Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-05-2023
Exécuté par nouil (administrateur) sur LAPTOP-E9SP5H2J (LENOVO 81LB) (22-05-2023 18:45:39)
Exécuté depuis D:\\FRST64.exe
Profils chargés: nouil
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\nouil\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxEM.exe
(explorer.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo(beijing) Limited) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(explorer.exe ->) (Elektrosfera EOOD -> ) C:\Program Files\Antelope Audio\D4 SC USB Audio Driver\W10_x64\D4_SCCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Waves Audio Ltd.) [Fichier non signé] C:\Windows\SysWOW64\SGDawNodeService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Elektrosfera EOOD -> ) C:\Users\Public\.AntelopeAudio\managerserver\servers\1.8.3\AntelopeAudioServer.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a5d0ffe42e074935\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a5d0ffe42e074935\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, LLC -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Scarlet.Crush Productions) [Fichier non signé] D:\PROGRAMMES\Utilitaires\ScpServer\ScpServer\bin\ScpService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [878584 2019-05-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SGDawNodeService] => C:\Windows\SysWOW64\SGDawNodeService.exe [5620736 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-05-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\nouil\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [Discord] => C:\Users\nouil\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [MicrosoftEdgeAutoLaunch_C84E85AD88623899CFB32038D9562C7A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152216 2023-05-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [LAN Messenger] => C:\Program Files (x86)\LAN Messenger\lmc.exe [1721344 2012-07-24] (LAN Messenger) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Antelope Audio D4 SC USB Audio Driver Control Panel Autostart.lnk [2021-11-11]
ShortcutTarget: Antelope Audio D4 SC USB Audio Driver Control Panel Autostart.lnk -> C:\Program Files\Antelope Audio\D4 SC USB Audio Driver\W10_x64\D4_SCCpl.exe (Elektrosfera EOOD -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02CD6330-04F7-4B13-B97F-DADD56E97CD0} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5254336 2023-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {02EE9C49-A365-462D-9649-A052551521EB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a662a8b1-d77e-4b8f-a42c-fa698ee8a353 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {08277CDE-705A-48FA-AD28-13916876D942} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {1736E9A8-8492-4308-B6B0-9B037ED74C9F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5518d131-860c-41e6-a992-4b82e67f3859" --version "6.12.10490" --silent
Task: {2080B737-AE63-48E6-AB88-69E175BAA4E4} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {25887E97-8627-4DD5-AF74-E89F5B4570A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {262F3683-7ED5-4263-A87E-0A99714CFE31} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EAAA101-3DA6-45A0-91D2-1EE012BA52A6} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {31A5BBB9-6EAC-40A6-B89C-4A4BC60EF3A7} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3333327B-6865-4A8D-8D25-FBCB87D76635} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e4d0e471-ba1d-4b0c-b4d5-9211daea457f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {33FBD585-5E07-4B7A-BC97-33A6CD804EB5} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {43848FF5-1698-4B00-BCEE-E016218CBA93} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {446899D8-949B-4059-9A88-1E0DCCAC0336} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {456F9212-A46F-4996-888F-281D298B6554} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {45A50AB7-164A-43EC-84ED-1FB196F505DA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {46E60809-6B0C-4F77-8F13-1D24CAF15E16} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {48613955-B13A-429F-81C8-EB939F5E25EF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {5CB837A4-A510-471F-BFE7-548B18C7AB6A} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {60F2D186-C972-4A05-80EF-BB9376CEFE37} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {8C096DCF-C449-4D8C-8BCB-3887A6B1723B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F0CD85F-CFD5-451F-9A8B-32E7BD1A40B6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {8FB84492-10D0-4B07-901A-26B38006308A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {91BEFBA9-3A92-40AF-B885-350452C5116B} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {9A04EBEB-63D5-4C57-AF56-AB299C5863DF} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exeVantageTelemetryAddinTask
Task: {B3F6FFB8-0198-4F0A-8C51-F96202E71B01} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {B521E2AC-F998-4015-8BAC-1A7045AF21E7} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1055140297-1376467973-3644869950-1001 => C:\Users\nouil\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {BA427B3B-FF49-44E9-A52A-E3DB1B000BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C00DFC68-494A-44F9-AA08-99DEADE24D40} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C4D21735-FA5D-4148-8A17-ADD9E6E76305} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\78389b74-81da-4449-bdbb-926aafe67808 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C6537141-EC50-4D84-889A-9F9FAA34D64D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\770575b7-85e1-481c-9817-469dcb071781 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C6A4F0C9-206C-469D-B5AA-24E1135452A1} - System32\Tasks\CCleanerSkipUAC - nouil => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CC349B59-D2FA-4052-A5AD-287E1A044445} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D45FB0FE-0E22-49E8-AB6A-C8D3D118EF36} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {D63780C6-B22C-4B13-AFE5-05562FA5D096} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6C361B8-1B20-492F-A431-68AB061645EF} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {DD20A43E-0564-4D2B-A2EC-0BBC04927F0D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5E64F0B-EC2D-413E-843C-962F1916E860} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7EC2B41-1C43-4B21-94DF-B6BFAC9B10E3} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1055140297-1376467973-3644869950-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9F370BC-490D-406D-9899-39F54CC2A377} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.31.1
