsig=ALs-wAMAAAAAYda7-93Vamvf4muWL6zHJCeYdzCA5F1Y&ved=0ahUKEwjvtbP635z1AhUGxBQKHZTwC3IQ4dUDCAc&uact=5&oq=ajouter+mail+aol+dans+courrier+windows+10&gs_lcp=Cgdnd3Mtd2l6EAMyBQgAEM0CMgUIABDNAjIFCAAQzQI6EQguEIAEELEDEIMBEMcBENEDOgsIABCABBCxAxCDAToOCC4QgAQQsQMQxwEQ0QM6CAgAEIAEELEDOgsILhCABBDHARDRAzoICC4QsQMQgwE6CwguEIAEEMcBEKMCOg4ILhCABBCxAxDHARCjAjoICC4QgAQQsQM6BQgAEIAEOgsILhCABBDHARCvAToFCAAQsQM6BggAEBYQHjoFCCEQoAE6CAghEBYQHRAeSgUIlU4YA1DWDljmkQFg1ZMBaAFwAHgAgAHpAYgBjCCSAQcyNS4xNS4xmAEAoAEBsAEA&sclient=gws-wiz
Edge Session Restore: Default -> est activé.
Edge Extension: (Edge relevant text changes) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-05-03]
Edge Extension: (Void Theme - Black and Minimal) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kioklelcojgbjoljlilalgdcppkiioge [2022-01-07]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-05-02]
Edge Extension: (Trend Micro Security) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\plenenahmcbmckcigmnfohjdajncaakd [2023-04-24]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default [2023-05-29]
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> est activé.
CHR Extension: (Tampermonkey) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-01-24]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2022-01-06]
CHR Extension: (VPN gratuit pour Chrome par 1clickVPN) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfhplploccackoneaefokcmbjfbkenj [2023-05-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-29]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-29]
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2022-01-06]
CHR Extension: (Facture Gratuite pour AliExpress) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldacgepjfajfdaodegphiolcelhlnkfm [2023-05-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-06]
CHR Extension: (Trend Micro Toolbar) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2023-05-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [311808 2014-06-30] (Windows (R) Win 7 DDK provider) [Fichier non signé]
S4 CrypKey License; C:\windows\system32\crypserv.exe [126976 2010-03-18] (CrypKey (Canada) Ltd.) [Fichier non signé]
S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [48832 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2023-01-05] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S4 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 FspSvc; C:\Windows\System32\FspService.exe [2178888 2022-05-16] (Sentelic Corporation -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-29] (Malwarebytes Inc. -> Malwarebytes)
S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 PCManager Service; C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe [79768 2023-03-07] (Microsoft Corporation -> MSPCManagerService)
S4 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> )
S4 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [360368 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S2 SamsungRapidSvc; C:\windows\System32\RAPID\SamsungRapidSvc.exe [30960 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-05-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 VssEaseusProvider; C:\windows\system32\dllhost.exe /Processid:{9A056582-3D6F-467A-A9FB-06AEF4F96428} [21312 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Browser; %SystemRoot%\System32\browser.dll [X]
S4 TmWscSvc; "C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe" [X]
S2 WorkshopDbService; "C:\Program Files (x86)\ATRis_Technik\pgsql\bin\pg_ctl.exe" runservice -N WorkshopDbService -D "C:\ProgramData\WorkshopData\data2" -w
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 Btcsrusb; C:\windows\System32\Drivers\brlinkusb.sys [205312 2022-01-05] (Microsoft Windows Hardware Compatibility Publisher -> BARROT Corporation.)
R1 cbfs20; C:\windows\System32\drivers\cbfs20.sys [447560 2022-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 EUBAKUP; C:\windows\System32\drivers\eubakup.sys [75848 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\windows\System32\drivers\EUBKMON.sys [55352 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [24152 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [556112 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 euimgprt; C:\windows\System32\DRIVERS\euimgprt.sys [40024 2023-02-13] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R3 fspad_win764; C:\windows\system32\DRIVERS\fspad_win764.sys [209744 2022-05-16] (Sentelic Corporation -> Sentelic Corporation)
R3 gFilterMouUsb; C:\windows\System32\drivers\gFilterMouUsb.sys [30568 2022-01-05] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [239544 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl01710197; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{752FE420-FC22-423E-BBE5-42E4BFFD7B8D}\MpKslDrv.sys [212264 2023-05-29] (Microsoft Windows -> Microsoft Corporation)
R1 NetworkX; C:\windows\System32\ckldrv.sys [30272 2010-03-19] (CrypKey (Canada) Inc. -> )
R2 NPF; C:\windows\SysWOW64\drivers\npf64.sys [36600 2020-03-31] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 RtlWlanu; C:\windows\System32\drivers\rtwlanu.sys [8231912 2019-12-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R0 SamsungRapidDiskFltr; C:\windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [309752 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\windows\System32\DRIVERS\SamsungRapidFSFltr.sys [120280 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2022-02-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 veracrypt; C:\windows\System32\drivers\veracrypt.sys [825176 2022-01-06] (IDRIX SARL -> IDRIX)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [163048 2022-07-25] (MEDIATEK INC. -> MBB)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-29 19:54 - 2023-05-29 19:54 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-29 19:54 - 2023-05-29 19:54 - 000000000 ____D C:\Users\loge_\AppData\Local\Malwarebytes
2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe
2023-05-29 18:22 - 2023-05-29 18:23 - 000000000 ____D C:\windows\system32\appmgmt
2023-05-29 13:44 - 2023-05-29 22:07 - 000000000 ____D C:\FRST
2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe
2023-05-29 10:14 - 2023-05-29 22:08 - 000000000 ____D C:\Users\loge_\AppData\Roaming\ZHP
2023-05-29 10:14 - 2023-05-29 10:33 - 000000000 ____D C:\Users\loge_\AppData\Local\ZHP
2023-05-29 10:01 - 2023-05-29 10:01 - 000000000 ____D C:\Users\loge_\AppData\Local\mbam
2023-05-29 09:56 - 2023-05-29 09:58 - 000000000 ____D C:\AdwCleaner
2023-05-27 18:48 - 2023-05-27 18:48 - 000099218 _____ C:\Users\loge_\Downloads\ResileLigne-Free.pdf