Tcpip\..\Interfaces\{165a1d11-ac59-446d-986d-edb2b5c49e8b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{85d5e062-c4f5-457f-9ca3-381a51c5a7ec}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f51896a2-322a-4395-9dd4-5a5a516b6454}: [DhcpNameServer] 192.168.31.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\nouil\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-22]
Edge Extension: (Edge relevant text changes) - C:\Users\nouil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-21]
FireFox:
========
FF DefaultProfile: c80ao52h.default
FF ProfilePath: C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\c80ao52h.default [2020-02-03]
FF ProfilePath: C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\onp9n8yt.default-release [2023-05-22]
FF Homepage: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> hxxps://www.youtube.com; hxxps://www.reddit.com; hxxps://mail.google.com
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\onp9n8yt.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-03]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-08-22]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1055140297-1376467973-3644869950-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\nouil\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1055140297-1376467973-3644869950-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\nouil\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 Antelope-Manager-Service; C:\Users\Public\.AntelopeAudio\managerserver\servers\1.8.3\AntelopeAudioServer.exe [3131448 2021-02-21] (Elektrosfera EOOD -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-10] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-05-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [398352 2018-06-21] (Dolby Laboratories, Inc. -> )
R2 Ds3Service; D:\PROGRAMMES\Utilitaires\ScpServer\ScpServer\bin\ScpService.exe [381952 2019-07-28] (Scarlet.Crush Productions) [Fichier non signé]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncHelper.exe [3445624 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [305520 2018-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-20] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-08-22] (McAfee, LLC -> McAfee, Inc.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\OneDriveUpdaterService.exe [3781496 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BEHRINGER_PT_MIDI; C:\WINDOWS\system32\drivers\bhrngr_m.sys [43584 2009-12-15] (Ploytec GmbH -> Ploytec GmbH)
S3 D4_SC; C:\WINDOWS\System32\drivers\D4_SC.sys [878072 2021-04-20] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 D4_SCks; C:\WINDOWS\System32\drivers\D4_SCks.sys [187904 2021-04-20] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Discrete4_Synergy_Core; C:\WINDOWS\System32\drivers\Discrete4_Synergy_Core.sys [370168 2019-04-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Discrete4_Synergy_Coreks; C:\WINDOWS\System32\drivers\Discrete4_Synergy_Coreks.sys [53752 2019-04-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [59280 2022-08-26] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [199640 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77752 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181984 2023-05-22] (Malwarebytes Inc. -> Malwarebytes)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1153776 2022-09-20] (Realtek Semiconductor Corp. -> Realtek Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SoundGridMIDI; C:\WINDOWS\system32\drivers\SoundGridMidi.sys [42320 2017-01-29] (Waves Inc -> Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [22016 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
R2 SoundGridProtocol; C:\WINDOWS\system32\DRIVERS\SoundGridProtocol.sys [113488 2017-01-29] (Waves Inc -> Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [55296 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
S3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 usbaud; C:\WINDOWS\System32\drivers\usbaud64w10.sys [99672 2020-09-23] (Synaptics Incorporated -> Synaptics Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [172544 2020-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Yamaha Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-22 18:44 - 2023-05-22 18:46 - 000000000 ____D C:\FRST
2023-05-22 18:26 - 2023-05-22 18:26 - 002382336 _____ (Farbar) C:\Users\nouil\Downloads\FRST64.exe
2023-05-22 17:27 - 2023-05-22 18:42 - 000000000 ____D C:\Users\nouil\AppData\Roaming\ZHP
2023-05-22 17:27 - 2023-05-22 17:27 - 000000000 ____D C:\Users\nouil\AppData\Local\ZHP
2023-05-22 17:25 - 2023-05-22 17:26 - 003516616 _____ (Nicolas Coolman) C:\Users\nouil\Downloads\ZHPSuite.exe
2023-05-22 16:35 - 2023-05-22 16:35 - 000181984 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-05-21 16:17 - 2023-05-21 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg
2023-05-21 16:16 - 2023-05-21 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2023-05-21 16:16 - 2023-05-21 16:16 - 000000000 ____D C:\ProgramData\VST XMLs
2023-05-21 16:13 - 2023-05-21 16:13 - 000000000 ____D C:\Users\nouil\Downloads\Steinberg
2023-05-21 16:11 - 2023-05-21 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2023-05-21 16:03 - 2023-05-21 16:03 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\VST XMLs
2023-05-21 13:58 - 2023-05-21 13:58 - 000000000 ____D C:\ProgramData\Piriform
2023-05-21 13:47 - 2023-05-21 15:06 - 000000000 ____D C:\Program Files\HWiNFO64
2023-05-21 13:47 - 2023-05-21 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2023-05-21 12:43 - 2023-05-22 15:21 - 000000000 ____D C:\ProgramData\SecTaskMan
2023-05-21 12:43 - 2023-05-21 12:43 - 000001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2023-05-21 12:43 - 2023-05-21 12:43 - 000001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2023-05-21 12:43 - 2023-05-21 12:43 - 000000000 ____D C:\Program Files (x86)\Security Task Manager
2023-05-21 01:56 - 2023-05-22 15:47 - 000007602 _____ C:\Users\nouil\AppData\Local\resmon.resmoncfg