2023-05-24 23:35 - 2023-05-24 23:35 - 000454144 _____ C:\Users\loge_\Downloads\morta_niv_2016.xls
2023-05-24 16:47 - 2023-05-24 16:47 - 000605436 _____ C:\Users\loge_\Downloads\464f4746-e15e-477c-8b52-23ac7f5e8b0d.pdf
2023-05-24 11:38 - 2023-05-24 11:38 - 000328896 _____ C:\Users\loge_\Downloads\Scan_2023-05-24-111044451.pdf
2023-05-24 10:45 - 2023-05-24 10:45 - 000000207 _____ C:\windows\tweaking.com-regbackup-DESKTOP-JCGONUD-Windows-10-Pro-(64-bit).dat
2023-05-24 10:45 - 2023-05-24 10:45 - 000000000 ____D C:\RegBackup
2023-05-24 10:44 - 2023-05-24 11:03 - 000000214 _____ C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job
2023-05-24 10:37 - 2023-05-24 10:37 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2023-05-24 10:36 - 2023-05-24 10:40 - 000388892 _____ C:\windows\Tweaking.com - Windows Repair Setup Log.txt
2023-05-23 23:35 - 2023-05-23 23:35 - 000000000 ___HD C:\$WinREAgent
2023-05-23 18:47 - 2023-05-23 18:47 - 000000000 ____D C:\KVRT2020_Data
2023-05-23 18:46 - 2023-05-23 18:47 - 105758392 _____ (AO Kaspersky Lab) C:\Users\loge_\Downloads\KVRT.exe
2023-05-23 18:25 - 2023-05-23 18:39 - 000000000 ____D C:\Users\loge_\Doctor Web
2023-05-23 18:23 - 2023-05-23 18:25 - 291425544 _____ C:\Users\loge_\Downloads\gzxvgqea.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll
2023-05-23 11:01 - 2023-05-23 11:04 - 000000000 ____D C:\Program Files (x86)\iMobie
2023-05-23 10:45 - 2023-05-23 10:45 - 000000000 ____D C:\ProgramData\4ukey for android
2023-05-21 18:42 - 2023-05-21 18:42 - 010098408 _____ (Realtek Semiconductor Corp.) C:\windows\SysWOW64\RsCRIcon.dll
2023-05-21 18:05 - 2023-05-21 18:33 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA Corporation
2023-05-21 18:05 - 2023-05-21 18:05 - 000004308 _____ C:\windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000004088 _____ C:\windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000004000 _____ C:\windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003940 _____ C:\windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003894 _____ C:\windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003866 _____ C:\windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003858 _____ C:\windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003654 _____ C:\windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\AppData\Local\CEF
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\ansel
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-05-21 18:05 - 2018-03-24 03:19 - 002480064 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2023-05-21 18:05 - 2018-03-24 03:19 - 002137024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2023-05-21 18:05 - 2018-03-24 03:19 - 001310144 _____ (NVIDIA Corporation) C:\windows\system32\NvRtmpStreamer64.dll
2023-05-21 18:04 - 2023-05-21 18:04 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2023-05-21 18:04 - 2022-05-16 13:46 - 000541784 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000189784 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000152408 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000001951 _____ C:\windows\NvTelemetryContainerRecovery.bat
2023-05-21 18:04 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
2023-05-21 18:04 - 2017-12-09 00:25 - 000798520 _____ C:\windows\SysWOW64\vulkan-1.dll
2023-05-21 18:04 - 2017-12-09 00:25 - 000490808 _____ C:\windows\SysWOW64\vulkaninfo.exe
2023-05-21 18:04 - 2017-12-09 00:24 - 000928568 _____ C:\windows\system32\vulkan-1.dll
2023-05-21 18:04 - 2017-12-09 00:24 - 000591672 _____ C:\windows\system32\vulkaninfo.exe
2023-05-21 18:03 - 2023-05-21 18:42 - 000059928 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2023-05-21 18:03 - 2018-03-24 03:19 - 001682288 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll
2023-05-21 18:03 - 2018-03-24 03:19 - 000058816 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvhci.sys
2023-05-21 18:03 - 2018-03-24 03:19 - 000045600 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll
2023-05-21 18:01 - 2023-05-21 18:01 - 000000000 ____D C:\NVIDIA
2023-05-19 17:29 - 2023-05-19 17:29 - 000255530 _____ C:\Users\loge_\Downloads\NTG5.5_ok.jpg.crdownload
2023-05-19 17:25 - 2023-05-19 17:25 - 000253872 _____ C:\Users\loge_\Downloads\ntg4.5.pdf
2023-05-19 14:28 - 2023-05-19 14:28 - 000064483 _____ C:\Users\loge_\Downloads\NTG4_5 comand pin spec _ INDIWORK.jpeg
2023-05-15 15:41 - 2023-05-15 15:41 - 001248091 _____ C:\Users\loge_\Downloads\APRIL-QUESTIONNAIRE-DE-SANTE.pdf
2023-05-15 10:50 - 2023-05-15 10:50 - 000055460 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE .pdf
2023-05-15 10:06 - 2023-05-15 10:06 - 000052712 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE by AVICAP.pdf
2023-05-09 15:17 - 2023-05-09 15:17 - 000003044 _____ C:\windows\system32\Tasks\ATKOSD2
2023-05-09 15:13 - 2023-05-09 15:13 - 000000000 ____D C:\Users\loge_\Downloads\ATKPackage_Win7_64_Z100015
2023-05-09 14:54 - 2023-05-09 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 10
2023-05-09 14:34 - 2023-05-09 14:39 - 000375138 _____ C:\Users\loge_\Downloads\Contrat_prelevement_2023.pdf
2023-05-09 14:33 - 2023-05-09 14:46 - 000859864 _____ C:\Users\loge_\Downloads\Mandat-prelevement.pdf
2023-05-08 11:31 - 2023-05-08 11:31 - 011810247 _____ C:\Users\loge_\Downloads\MTB Price list 19.04.23.pdf
2023-04-27 19:14 - 2023-04-27 19:14 - 003181831 _____ C:\Users\loge_\Downloads\Brochure Finn Est.pdf
2023-04-24 17:13 - 2023-05-15 10:52 - 000000000 ___RD C:\Users\loge_\Downloads\banque
2023-04-24 16:00 - 2023-04-24 16:00 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2023-04-24 15:10 - 2023-04-24 15:10 - 000000000 ____D C:\Users\loge_\AppData\Local\iToolab
2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\Users\loge_\AppData\Roaming\TSMonitor
2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\tenorshare
2023-04-24 14:52 - 2023-05-23 10:44 - 000000000 ____D C:\Program Files (x86)\Tenorshare
2023-04-24 14:52 - 2022-02-17 15:14 - 000165504 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudmdm.sys
2023-04-24 14:52 - 2022-02-17 15:14 - 000131712 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudbus.sys
2023-04-24 11:51 - 2023-04-24 11:51 - 012935249 _____ C:\Users\loge_\Downloads\CATALOGUE maison madrier contre collé.pdf
2023-04-24 11:51 - 2023-04-24 11:51 - 005754331 _____ C:\Users\loge_\Downloads\NOUVEAU maison ossature bois clé en main.pdf
2023-04-24 11:50 - 2023-04-24 11:50 - 002396735 _____ C:\Users\loge_\Downloads\Catalogue chalet en madrier, Yourte, Tonneau, Pod-converti-converti.pdf