2023-05-21 01:34 - 2023-04-26 18:47 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001607736 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001607736 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001479216 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001479216 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-05-21 01:34 - 2023-04-26 18:46 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-05-21 01:34 - 2023-04-26 18:46 - 001226736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000851968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000671256 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000506352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 002166296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 001621016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000979456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000758768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000741400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-05-21 01:34 - 2023-04-26 18:41 - 013769216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 011650048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 006083568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 005911024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 005835288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 003430448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-05-21 01:34 - 2023-04-26 18:40 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-05-21 01:34 - 2023-04-26 18:39 - 006798792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-05-21 01:34 - 2023-04-26 01:34 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-05-21 00:00 - 2023-05-22 16:36 - 000000000 ____D C:\Users\nouil\AppData\Local\Malwarebytes
2023-05-21 00:00 - 2023-05-21 00:00 - 000000000 ____D C:\Users\nouil\AppData\Local\mbam
2023-05-20 23:59 - 2023-05-20 23:59 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-20 23:58 - 2023-05-20 23:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-20 23:58 - 2023-05-20 23:58 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-20 23:57 - 2023-05-20 23:57 - 002638680 _____ (Malwarebytes) C:\Users\nouil\Downloads\MBSetup.exe
2023-05-19 12:05 - 2023-05-19 12:05 - 000050280 _____ C:\Users\nouil\Downloads\urssaf-attestation-fiscale-20230519-12h05.pdf
2023-05-19 11:56 - 2023-05-19 11:56 - 000000000 ___HD C:\$WinREAgent
2023-05-16 22:05 - 2023-05-19 20:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-08 15:14 - 2023-05-22 16:57 - 000000000 ____D C:\Users\nouil\AppData\Roaming\Celemony Software GmbH
2023-05-04 14:54 - 2023-05-04 14:54 - 000021702 _____ C:\Users\nouil\Downloads\14354_-InfiniteSkills.torrent
2023-05-04 13:41 - 2023-05-04 15:56 - 000004608 _____ C:\Users\nouil\PaceKeyChain
2023-05-04 12:58 - 2023-05-04 12:58 - 000012714 _____ C:\Users\nouil\Downloads\17826_Avid-Pro_Tools_.torrent
2023-05-04 12:41 - 2023-05-04 12:41 - 000000000 ____D C:\Users\nouil\AppData\Local\PaceAP
2023-05-04 12:41 - 2023-05-04 12:41 - 000000000 ____D C:\Users\nouil\AppData\Local\PACE
2023-05-04 11:58 - 2023-05-04 11:58 - 000159258 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-01-20230504-11h58.pdf
2023-05-04 11:51 - 2023-05-04 11:51 - 000159073 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-02-20230504-11h51.pdf
2023-05-04 11:51 - 2023-05-04 11:51 - 000159071 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-03-20230504-11h51.pdf
2023-05-04 11:28 - 2023-05-20 23:19 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Pro Tools
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\ProgramData\Celemony Software GmbH
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files\Common Files\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files (x86)\Celemony
2023-05-04 11:22 - 2023-05-04 12:40 - 000000000 ____D C:\Users\nouil\AppData\Local\Avid
2023-05-04 11:19 - 2023-05-21 15:01 - 000000000 ____D C:\ProgramData\PACE
2023-05-04 10:47 - 2023-05-04 10:47 - 000032808 _____ (Avid Technology, Inc.) C:\WINDOWS\system32\Drivers\diginet.sys
2023-05-04 10:30 - 2023-05-04 10:30 - 000120831 _____ C:\Users\nouil\Downloads\31333_Avid-Pro_Tools_.rar
2023-04-26 12:28 - 2023-05-22 17:13 - 000000000 ____D C:\WINDOWS\Panther
2023-04-08 04:42 - 2023-04-08 04:42 - 000000000 ____D C:\Users\nouil\AppData\Roaming\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Received Files
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Users\nouil\AppData\Local\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Program Files (x86)\LAN Messenger
2023-04-03 23:12 - 2023-04-03 23:12 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Infinity Engine - Enhanced Edition
2023-04-03 17:33 - 2023-04-03 17:33 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Steam Cloud
2023-04-03 17:00 - 2023-04-03 19:56 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Baldur's Gate - Enhanced Edition
2023-04-03 16:54 - 2023-04-03 17:33 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2023-04-03 16:54 - 2023-04-03 16:54 - 000000000 ____D C:\Program Files (x86)\OpenAL
2023-03-31 01:37 - 2023-03-31 01:37 - 000000000 ____D C:\Users\nouil\AppData\Roaming\Plugin Alliance
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\brainworx
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ____D C:\Users\nouil\AppData\Roaming\VST3 Presets
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ____D C:\Program Files (x86)\Brainworx Music
2023-03-30 13:45 - 2023-03-30 13:45 - 000000000 ____D C:\Program Files (x86)\Soundtoys
2023-03-30 13:43 - 2023-03-30 13:43 - 000011059 _____ C:\Users\nouil\Downloads\570_Brainworx_bx_AL.torrent
2023-03-22 02:20 - 2023-03-22 02:20 - 084207116 _____ C:\Users\nouil\Downloads\386474__skjor1__jungle-night-ambience-southern-thailand.wav
2023-03-17 19:19 - 2023-03-17 19:19 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB-2.pdf
2023-03-17 19:11 - 2023-03-17 19:11 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB-1.pdf
2023-03-17 19:10 - 2023-03-17 19:10 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB.pdf
2023-03-12 20:45 - 2023-03-12 20:45 - 019034156 _____ C:\Users\nouil\Downloads\High.wav
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-22 18:43 - 2021-03-11 03:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-05-22 18:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-22 18:38 - 2019-08-07 18:00 - 000000000 ____D C:\Program Files (x86)\Steam
2023-05-22 17:57 - 2018-12-17 12:29 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-22 17:22 - 2019-07-27 13:57 - 000000000 ____D C:\Program Files\Common Files\VST3
2023-05-22 17:21 - 2019-07-28 12:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-05-22 17:20 - 2019-07-27 13:51 - 000000000 ___DC C:\Users\nouil\AppData\Local\CrashDumps
2023-05-22 17:19 - 2022-05-07 13:07 - 000000000 ___HD C:\$WINDOWS.~BT
2023-05-22 16:58 - 2020-02-09 18:25 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences
2023-05-22 16:58 - 2020-02-09 18:25 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb
2023-05-22 16:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-05-22 16:40 - 2021-03-11 03:24 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-22 16:40 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-22 16:40 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-22 16:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-22 16:36 - 2020-02-07 20:21 - 000000000 ____D C:\Program Files\CCleaner
2023-05-22 16:34 - 2021-03-11 03:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-22 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-05-22 16:34 - 2019-07-25 16:53 - 000000000 __SHD C:\Users\nouil\IntelGraphicsProfiles
2023-05-22 16:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-05-22 15:17 - 2019-07-25 16:53 - 000000000 ___DC C:\Users\nouil\AppData\Local\Intel
2023-05-21 21:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-21 21:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-05-21 19:07 - 2019-07-28 14:30 - 000000000 ____D C:\Program Files\VSTPlugIns
2023-05-21 17:23 - 2020-06-20 23:35 - 000000000 ____D C:\WINDOWS\TempInst
2023-05-21 17:21 - 2019-07-27 16:37 - 000000000 ___DC C:\Users\nouil\AppData\Local\D3DSCache
2023-05-21 16:17 - 2019-07-27 13:57 - 000000000 ____D C:\Program Files\Steinberg
2023-05-21 16:16 - 2019-07-27 13:57 - 000000000 ____D C:\ProgramData\Steinberg
2023-05-21 16:12 - 2022-03-18 21:05 - 000000049 _____ C:\WINDOWS\SysWOW64\SYNSOPOS.exe.cfg
2023-05-21 16:12 - 2022-03-18 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2023-05-21 16:12 - 2022-03-18 21:05 - 000000000 ____D C:\Program Files\eLicenser
2023-05-21 16:12 - 2019-07-27 13:50 - 000000000 ____D C:\Program Files (x86)\eLicenser
2023-05-21 16:11 - 2019-07-27 13:59 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2023-05-21 16:10 - 2021-12-08 15:42 - 000000000 ____D C:\Users\nouil\AppData\Local\Steinberg Download Assistant
2023-05-21 15:39 - 2021-02-21 22:43 - 000000000 ____D C:\Users\Public\.AntelopeAudio
2023-05-21 14:11 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-21 13:23 - 2019-07-25 23:07 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\vlc
2023-05-21 12:18 - 2021-03-11 03:22 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-05-21 11:51 - 2022-11-10 15:34 - 000000000 ____D C:\Program Files (x86)\Epic Games
2023-05-21 11:48 - 2022-11-10 15:34 - 000000000 ____D C:\ProgramData\Epic
2023-05-21 11:48 - 2019-07-27 14:02 - 000000000 ___DC C:\Users\nouil\AppData\Local\UnrealEngine
2023-05-21 01:49 - 2019-07-29 18:05 - 000000000 ___DC C:\Users\nouil\AppData\Local\NVIDIA
2023-05-21 00:59 - 2019-08-24 15:18 - 000000000 ___DC C:\Users\nouil\AppData\Local\ElevatedDiagnostics
2023-05-21 00:39 - 2022-09-30 11:14 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-05-21 00:31 - 2022-02-11 14:52 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-21 00:17 - 2022-09-30 11:14 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-05-21 00:02 - 2022-03-21 23:45 - 000000000 ____D C:\Users\nouil\AppData\Roaming\discord
2023-05-20 23:59 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-20 23:39 - 2022-03-21 23:45 - 000000000 ____D C:\Users\nouil\AppData\Local\Discord
2023-05-20 23:19 - 2019-07-28 14:30 - 000000000 ____D C:\Program Files\Common Files\Avid
2023-05-20 23:10 - 2022-09-20 10:45 - 000000000 ____D C:\Users\nouil\AppData\Roaming\uTorrent
2023-05-20 22:18 - 2020-01-23 21:24 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-05-20 14:06 - 2020-06-17 00:16 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-19 20:19 - 2021-09-12 17:31 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-05-19 20:19 - 2019-07-25 17:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-19 12:06 - 2021-09-20 16:42 - 000000000 ____D C:\WINDOWS\Minidump
2023-05-19 11:57 - 2019-07-25 17:02 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-15 20:56 - 2021-12-13 17:41 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1055140297-1376467973-3644869950-1001
2023-05-15 20:56 - 2021-03-11 03:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-05-15 20:56 - 2020-04-06 11:44 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-11 16:13 - 2021-03-11 03:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-05-11 16:12 - 2022-10-12 17:46 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-05-11 04:04 - 2021-03-11 03:15 - 000592760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-11 04:03 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-11 04:03 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-10 23:14 - 2021-03-11 03:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-10 23:14 - 2021-03-11 03:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-10 13:40 - 2021-03-11 03:17 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-10 13:32 - 2019-07-27 01:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-10 13:30 - 2019-07-27 01:13 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-10 03:54 - 2021-03-11 03:16 - 000000000 ____D C:\Users\nouil
2023-05-04 14:02 - 2020-10-02 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-04 11:22 - 2019-12-04 16:20 - 000000000 ____D C:\Users\nouil\AppData\Local\Downloaded Installations
2023-05-03 21:11 - 2018-04-17 21:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-04-26 18:39 - 2021-03-05 19:45 - 007935568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-04-26 12:28 - 2021-03-11 03:15 - 000008192 ___SH C:\DumpStack.log.tmp
==================== Fichiers à la racine de certains dossiers ========
2023-05-04 11:19 - 2023-05-20 23:32 - 000011926 _____ () C:\Users\nouil\AppData\Roaming\Avid_CCS_Service_Stop.log
2023-05-21 01:56 - 2023-05-22 15:47 - 000007602 _____ () C:\Users\nouil\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2019-07-28 12:32 - 2016-11-15 05:09 - 002181120 _____ (Propellerhead Software AB) C:\WINDOWS\system32\ReWire.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000088576 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\SoundGridAsio.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000025088 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\SoundGridInstHlp.dll
2020-05-08 18:34 - 1998-10-07 13:08 - 000327168 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUn040c.exe
2021-10-09 15:54 - 2021-10-09 15:54 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2020-06-04 17:56 - 2009-08-18 12:29 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2020-06-04 17:56 - 2009-08-18 12:29 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 005620736 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SGDawNodeService.exe