2023-04-19 17:46 - 2023-04-19 17:46 - 012916823 _____ C:\Users\loge_\Downloads\Brochure-Logicobois.pdf
2023-04-09 11:54 - 2023-03-26 17:49 - 000135352 _____ C:\windows\system32\StartupInfo.xml
2023-04-09 11:53 - 2023-04-09 11:53 - 000001141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Manager.lnk
2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\ProgramData\Windows Master Setup
2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\Program Files\Microsoft PC Manager
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\Windows Master
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\ToastNotificationManagerCompat
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\PC Manager
2023-04-09 11:51 - 2023-04-26 17:57 - 000000000 ____D C:\ProgramData\Windows Master
2023-03-26 19:36 - 2023-03-26 19:36 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.14
2023-03-26 17:46 - 2023-03-26 17:46 - 000000000 ____D C:\windows\system32\Drivers\mde
2023-03-24 15:30 - 2023-03-24 15:30 - 000016216 _____ C:\Users\loge_\Downloads\courrier-locataire-proprietaire.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-29 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\Registration
2023-05-29 22:01 - 2022-01-06 13:40 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-29 22:00 - 2022-01-06 12:50 - 000000000 ____D C:\windows\system32\SleepStudy
2023-05-29 21:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-29 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\windows\AppReadiness
2023-05-29 19:54 - 2019-12-07 11:14 - 000000000 ___HD C:\windows\ELAMBKUP
2023-05-29 19:51 - 2022-01-06 12:59 - 001761484 _____ C:\windows\system32\PerfStringBackup.INI
2023-05-29 19:51 - 2019-12-07 16:50 - 000775786 _____ C:\windows\system32\perfh00C.dat
2023-05-29 19:51 - 2019-12-07 16:50 - 000144898 _____ C:\windows\system32\perfc00C.dat
2023-05-29 19:51 - 2019-12-07 11:13 - 000000000 ____D C:\windows\INF
2023-05-29 19:50 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-29 19:47 - 2022-01-06 12:58 - 000000006 ____H C:\windows\Tasks\SA.DAT
2023-05-29 19:47 - 2022-01-05 21:36 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-29 19:47 - 2019-12-07 11:03 - 000786432 _____ C:\windows\system32\config\BBI
2023-05-29 18:51 - 2022-01-05 21:57 - 000000000 ____D C:\ProgramData\Trend Micro
2023-05-29 18:49 - 2022-01-05 22:05 - 000000000 ____D C:\Users\loge_\AppData\Local\Trend Micro
2023-05-29 18:47 - 2022-12-23 21:02 - 000000000 ____D C:\Users\loge_\WebComponents
2023-05-29 18:46 - 2022-01-05 22:51 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-05-29 18:44 - 2022-01-05 21:47 - 000000000 ____D C:\Users\loge_\AppData\Local\Packages
2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files\Bonjour
2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files (x86)\Bonjour
2023-05-29 10:53 - 2019-12-07 11:03 - 000032768 _____ C:\windows\system32\config\ELAM
2023-05-29 09:58 - 2022-05-16 13:37 - 000000000 ____D C:\Users\loge_\AppData\Roaming\IObit
2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\ASUS
2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-05-28 10:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-27 22:25 - 2022-01-05 23:00 - 000000000 ____D C:\Users\loge_\AppData\Roaming\vlc
2023-05-27 09:27 - 2022-01-05 21:37 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-24 12:11 - 2019-12-07 11:03 - 000000000 ____D C:\windows\CbsTemp
2023-05-24 12:07 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_\AppData\Roaming\Microsoft\Windows
2023-05-24 11:34 - 2022-01-05 21:47 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-05-24 11:32 - 2022-01-06 12:50 - 000294816 _____ C:\windows\system32\FNTCACHE.DAT
2023-05-24 11:32 - 2022-01-05 21:40 - 000000000 ____D C:\windows\CSC
2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\PrintDialog
2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\ImmersiveControlPanel
2023-05-23 23:46 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_
2023-05-23 23:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SysWOW64\WinMetadata
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SystemResources
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\WinMetadata
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\oobe
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\migwiz
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\ShellExperiences
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\bcastdvr
2023-05-23 23:42 - 2022-01-06 12:53 - 003015168 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2023-05-23 11:18 - 2022-06-02 10:22 - 000000000 ____D C:\Users\loge_\AppData\Local\CrashDumps
2023-05-23 11:04 - 2023-01-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2023-05-21 18:42 - 2022-05-16 13:51 - 000842592 _____ (Realsil Semiconductor Corporation) C:\windows\system32\Drivers\RtsUer.sys
2023-05-21 18:06 - 2022-01-06 16:23 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-05-20 23:15 - 2022-01-05 21:49 - 000000000 ____D C:\Users\loge_\AppData\Local\PlaceholderTileLogoFolder
2023-05-20 23:15 - 2022-01-05 21:47 - 000000000 ____D C:\ProgramData\Packages
2023-05-19 11:43 - 2022-01-06 13:41 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-05-17 16:56 - 2022-01-06 13:40 - 000003884 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-05-17 16:56 - 2022-01-06 13:40 - 000003760 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-05-15 13:16 - 2022-04-13 18:46 - 000000000 ____D C:\Users\loge_\Downloads\garant location
2023-05-11 21:52 - 2022-01-06 12:58 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-11 21:52 - 2022-01-06 12:58 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-10 12:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\SecureBootUpdates
2023-05-10 11:25 - 2022-01-05 21:53 - 000000000 ____D C:\windows\system32\MRT
2023-05-10 11:22 - 2022-01-05 21:53 - 159583304 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2023-05-09 15:15 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2023-05-09 14:54 - 2022-05-16 13:38 - 000000000 ____D C:\ProgramData\ProductData
2023-05-04 17:30 - 2019-12-07 11:14 - 000000000 ____D C:\windows\LiveKernelReports
2023-05-03 10:09 - 2022-01-05 21:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-03 10:06 - 2022-01-05 21:36 - 000000000 ____D C:\windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2021-12-13 15:05 - 2021-12-13 15:05 - 000000376 _____ () C:\Users\loge_\AppData\Local\cx.dat
2022-01-05 22:05 - 2022-01-05 22:05 - 000000036 _____ () C:\Users\loge_\AppData\Local\housecall.guid.cache