2019-07-28 14:34 - 2017-01-29 01:26 - 000069632 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SoundGridAsio.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000018944 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SoundGridInstHlp.dll
2022-03-18 21:05 - 2011-12-14 21:21 - 000086016 _____ C:\WINDOWS\SysWOW64\SYNSOPOS.exe
2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2023-05-22 18:26 - 2023-05-22 18:26 - 002382336 _____ (Farbar) C:\Users\nouil\Downloads\FRST64.exe
2023-05-22 17:25 - 2023-05-22 17:26 - 003516616 _____ (Nicolas Coolman) C:\Users\nouil\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{26de1565-8d7b-11eb-ae7f-806e6f6e6963}
{a9b2f217-022f-11e9-824d-806e6f6e6963}
{a9b2f218-022f-11e9-824d-806e6f6e6963}
{a9b2f219-022f-11e9-824d-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {263bf155-8207-11eb-83fa-c0c3e5a29d30}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {1373f658-758f-11ea-ae1e-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description EFI PXE 0 for IPv6 (E8-6A-64-6E-8B-7D)
Application logicielle (101fffff)
--------------------------------
identificateur {26de1565-8d7b-11eb-ae7f-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f217-022f-11e9-824d-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f218-022f-11e9-824d-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f219-022f-11e9-824d-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f21a-022f-11e9-824d-806e6f6e6963}
description EFI PXE 0 for IPv4 (E8-6A-64-6E-8B-7D)
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {263bf157-8207-11eb-83fa-c0c3e5a29d30}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {263bf155-8207-11eb-83fa-c0c3e5a29d30}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {263bf157-8207-11eb-83fa-c0c3e5a29d30}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{263bf158-8207-11eb-83fa-c0c3e5a29d30}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{263bf158-8207-11eb-83fa-c0c3e5a29d30}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {263bf155-8207-11eb-83fa-c0c3e5a29d30}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {263bf157-8207-11eb-83fa-c0c3e5a29d30}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {263bf158-8207-11eb-83fa-c0c3e5a29d30}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par nouil (administrateur) sur LAPTOP-E9SP5H2J (LENOVO 81LB) (22-05-2023 18:45:39)
Exécuté depuis D:\\FRST64.exe
Profils chargés: nouil
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\nouil\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxEM.exe
(explorer.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo(beijing) Limited) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(explorer.exe ->) (Elektrosfera EOOD -> ) C:\Program Files\Antelope Audio\D4 SC USB Audio Driver\W10_x64\D4_SCCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Waves Audio Ltd.) [Fichier non signé] C:\Windows\SysWOW64\SGDawNodeService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Elektrosfera EOOD -> ) C:\Users\Public\.AntelopeAudio\managerserver\servers\1.8.3\AntelopeAudioServer.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e1356fc87d32eeee\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a5d0ffe42e074935\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a5d0ffe42e074935\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, LLC -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Scarlet.Crush Productions) [Fichier non signé] D:\PROGRAMMES\Utilitaires\ScpServer\ScpServer\bin\ScpService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21434.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [878584 2019-05-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SGDawNodeService] => C:\Windows\SysWOW64\SGDawNodeService.exe [5620736 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-05-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\nouil\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [Discord] => C:\Users\nouil\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [MicrosoftEdgeAutoLaunch_C84E85AD88623899CFB32038D9562C7A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152216 2023-05-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1055140297-1376467973-3644869950-1001\...\Run: [LAN Messenger] => C:\Program Files (x86)\LAN Messenger\lmc.exe [1721344 2012-07-24] (LAN Messenger) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [55392 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Antelope Audio D4 SC USB Audio Driver Control Panel Autostart.lnk [2021-11-11]
ShortcutTarget: Antelope Audio D4 SC USB Audio Driver Control Panel Autostart.lnk -> C:\Program Files\Antelope Audio\D4 SC USB Audio Driver\W10_x64\D4_SCCpl.exe (Elektrosfera EOOD -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02CD6330-04F7-4B13-B97F-DADD56E97CD0} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5254336 2023-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {02EE9C49-A365-462D-9649-A052551521EB} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a662a8b1-d77e-4b8f-a42c-fa698ee8a353 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {08277CDE-705A-48FA-AD28-13916876D942} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {1736E9A8-8492-4308-B6B0-9B037ED74C9F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5518d131-860c-41e6-a992-4b82e67f3859" --version "6.12.10490" --silent
Task: {2080B737-AE63-48E6-AB88-69E175BAA4E4} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {25887E97-8627-4DD5-AF74-E89F5B4570A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {262F3683-7ED5-4263-A87E-0A99714CFE31} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EAAA101-3DA6-45A0-91D2-1EE012BA52A6} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {31A5BBB9-6EAC-40A6-B89C-4A4BC60EF3A7} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3333327B-6865-4A8D-8D25-FBCB87D76635} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e4d0e471-ba1d-4b0c-b4d5-9211daea457f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {33FBD585-5E07-4B7A-BC97-33A6CD804EB5} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {43848FF5-1698-4B00-BCEE-E016218CBA93} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {446899D8-949B-4059-9A88-1E0DCCAC0336} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {456F9212-A46F-4996-888F-281D298B6554} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {45A50AB7-164A-43EC-84ED-1FB196F505DA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {46E60809-6B0C-4F77-8F13-1D24CAF15E16} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {48613955-B13A-429F-81C8-EB939F5E25EF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {5CB837A4-A510-471F-BFE7-548B18C7AB6A} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {60F2D186-C972-4A05-80EF-BB9376CEFE37} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {8C096DCF-C449-4D8C-8BCB-3887A6B1723B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F0CD85F-CFD5-451F-9A8B-32E7BD1A40B6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {8FB84492-10D0-4B07-901A-26B38006308A} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {91BEFBA9-3A92-40AF-B885-350452C5116B} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {9A04EBEB-63D5-4C57-AF56-AB299C5863DF} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exeVantageTelemetryAddinTask