2021-12-13 15:06 - 2021-12-13 15:06 - 000000032 _____ () C:\Users\loge_\AppData\Local\xc.dat
==================== SigCheckExt =========================
2014-06-30 14:29 - 2014-06-30 14:29 - 000370176 _____ (Qualcomm Atheros) C:\windows\system32\AthCredentialProvider.dll
2022-09-21 16:19 - 2010-03-18 22:25 - 000126976 _____ (CrypKey (Canada) Ltd.) C:\windows\system32\Crypserv.exe
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppui.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppui.dll
2022-01-15 15:19 - 2017-12-08 12:01 - 000713216 _____ C:\windows\system32\xvidcore.dll
2022-01-15 15:19 - 2017-12-08 12:01 - 000251392 _____ C:\windows\system32\xvidvfw.dll
2022-09-21 16:19 - 2010-01-20 18:28 - 000165888 ____R (Kenonic Controls) C:\windows\Ckconfig.exe
2022-09-21 16:19 - 2010-01-20 18:28 - 000011776 _____ C:\windows\Ckrfresh.exe
2022-06-02 10:37 - 1998-10-07 13:08 - 000327168 _____ (InstallShield Software Corporation) C:\windows\IsUn040c.exe
2022-06-02 10:38 - 2002-08-06 14:41 - 000087392 _____ (Twain Working Group) C:\windows\twain.dll
2022-09-21 16:11 - 2022-09-21 15:57 - 000004656 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS16GT.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000016384 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS32GT.DLL
2022-12-16 18:00 - 1998-08-18 17:25 - 000169984 _____ C:\windows\SysWOW64\glut32.dll
2022-09-21 16:11 - 2022-09-21 15:57 - 001050896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJET35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJINT35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJTER35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000168720 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSLTUS35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBC32GT.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000072704 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBCTL32.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000368912 _____ (Microsoft Corporation) C:\windows\SysWOW64\VBAR332.DLL
2022-01-15 15:19 - 2017-12-08 11:59 - 000638976 _____ C:\windows\SysWOW64\xvidcore.dll
2022-01-15 15:19 - 2017-12-08 11:59 - 000235520 _____ C:\windows\SysWOW64\xvidvfw.dll
2022-12-23 18:51 - 2020-03-31 15:13 - 000149504 _____ C:\windows\SysWOW64\Drivers\NpfDetect.dll
2022-12-23 18:51 - 2020-03-31 15:13 - 000046080 _____ C:\windows\SysWOW64\Drivers\NpfDetectApp.exe
2022-07-14 11:17 - 2022-07-14 11:17 - 000077824 _____ ( ) C:\Users\loge_\Downloads\guiformat.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll
2022-12-23 18:58 - 2022-12-23 18:58 - 001039609 _____ ( ) C:\Users\loge_\Downloads\IPCamSuite-1.2.26.8.exe
2022-12-23 21:02 - 2022-12-23 21:02 - 015407992 _____ ( ) C:\Users\loge_\Downloads\LocalServiceComponents.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll
2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe
2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale en-us
inherit {globalsettings}
default {current}
resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de démarrage Windows
-----------------------------
identificateur {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \windows\system32\winload.exe
description Windows 10
locale en-us
inherit {bootloadersettings}
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \windows
resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d}
nx OptIn
bootmenupolicy Standard
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {67310fda-6ede-11ec-9265-eff7afe036b9}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {f30ed862-13ce-11ed-b1ba-5404a602c74d}
device partition=C:
path \windows\system32\winresume.exe
description Windows Resume Application
locale en-us
inherit {resumeloadersettings}
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-us
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par loge_ (administrateur) sur DESKTOP-JCGONUD (ASUSTeK Computer Inc. G74Sx) (29-05-2023 22:06:40)
Exécuté depuis C:\Users\loge_\OneDrive\Bureau\FRST64.exe
Profils chargés: loge_
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3031 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\loge_\AppData\Roaming\ZHP\ZHPSuite.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [6348112 2022-05-16] (Sentelic Corporation -> Sentelic Corporation)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [67504 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [2242376 2022-05-16] (Sentelic Corporation -> TODO:
HKLM\...\Run: [FLxHCIm] => C:\WINDOWS\system32\FLxHCIm.exe [73648 2022-06-23] (Fresco Logic Inc -> Fresco Logic)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [846848 2014-06-20] (Qualcomm Atheros) [Fichier non signé]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [WindowsMasterUI] => C:\Program Files\Microsoft PC Manager\MSPCManager.exe [552344 2023-03-07] (Microsoft Corporation -> MSPCManager)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1318024 2021-04-15] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [SedServer] => "C:\Program Files (x86)\ATRis_Technik\Sed.exe" server (Pas de fichier)
HKLM-x32\...\Run: [TrayProcess] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe [965312 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUSTeK Computer Inc. -> ASUS)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [128000 2014-06-30] (Qualcomm Atheros) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [MicrosoftEdgeAutoLaunch_394D44E9BEF283A10F88559E465ACA27] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152208 2023-05-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [ManyCam] => "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [YandexDisk2] => C:\Users\loge_\AppData\Roaming\Yandex\YandexDisk2\3.2.19.4651\YandexDisk2.exe -autostart (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe (Pas de fichier)
HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Print\Monitors\EPSON WF-2810 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBWCE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\113.0.5672.127\Installer\chrmstp.exe [2023-05-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2022-06-02]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CE4D03F-1664-4F52-86C3-BA6AF1595EFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {169106B7-89E8-4CF7-9A1F-8F4E38E50F6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC)
Task: {184E62CF-AAE5-4EDC-B70C-4FEBC3EB8934} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC)
Task: {1B9CEA46-1360-4593-9168-96DF55620174} - System32\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {23AE5A6F-5E87-4F9E-8616-3484C961D29B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D43E5D8-3D93-433D-B07B-E2A287A8F214} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {3D799C45-8964-46DF-B346-551D57659743} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3EC8E855-CF9A-452B-9108-DF16D4694A6C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C5BAC0A-548D-4306-A816-443942C07B41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65B638DF-6D83-4439-B712-F5B8A3DBC0D0} - System32\Tasks\Opera scheduled Autoupdate 1641414850 => C:\Users\loge_\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {6CC48ABE-B05F-4D91-B877-360E7209D067} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7037DC78-C0AC-4F88-8FAF-2A55C32F98CA} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {7FA03780-C63D-4F37-B4F5-D55B35557099} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {83EED6EC-DB96-4238-A0B9-718A7F08A044} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B50DF82-86A5-425B-A8E7-7C72A8E6833F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9EC964FE-9B6C-4DCA-A6BF-40701121B92F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A431217E-53B5-433B-81F2-D8C1329C4A6B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B304B3D9-CD08-4BD0-824F-CF8996DCA716} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C68A0654-8234-4AA8-9C7D-083E09075D4B} - System32\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {DF75E6DD-7355-499F-98A8-A2CD1DC45576} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB54AB9F-6A7F-4F6B-BD45-B9E81AF0D47B} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121605552 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\windows\explorer.exe
Task: C:\windows\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{1D9E84AE-CA80-44C3-872B-36B1B8E080F3} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\windows\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{D264494B-9230-403B-A5D6-46F1E54D62B2} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2c1627b7-7254-47cb-b9a6-28aab1c54692}: [DhcpNameServer] 192.168.5.1
Tcpip\..\Interfaces\{799644ae-b99a-42ed-a464-4eb6183fecb2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4b94cb3-c10e-4ee7-86aa-f070b25863c0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ce895fed-d0c5-49d3-8039-f0308b6654c1}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{d30028d5-451f-47ec-aeae-83675fbbe087}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-29]
Edge Notifications: Default -> hxxps://www.bienici.com; hxxps://www.facebook.com; hxxps://www.slkworld.com
Edge HomePage: Default -> hxxps://www.google.com/
Edge DefaultSearchURL: Default -> hxxps://www.google.fr/search?q={searchTerms}&btnK=Recherche+Google&source=hp&ei=663WYa-UF4aIU5Thr5AH&iflsig=ALs-wAMAAAAAYda7-93Vamvf4muWL6zHJCeYdzCA5F1Y&ved=0ahUKEwjvtbP635z1AhUGxBQKHZTwC3IQ4dUDCAc&uact=5&oq=ajouter+mail+aol+dans+courrier+windows+10&gs_lcp=Cgdnd3Mtd2l6EAMyBQgAEM0CMgUIABDNAjIFCAAQzQI6EQguEIAEELEDEIMBEMcBENEDOgsIABCABBCxAxCDAToOCC4QgAQQsQMQxwEQ0QM6CAgAEIAEELEDOgsILhCABBDHARDRAzoICC4QsQMQgwE6CwguEIAEEMcBEKMCOg4ILhCABBCxAxDHARCjAjoICC4QgAQQsQM6BQgAEIAEOgsILhCABBDHARCvAToFCAAQsQM6BggAEBYQHjoFCCEQoAE6CAghEBYQHRAeSgUIlU4YA1DWDljmkQFg1ZMBaAFwAHgAgAHpAYgBjCCSAQcyNS4xNS4xmAEAoAEBsAEA&sclient=gws-wiz
Edge Session Restore: Default -> est activé.
Edge Extension: (Edge relevant text changes) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-05-03]
Edge Extension: (Void Theme - Black and Minimal) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kioklelcojgbjoljlilalgdcppkiioge [2022-01-07]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-05-02]
Edge Extension: (Trend Micro Security) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\plenenahmcbmckcigmnfohjdajncaakd [2023-04-24]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default [2023-05-29]
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> est activé.
CHR Extension: (Tampermonkey) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-01-24]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2022-01-06]
CHR Extension: (VPN gratuit pour Chrome par 1clickVPN) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfhplploccackoneaefokcmbjfbkenj [2023-05-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-29]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-29]
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2022-01-06]
CHR Extension: (Facture Gratuite pour AliExpress) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldacgepjfajfdaodegphiolcelhlnkfm [2023-05-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-06]
CHR Extension: (Trend Micro Toolbar) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2023-05-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [311808 2014-06-30] (Windows (R) Win 7 DDK provider) [Fichier non signé]
S4 CrypKey License; C:\windows\system32\crypserv.exe [126976 2010-03-18] (CrypKey (Canada) Ltd.) [Fichier non signé]
S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [48832 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2023-01-05] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S4 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 FspSvc; C:\Windows\System32\FspService.exe [2178888 2022-05-16] (Sentelic Corporation -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-29] (Malwarebytes Inc. -> Malwarebytes)
S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 PCManager Service; C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe [79768 2023-03-07] (Microsoft Corporation -> MSPCManagerService)
S4 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> )
S4 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [360368 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S2 SamsungRapidSvc; C:\windows\System32\RAPID\SamsungRapidSvc.exe [30960 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-05-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 VssEaseusProvider; C:\windows\system32\dllhost.exe /Processid:{9A056582-3D6F-467A-A9FB-06AEF4F96428} [21312 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Browser; %SystemRoot%\System32\browser.dll [X]
S4 TmWscSvc; "C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe" [X]
S2 WorkshopDbService; "C:\Program Files (x86)\ATRis_Technik\pgsql\bin\pg_ctl.exe" runservice -N WorkshopDbService -D "C:\ProgramData\WorkshopData\data2" -w
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 Btcsrusb; C:\windows\System32\Drivers\brlinkusb.sys [205312 2022-01-05] (Microsoft Windows Hardware Compatibility Publisher -> BARROT Corporation.)