Task: {B3F6FFB8-0198-4F0A-8C51-F96202E71B01} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {B521E2AC-F998-4015-8BAC-1A7045AF21E7} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1055140297-1376467973-3644869950-1001 => C:\Users\nouil\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {BA427B3B-FF49-44E9-A52A-E3DB1B000BCC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C00DFC68-494A-44F9-AA08-99DEADE24D40} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C4D21735-FA5D-4148-8A17-ADD9E6E76305} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\78389b74-81da-4449-bdbb-926aafe67808 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C6537141-EC50-4D84-889A-9F9FAA34D64D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\770575b7-85e1-481c-9817-469dcb071781 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C6A4F0C9-206C-469D-B5AA-24E1135452A1} - System32\Tasks\CCleanerSkipUAC - nouil => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CC349B59-D2FA-4052-A5AD-287E1A044445} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D45FB0FE-0E22-49E8-AB6A-C8D3D118EF36} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {D63780C6-B22C-4B13-AFE5-05562FA5D096} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6C361B8-1B20-492F-A431-68AB061645EF} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {DD20A43E-0564-4D2B-A2EC-0BBC04927F0D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5E64F0B-EC2D-413E-843C-962F1916E860} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7EC2B41-1C43-4B21-94DF-B6BFAC9B10E3} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1055140297-1376467973-3644869950-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9F370BC-490D-406D-9899-39F54CC2A377} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.31.1
Tcpip\..\Interfaces\{165a1d11-ac59-446d-986d-edb2b5c49e8b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{85d5e062-c4f5-457f-9ca3-381a51c5a7ec}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f51896a2-322a-4395-9dd4-5a5a516b6454}: [DhcpNameServer] 192.168.31.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\nouil\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-22]
Edge Extension: (Edge relevant text changes) - C:\Users\nouil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-21]
FireFox:
========
FF DefaultProfile: c80ao52h.default
FF ProfilePath: C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\c80ao52h.default [2020-02-03]
FF ProfilePath: C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\onp9n8yt.default-release [2023-05-22]
FF Homepage: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\onp9n8yt.default-release -> hxxps://www.youtube.com; hxxps://www.reddit.com; hxxps://mail.google.com
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nouil\AppData\Roaming\Mozilla\Firefox\Profiles\onp9n8yt.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-03]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-08-22]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1055140297-1376467973-3644869950-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\nouil\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1055140297-1376467973-3644869950-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\nouil\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 Antelope-Manager-Service; C:\Users\Public\.AntelopeAudio\managerserver\servers\1.8.3\AntelopeAudioServer.exe [3131448 2021-02-21] (Elektrosfera EOOD -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-10] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-05-08] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [398352 2018-06-21] (Dolby Laboratories, Inc. -> )
R2 Ds3Service; D:\PROGRAMMES\Utilitaires\ScpServer\ScpServer\bin\ScpService.exe [381952 2019-07-28] (Scarlet.Crush Productions) [Fichier non signé]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncHelper.exe [3445624 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [305520 2018-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-20] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-08-22] (McAfee, LLC -> McAfee, Inc.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\OneDriveUpdaterService.exe [3781496 2023-05-15] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_1a107cacf9298951\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BEHRINGER_PT_MIDI; C:\WINDOWS\system32\drivers\bhrngr_m.sys [43584 2009-12-15] (Ploytec GmbH -> Ploytec GmbH)
S3 D4_SC; C:\WINDOWS\System32\drivers\D4_SC.sys [878072 2021-04-20] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 D4_SCks; C:\WINDOWS\System32\drivers\D4_SCks.sys [187904 2021-04-20] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Discrete4_Synergy_Core; C:\WINDOWS\System32\drivers\Discrete4_Synergy_Core.sys [370168 2019-04-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 Discrete4_Synergy_Coreks; C:\WINDOWS\System32\drivers\Discrete4_Synergy_Coreks.sys [53752 2019-04-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [59280 2022-08-26] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [199640 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77752 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181984 2023-05-22] (Malwarebytes Inc. -> Malwarebytes)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1153776 2022-09-20] (Realtek Semiconductor Corp. -> Realtek Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SoundGridMIDI; C:\WINDOWS\system32\drivers\SoundGridMidi.sys [42320 2017-01-29] (Waves Inc -> Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [22016 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
R2 SoundGridProtocol; C:\WINDOWS\system32\DRIVERS\SoundGridProtocol.sys [113488 2017-01-29] (Waves Inc -> Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [55296 2017-01-29] (Waves Audio Ltd.) [Fichier non signé]