R1 cbfs20; C:\windows\System32\drivers\cbfs20.sys [447560 2022-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 EUBAKUP; C:\windows\System32\drivers\eubakup.sys [75848 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\windows\System32\drivers\EUBKMON.sys [55352 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [24152 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [556112 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 euimgprt; C:\windows\System32\DRIVERS\euimgprt.sys [40024 2023-02-13] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R3 fspad_win764; C:\windows\system32\DRIVERS\fspad_win764.sys [209744 2022-05-16] (Sentelic Corporation -> Sentelic Corporation)
R3 gFilterMouUsb; C:\windows\System32\drivers\gFilterMouUsb.sys [30568 2022-01-05] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [239544 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl01710197; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{752FE420-FC22-423E-BBE5-42E4BFFD7B8D}\MpKslDrv.sys [212264 2023-05-29] (Microsoft Windows -> Microsoft Corporation)
R1 NetworkX; C:\windows\System32\ckldrv.sys [30272 2010-03-19] (CrypKey (Canada) Inc. -> )
R2 NPF; C:\windows\SysWOW64\drivers\npf64.sys [36600 2020-03-31] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 RtlWlanu; C:\windows\System32\drivers\rtwlanu.sys [8231912 2019-12-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R0 SamsungRapidDiskFltr; C:\windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [309752 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\windows\System32\DRIVERS\SamsungRapidFSFltr.sys [120280 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2022-02-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 veracrypt; C:\windows\System32\drivers\veracrypt.sys [825176 2022-01-06] (IDRIX SARL -> IDRIX)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [163048 2022-07-25] (MEDIATEK INC. -> MBB)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-29 19:54 - 2023-05-29 19:54 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-29 19:54 - 2023-05-29 19:54 - 000000000 ____D C:\Users\loge_\AppData\Local\Malwarebytes
2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe
2023-05-29 18:22 - 2023-05-29 18:23 - 000000000 ____D C:\windows\system32\appmgmt
2023-05-29 13:44 - 2023-05-29 22:07 - 000000000 ____D C:\FRST
2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe
2023-05-29 10:14 - 2023-05-29 22:08 - 000000000 ____D C:\Users\loge_\AppData\Roaming\ZHP
2023-05-29 10:14 - 2023-05-29 10:33 - 000000000 ____D C:\Users\loge_\AppData\Local\ZHP
2023-05-29 10:01 - 2023-05-29 10:01 - 000000000 ____D C:\Users\loge_\AppData\Local\mbam
2023-05-29 09:56 - 2023-05-29 09:58 - 000000000 ____D C:\AdwCleaner
2023-05-27 18:48 - 2023-05-27 18:48 - 000099218 _____ C:\Users\loge_\Downloads\ResileLigne-Free.pdf
2023-05-24 23:35 - 2023-05-24 23:35 - 000454144 _____ C:\Users\loge_\Downloads\morta_niv_2016.xls
2023-05-24 16:47 - 2023-05-24 16:47 - 000605436 _____ C:\Users\loge_\Downloads\464f4746-e15e-477c-8b52-23ac7f5e8b0d.pdf
2023-05-24 11:38 - 2023-05-24 11:38 - 000328896 _____ C:\Users\loge_\Downloads\Scan_2023-05-24-111044451.pdf
2023-05-24 10:45 - 2023-05-24 10:45 - 000000207 _____ C:\windows\tweaking.com-regbackup-DESKTOP-JCGONUD-Windows-10-Pro-(64-bit).dat
2023-05-24 10:45 - 2023-05-24 10:45 - 000000000 ____D C:\RegBackup
2023-05-24 10:44 - 2023-05-24 11:03 - 000000214 _____ C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job
2023-05-24 10:37 - 2023-05-24 10:37 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2023-05-24 10:36 - 2023-05-24 10:40 - 000388892 _____ C:\windows\Tweaking.com - Windows Repair Setup Log.txt
2023-05-23 23:35 - 2023-05-23 23:35 - 000000000 ___HD C:\$WinREAgent
2023-05-23 18:47 - 2023-05-23 18:47 - 000000000 ____D C:\KVRT2020_Data
2023-05-23 18:46 - 2023-05-23 18:47 - 105758392 _____ (AO Kaspersky Lab) C:\Users\loge_\Downloads\KVRT.exe
2023-05-23 18:25 - 2023-05-23 18:39 - 000000000 ____D C:\Users\loge_\Doctor Web
2023-05-23 18:23 - 2023-05-23 18:25 - 291425544 _____ C:\Users\loge_\Downloads\gzxvgqea.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll
2023-05-23 11:01 - 2023-05-23 11:04 - 000000000 ____D C:\Program Files (x86)\iMobie
2023-05-23 10:45 - 2023-05-23 10:45 - 000000000 ____D C:\ProgramData\4ukey for android
2023-05-21 18:42 - 2023-05-21 18:42 - 010098408 _____ (Realtek Semiconductor Corp.) C:\windows\SysWOW64\RsCRIcon.dll
2023-05-21 18:05 - 2023-05-21 18:33 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA Corporation
2023-05-21 18:05 - 2023-05-21 18:05 - 000004308 _____ C:\windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000004088 _____ C:\windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000004000 _____ C:\windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003940 _____ C:\windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003894 _____ C:\windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003866 _____ C:\windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003858 _____ C:\windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000003654 _____ C:\windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\AppData\Local\CEF
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\ansel
2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-05-21 18:05 - 2018-03-24 03:19 - 002480064 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2023-05-21 18:05 - 2018-03-24 03:19 - 002137024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2023-05-21 18:05 - 2018-03-24 03:19 - 001310144 _____ (NVIDIA Corporation) C:\windows\system32\NvRtmpStreamer64.dll
2023-05-21 18:04 - 2023-05-21 18:04 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2023-05-21 18:04 - 2022-05-16 13:46 - 000541784 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000189784 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000152408 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2023-05-21 18:04 - 2018-03-24 03:19 - 000001951 _____ C:\windows\NvTelemetryContainerRecovery.bat
2023-05-21 18:04 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
2023-05-21 18:04 - 2017-12-09 00:25 - 000798520 _____ C:\windows\SysWOW64\vulkan-1.dll
2023-05-21 18:04 - 2017-12-09 00:25 - 000490808 _____ C:\windows\SysWOW64\vulkaninfo.exe
2023-05-21 18:04 - 2017-12-09 00:24 - 000928568 _____ C:\windows\system32\vulkan-1.dll
2023-05-21 18:04 - 2017-12-09 00:24 - 000591672 _____ C:\windows\system32\vulkaninfo.exe
2023-05-21 18:03 - 2023-05-21 18:42 - 000059928 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2023-05-21 18:03 - 2018-03-24 03:19 - 001682288 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll
2023-05-21 18:03 - 2018-03-24 03:19 - 000058816 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvhci.sys
2023-05-21 18:03 - 2018-03-24 03:19 - 000045600 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll
2023-05-21 18:01 - 2023-05-21 18:01 - 000000000 ____D C:\NVIDIA
2023-05-19 17:29 - 2023-05-19 17:29 - 000255530 _____ C:\Users\loge_\Downloads\NTG5.5_ok.jpg.crdownload
2023-05-19 17:25 - 2023-05-19 17:25 - 000253872 _____ C:\Users\loge_\Downloads\ntg4.5.pdf
2023-05-19 14:28 - 2023-05-19 14:28 - 000064483 _____ C:\Users\loge_\Downloads\NTG4_5 comand pin spec _ INDIWORK.jpeg
2023-05-15 15:41 - 2023-05-15 15:41 - 001248091 _____ C:\Users\loge_\Downloads\APRIL-QUESTIONNAIRE-DE-SANTE.pdf
2023-05-15 10:50 - 2023-05-15 10:50 - 000055460 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE .pdf
2023-05-15 10:06 - 2023-05-15 10:06 - 000052712 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE by AVICAP.pdf
2023-05-09 15:17 - 2023-05-09 15:17 - 000003044 _____ C:\windows\system32\Tasks\ATKOSD2
2023-05-09 15:13 - 2023-05-09 15:13 - 000000000 ____D C:\Users\loge_\Downloads\ATKPackage_Win7_64_Z100015
2023-05-09 14:54 - 2023-05-09 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 10
2023-05-09 14:34 - 2023-05-09 14:39 - 000375138 _____ C:\Users\loge_\Downloads\Contrat_prelevement_2023.pdf
2023-05-09 14:33 - 2023-05-09 14:46 - 000859864 _____ C:\Users\loge_\Downloads\Mandat-prelevement.pdf
2023-05-08 11:31 - 2023-05-08 11:31 - 011810247 _____ C:\Users\loge_\Downloads\MTB Price list 19.04.23.pdf
2023-04-27 19:14 - 2023-04-27 19:14 - 003181831 _____ C:\Users\loge_\Downloads\Brochure Finn Est.pdf
2023-04-24 17:13 - 2023-05-15 10:52 - 000000000 ___RD C:\Users\loge_\Downloads\banque
2023-04-24 16:00 - 2023-04-24 16:00 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2023-04-24 15:10 - 2023-04-24 15:10 - 000000000 ____D C:\Users\loge_\AppData\Local\iToolab
2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\Users\loge_\AppData\Roaming\TSMonitor
2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\tenorshare
2023-04-24 14:52 - 2023-05-23 10:44 - 000000000 ____D C:\Program Files (x86)\Tenorshare
2023-04-24 14:52 - 2022-02-17 15:14 - 000165504 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudmdm.sys
2023-04-24 14:52 - 2022-02-17 15:14 - 000131712 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudbus.sys
2023-04-24 11:51 - 2023-04-24 11:51 - 012935249 _____ C:\Users\loge_\Downloads\CATALOGUE maison madrier contre collé.pdf
2023-04-24 11:51 - 2023-04-24 11:51 - 005754331 _____ C:\Users\loge_\Downloads\NOUVEAU maison ossature bois clé en main.pdf
2023-04-24 11:50 - 2023-04-24 11:50 - 002396735 _____ C:\Users\loge_\Downloads\Catalogue chalet en madrier, Yourte, Tonneau, Pod-converti-converti.pdf
2023-04-19 17:46 - 2023-04-19 17:46 - 012916823 _____ C:\Users\loge_\Downloads\Brochure-Logicobois.pdf
2023-04-09 11:54 - 2023-03-26 17:49 - 000135352 _____ C:\windows\system32\StartupInfo.xml
2023-04-09 11:53 - 2023-04-09 11:53 - 000001141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Manager.lnk
2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\ProgramData\Windows Master Setup
2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\Program Files\Microsoft PC Manager
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\Windows Master
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\ToastNotificationManagerCompat
2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\PC Manager
2023-04-09 11:51 - 2023-04-26 17:57 - 000000000 ____D C:\ProgramData\Windows Master
2023-03-26 19:36 - 2023-03-26 19:36 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.14
2023-03-26 17:46 - 2023-03-26 17:46 - 000000000 ____D C:\windows\system32\Drivers\mde
2023-03-24 15:30 - 2023-03-24 15:30 - 000016216 _____ C:\Users\loge_\Downloads\courrier-locataire-proprietaire.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-29 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\Registration
2023-05-29 22:01 - 2022-01-06 13:40 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-29 22:00 - 2022-01-06 12:50 - 000000000 ____D C:\windows\system32\SleepStudy
2023-05-29 21:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-29 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\windows\AppReadiness
2023-05-29 19:54 - 2019-12-07 11:14 - 000000000 ___HD C:\windows\ELAMBKUP
2023-05-29 19:51 - 2022-01-06 12:59 - 001761484 _____ C:\windows\system32\PerfStringBackup.INI
2023-05-29 19:51 - 2019-12-07 16:50 - 000775786 _____ C:\windows\system32\perfh00C.dat
2023-05-29 19:51 - 2019-12-07 16:50 - 000144898 _____ C:\windows\system32\perfc00C.dat
2023-05-29 19:51 - 2019-12-07 11:13 - 000000000 ____D C:\windows\INF
2023-05-29 19:50 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-29 19:47 - 2022-01-06 12:58 - 000000006 ____H C:\windows\Tasks\SA.DAT
2023-05-29 19:47 - 2022-01-05 21:36 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-29 19:47 - 2019-12-07 11:03 - 000786432 _____ C:\windows\system32\config\BBI
2023-05-29 18:51 - 2022-01-05 21:57 - 000000000 ____D C:\ProgramData\Trend Micro
2023-05-29 18:49 - 2022-01-05 22:05 - 000000000 ____D C:\Users\loge_\AppData\Local\Trend Micro
2023-05-29 18:47 - 2022-12-23 21:02 - 000000000 ____D C:\Users\loge_\WebComponents
2023-05-29 18:46 - 2022-01-05 22:51 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-05-29 18:44 - 2022-01-05 21:47 - 000000000 ____D C:\Users\loge_\AppData\Local\Packages
2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files\Bonjour
2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files (x86)\Bonjour
2023-05-29 10:53 - 2019-12-07 11:03 - 000032768 _____ C:\windows\system32\config\ELAM
2023-05-29 09:58 - 2022-05-16 13:37 - 000000000 ____D C:\Users\loge_\AppData\Roaming\IObit
2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\ASUS
2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-05-28 10:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-27 22:25 - 2022-01-05 23:00 - 000000000 ____D C:\Users\loge_\AppData\Roaming\vlc
2023-05-27 09:27 - 2022-01-05 21:37 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-24 12:11 - 2019-12-07 11:03 - 000000000 ____D C:\windows\CbsTemp
2023-05-24 12:07 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_\AppData\Roaming\Microsoft\Windows
2023-05-24 11:34 - 2022-01-05 21:47 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-05-24 11:32 - 2022-01-06 12:50 - 000294816 _____ C:\windows\system32\FNTCACHE.DAT
2023-05-24 11:32 - 2022-01-05 21:40 - 000000000 ____D C:\windows\CSC
2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\PrintDialog