S3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 usbaud; C:\WINDOWS\System32\drivers\usbaud64w10.sys [99672 2020-09-23] (Synaptics Incorporated -> Synaptics Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 ysusb_w10_64; C:\WINDOWS\system32\drivers\ysusb_w10_64.sys [172544 2020-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Yamaha Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-22 18:44 - 2023-05-22 18:46 - 000000000 ____D C:\FRST
2023-05-22 18:26 - 2023-05-22 18:26 - 002382336 _____ (Farbar) C:\Users\nouil\Downloads\FRST64.exe
2023-05-22 17:27 - 2023-05-22 18:42 - 000000000 ____D C:\Users\nouil\AppData\Roaming\ZHP
2023-05-22 17:27 - 2023-05-22 17:27 - 000000000 ____D C:\Users\nouil\AppData\Local\ZHP
2023-05-22 17:25 - 2023-05-22 17:26 - 003516616 _____ (Nicolas Coolman) C:\Users\nouil\Downloads\ZHPSuite.exe
2023-05-22 16:35 - 2023-05-22 16:35 - 000181984 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-05-21 16:17 - 2023-05-21 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg
2023-05-21 16:16 - 2023-05-21 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2023-05-21 16:16 - 2023-05-21 16:16 - 000000000 ____D C:\ProgramData\VST XMLs
2023-05-21 16:13 - 2023-05-21 16:13 - 000000000 ____D C:\Users\nouil\Downloads\Steinberg
2023-05-21 16:11 - 2023-05-21 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2023-05-21 16:03 - 2023-05-21 16:03 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\VST XMLs
2023-05-21 13:58 - 2023-05-21 13:58 - 000000000 ____D C:\ProgramData\Piriform
2023-05-21 13:47 - 2023-05-21 15:06 - 000000000 ____D C:\Program Files\HWiNFO64
2023-05-21 13:47 - 2023-05-21 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2023-05-21 12:43 - 2023-05-22 15:21 - 000000000 ____D C:\ProgramData\SecTaskMan
2023-05-21 12:43 - 2023-05-21 12:43 - 000001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2023-05-21 12:43 - 2023-05-21 12:43 - 000001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2023-05-21 12:43 - 2023-05-21 12:43 - 000000000 ____D C:\Program Files (x86)\Security Task Manager
2023-05-21 01:56 - 2023-05-22 15:47 - 000007602 _____ C:\Users\nouil\AppData\Local\resmon.resmoncfg
2023-05-21 01:34 - 2023-04-26 18:47 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001607736 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001607736 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-05-21 01:34 - 2023-04-26 18:47 - 001479216 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001479216 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-05-21 01:34 - 2023-04-26 18:47 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-05-21 01:34 - 2023-04-26 18:46 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-05-21 01:34 - 2023-04-26 18:46 - 001226736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000851968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000671256 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-05-21 01:34 - 2023-04-26 18:43 - 000506352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 002166296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 001621016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000979456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000758768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-05-21 01:34 - 2023-04-26 18:42 - 000741400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-05-21 01:34 - 2023-04-26 18:41 - 013769216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 011650048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 006083568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 005911024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 005835288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 003430448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-05-21 01:34 - 2023-04-26 18:41 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-05-21 01:34 - 2023-04-26 18:40 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-05-21 01:34 - 2023-04-26 18:39 - 006798792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-05-21 01:34 - 2023-04-26 01:34 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-05-21 00:00 - 2023-05-22 16:36 - 000000000 ____D C:\Users\nouil\AppData\Local\Malwarebytes
2023-05-21 00:00 - 2023-05-21 00:00 - 000000000 ____D C:\Users\nouil\AppData\Local\mbam
2023-05-20 23:59 - 2023-05-20 23:59 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-20 23:58 - 2023-05-20 23:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-20 23:58 - 2023-05-20 23:58 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-20 23:57 - 2023-05-20 23:57 - 002638680 _____ (Malwarebytes) C:\Users\nouil\Downloads\MBSetup.exe
2023-05-19 12:05 - 2023-05-19 12:05 - 000050280 _____ C:\Users\nouil\Downloads\urssaf-attestation-fiscale-20230519-12h05.pdf
2023-05-19 11:56 - 2023-05-19 11:56 - 000000000 ___HD C:\$WinREAgent
2023-05-16 22:05 - 2023-05-19 20:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-08 15:14 - 2023-05-22 16:57 - 000000000 ____D C:\Users\nouil\AppData\Roaming\Celemony Software GmbH
2023-05-04 14:54 - 2023-05-04 14:54 - 000021702 _____ C:\Users\nouil\Downloads\14354_-InfiniteSkills.torrent
2023-05-04 13:41 - 2023-05-04 15:56 - 000004608 _____ C:\Users\nouil\PaceKeyChain
2023-05-04 12:58 - 2023-05-04 12:58 - 000012714 _____ C:\Users\nouil\Downloads\17826_Avid-Pro_Tools_.torrent
2023-05-04 12:41 - 2023-05-04 12:41 - 000000000 ____D C:\Users\nouil\AppData\Local\PaceAP
2023-05-04 12:41 - 2023-05-04 12:41 - 000000000 ____D C:\Users\nouil\AppData\Local\PACE
2023-05-04 11:58 - 2023-05-04 11:58 - 000159258 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-01-20230504-11h58.pdf
2023-05-04 11:51 - 2023-05-04 11:51 - 000159073 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-02-20230504-11h51.pdf
2023-05-04 11:51 - 2023-05-04 11:51 - 000159071 _____ C:\Users\nouil\Downloads\urssaf-justificatif-declaration-2023-03-20230504-11h51.pdf
2023-05-04 11:28 - 2023-05-20 23:19 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Pro Tools
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\ProgramData\Celemony Software GmbH
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files\Common Files\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files\Celemony
2023-05-04 11:25 - 2023-05-04 11:25 - 000000000 ____D C:\Program Files (x86)\Celemony
2023-05-04 11:22 - 2023-05-04 12:40 - 000000000 ____D C:\Users\nouil\AppData\Local\Avid
2023-05-04 11:19 - 2023-05-21 15:01 - 000000000 ____D C:\ProgramData\PACE
2023-05-04 10:47 - 2023-05-04 10:47 - 000032808 _____ (Avid Technology, Inc.) C:\WINDOWS\system32\Drivers\diginet.sys
2023-05-04 10:30 - 2023-05-04 10:30 - 000120831 _____ C:\Users\nouil\Downloads\31333_Avid-Pro_Tools_.rar