2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\ImmersiveControlPanel
2023-05-23 23:46 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_
2023-05-23 23:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SysWOW64\WinMetadata
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SystemResources
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\WinMetadata
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\oobe
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\migwiz
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\ShellExperiences
2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\bcastdvr
2023-05-23 23:42 - 2022-01-06 12:53 - 003015168 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2023-05-23 11:18 - 2022-06-02 10:22 - 000000000 ____D C:\Users\loge_\AppData\Local\CrashDumps
2023-05-23 11:04 - 2023-01-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2023-05-21 18:42 - 2022-05-16 13:51 - 000842592 _____ (Realsil Semiconductor Corporation) C:\windows\system32\Drivers\RtsUer.sys
2023-05-21 18:06 - 2022-01-06 16:23 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-05-20 23:15 - 2022-01-05 21:49 - 000000000 ____D C:\Users\loge_\AppData\Local\PlaceholderTileLogoFolder
2023-05-20 23:15 - 2022-01-05 21:47 - 000000000 ____D C:\ProgramData\Packages
2023-05-19 11:43 - 2022-01-06 13:41 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-05-17 16:56 - 2022-01-06 13:40 - 000003884 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-05-17 16:56 - 2022-01-06 13:40 - 000003760 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-05-15 13:16 - 2022-04-13 18:46 - 000000000 ____D C:\Users\loge_\Downloads\garant location
2023-05-11 21:52 - 2022-01-06 12:58 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-11 21:52 - 2022-01-06 12:58 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-10 12:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\SecureBootUpdates
2023-05-10 11:25 - 2022-01-05 21:53 - 000000000 ____D C:\windows\system32\MRT
2023-05-10 11:22 - 2022-01-05 21:53 - 159583304 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2023-05-09 15:15 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2023-05-09 14:54 - 2022-05-16 13:38 - 000000000 ____D C:\ProgramData\ProductData
2023-05-04 17:30 - 2019-12-07 11:14 - 000000000 ____D C:\windows\LiveKernelReports
2023-05-03 10:09 - 2022-01-05 21:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-03 10:06 - 2022-01-05 21:36 - 000000000 ____D C:\windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2021-12-13 15:05 - 2021-12-13 15:05 - 000000376 _____ () C:\Users\loge_\AppData\Local\cx.dat
2022-01-05 22:05 - 2022-01-05 22:05 - 000000036 _____ () C:\Users\loge_\AppData\Local\housecall.guid.cache
2021-12-13 15:06 - 2021-12-13 15:06 - 000000032 _____ () C:\Users\loge_\AppData\Local\xc.dat
==================== SigCheckExt =========================
2014-06-30 14:29 - 2014-06-30 14:29 - 000370176 _____ (Qualcomm Atheros) C:\windows\system32\AthCredentialProvider.dll
2022-09-21 16:19 - 2010-03-18 22:25 - 000126976 _____ (CrypKey (Canada) Ltd.) C:\windows\system32\Crypserv.exe
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppui.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppui.dll
2022-01-15 15:19 - 2017-12-08 12:01 - 000713216 _____ C:\windows\system32\xvidcore.dll
2022-01-15 15:19 - 2017-12-08 12:01 - 000251392 _____ C:\windows\system32\xvidvfw.dll
2022-09-21 16:19 - 2010-01-20 18:28 - 000165888 ____R (Kenonic Controls) C:\windows\Ckconfig.exe
2022-09-21 16:19 - 2010-01-20 18:28 - 000011776 _____ C:\windows\Ckrfresh.exe
2022-06-02 10:37 - 1998-10-07 13:08 - 000327168 _____ (InstallShield Software Corporation) C:\windows\IsUn040c.exe
2022-06-02 10:38 - 2002-08-06 14:41 - 000087392 _____ (Twain Working Group) C:\windows\twain.dll
2022-09-21 16:11 - 2022-09-21 15:57 - 000004656 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS16GT.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000016384 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS32GT.DLL
2022-12-16 18:00 - 1998-08-18 17:25 - 000169984 _____ C:\windows\SysWOW64\glut32.dll
2022-09-21 16:11 - 2022-09-21 15:57 - 001050896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJET35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJINT35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJTER35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000168720 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSLTUS35.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBC32GT.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000072704 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBCTL32.DLL
2022-09-21 16:11 - 2022-09-21 15:57 - 000368912 _____ (Microsoft Corporation) C:\windows\SysWOW64\VBAR332.DLL
2022-01-15 15:19 - 2017-12-08 11:59 - 000638976 _____ C:\windows\SysWOW64\xvidcore.dll
2022-01-15 15:19 - 2017-12-08 11:59 - 000235520 _____ C:\windows\SysWOW64\xvidvfw.dll
2022-12-23 18:51 - 2020-03-31 15:13 - 000149504 _____ C:\windows\SysWOW64\Drivers\NpfDetect.dll
2022-12-23 18:51 - 2020-03-31 15:13 - 000046080 _____ C:\windows\SysWOW64\Drivers\NpfDetectApp.exe
2022-07-14 11:17 - 2022-07-14 11:17 - 000077824 _____ ( ) C:\Users\loge_\Downloads\guiformat.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll
2022-12-23 18:58 - 2022-12-23 18:58 - 001039609 _____ ( ) C:\Users\loge_\Downloads\IPCamSuite-1.2.26.8.exe
2022-12-23 21:02 - 2022-12-23 21:02 - 015407992 _____ ( ) C:\Users\loge_\Downloads\LocalServiceComponents.exe
2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll
2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll
2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe
2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale en-us
inherit {globalsettings}
default {current}
resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de démarrage Windows
-----------------------------
identificateur {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \windows\system32\winload.exe
description Windows 10
locale en-us
inherit {bootloadersettings}
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \windows
resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d}
nx OptIn
bootmenupolicy Standard
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {67310fda-6ede-11ec-9265-eff7afe036b9}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {f30ed862-13ce-11ed-b1ba-5404a602c74d}
device partition=C:
path \windows\system32\winresume.exe
description Windows Resume Application
locale en-us
inherit {resumeloadersettings}
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-us
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================