2023-04-26 12:28 - 2023-05-22 17:13 - 000000000 ____D C:\WINDOWS\Panther
2023-04-08 04:42 - 2023-04-08 04:42 - 000000000 ____D C:\Users\nouil\AppData\Roaming\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Received Files
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Users\nouil\AppData\Local\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAN Messenger
2023-04-07 22:52 - 2023-04-07 22:52 - 000000000 ____D C:\Program Files (x86)\LAN Messenger
2023-04-03 23:12 - 2023-04-03 23:12 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Infinity Engine - Enhanced Edition
2023-04-03 17:33 - 2023-04-03 17:33 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Steam Cloud
2023-04-03 17:00 - 2023-04-03 19:56 - 000000000 ____D C:\Users\nouil\OneDrive\Documents\Baldur's Gate - Enhanced Edition
2023-04-03 16:54 - 2023-04-03 17:33 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2023-04-03 16:54 - 2023-04-03 17:33 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2023-04-03 16:54 - 2023-04-03 16:54 - 000000000 ____D C:\Program Files (x86)\OpenAL
2023-03-31 01:37 - 2023-03-31 01:37 - 000000000 ____D C:\Users\nouil\AppData\Roaming\Plugin Alliance
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\brainworx
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ____D C:\Users\nouil\AppData\Roaming\VST3 Presets
2023-03-31 01:30 - 2023-03-31 01:30 - 000000000 ____D C:\Program Files (x86)\Brainworx Music
2023-03-30 13:45 - 2023-03-30 13:45 - 000000000 ____D C:\Program Files (x86)\Soundtoys
2023-03-30 13:43 - 2023-03-30 13:43 - 000011059 _____ C:\Users\nouil\Downloads\570_Brainworx_bx_AL.torrent
2023-03-22 02:20 - 2023-03-22 02:20 - 084207116 _____ C:\Users\nouil\Downloads\386474__skjor1__jungle-night-ambience-southern-thailand.wav
2023-03-17 19:19 - 2023-03-17 19:19 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB-2.pdf
2023-03-17 19:11 - 2023-03-17 19:11 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB-1.pdf
2023-03-17 19:10 - 2023-03-17 19:10 - 000052543 _____ C:\Users\nouil\Downloads\bon_transport_XZ303821958JB.pdf
2023-03-12 20:45 - 2023-03-12 20:45 - 019034156 _____ C:\Users\nouil\Downloads\High.wav
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-05-22 18:43 - 2021-03-11 03:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-05-22 18:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-22 18:38 - 2019-08-07 18:00 - 000000000 ____D C:\Program Files (x86)\Steam
2023-05-22 17:57 - 2018-12-17 12:29 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-22 17:22 - 2019-07-27 13:57 - 000000000 ____D C:\Program Files\Common Files\VST3
2023-05-22 17:21 - 2019-07-28 12:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-05-22 17:20 - 2019-07-27 13:51 - 000000000 ___DC C:\Users\nouil\AppData\Local\CrashDumps
2023-05-22 17:19 - 2022-05-07 13:07 - 000000000 ___HD C:\$WINDOWS.~BT
2023-05-22 16:58 - 2020-02-09 18:25 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences
2023-05-22 16:58 - 2020-02-09 18:25 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb
2023-05-22 16:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-05-22 16:40 - 2021-03-11 03:24 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-22 16:40 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-22 16:40 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-22 16:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-22 16:36 - 2020-02-07 20:21 - 000000000 ____D C:\Program Files\CCleaner
2023-05-22 16:34 - 2021-03-11 03:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-22 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-05-22 16:34 - 2019-07-25 16:53 - 000000000 __SHD C:\Users\nouil\IntelGraphicsProfiles
2023-05-22 16:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-05-22 15:17 - 2019-07-25 16:53 - 000000000 ___DC C:\Users\nouil\AppData\Local\Intel
2023-05-21 21:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-21 21:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-05-21 19:07 - 2019-07-28 14:30 - 000000000 ____D C:\Program Files\VSTPlugIns
2023-05-21 17:23 - 2020-06-20 23:35 - 000000000 ____D C:\WINDOWS\TempInst
2023-05-21 17:21 - 2019-07-27 16:37 - 000000000 ___DC C:\Users\nouil\AppData\Local\D3DSCache
2023-05-21 16:17 - 2019-07-27 13:57 - 000000000 ____D C:\Program Files\Steinberg
2023-05-21 16:16 - 2019-07-27 13:57 - 000000000 ____D C:\ProgramData\Steinberg
2023-05-21 16:12 - 2022-03-18 21:05 - 000000049 _____ C:\WINDOWS\SysWOW64\SYNSOPOS.exe.cfg
2023-05-21 16:12 - 2022-03-18 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2023-05-21 16:12 - 2022-03-18 21:05 - 000000000 ____D C:\Program Files\eLicenser
2023-05-21 16:12 - 2019-07-27 13:50 - 000000000 ____D C:\Program Files (x86)\eLicenser
2023-05-21 16:11 - 2019-07-27 13:59 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2023-05-21 16:10 - 2021-12-08 15:42 - 000000000 ____D C:\Users\nouil\AppData\Local\Steinberg Download Assistant
2023-05-21 15:39 - 2021-02-21 22:43 - 000000000 ____D C:\Users\Public\.AntelopeAudio
2023-05-21 14:11 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-21 13:23 - 2019-07-25 23:07 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\vlc
2023-05-21 12:18 - 2021-03-11 03:22 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-05-21 11:51 - 2022-11-10 15:34 - 000000000 ____D C:\Program Files (x86)\Epic Games
2023-05-21 11:48 - 2022-11-10 15:34 - 000000000 ____D C:\ProgramData\Epic
2023-05-21 11:48 - 2019-07-27 14:02 - 000000000 ___DC C:\Users\nouil\AppData\Local\UnrealEngine
2023-05-21 01:49 - 2019-07-29 18:05 - 000000000 ___DC C:\Users\nouil\AppData\Local\NVIDIA
2023-05-21 00:59 - 2019-08-24 15:18 - 000000000 ___DC C:\Users\nouil\AppData\Local\ElevatedDiagnostics
2023-05-21 00:39 - 2022-09-30 11:14 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-05-21 00:31 - 2022-02-11 14:52 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-21 00:17 - 2022-09-30 11:14 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-05-21 00:02 - 2022-03-21 23:45 - 000000000 ____D C:\Users\nouil\AppData\Roaming\discord
2023-05-20 23:59 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-20 23:39 - 2022-03-21 23:45 - 000000000 ____D C:\Users\nouil\AppData\Local\Discord
2023-05-20 23:19 - 2019-07-28 14:30 - 000000000 ____D C:\Program Files\Common Files\Avid
2023-05-20 23:10 - 2022-09-20 10:45 - 000000000 ____D C:\Users\nouil\AppData\Roaming\uTorrent
2023-05-20 22:18 - 2020-01-23 21:24 - 000000000 ___DC C:\Users\nouil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-05-20 14:06 - 2020-06-17 00:16 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-19 20:19 - 2021-09-12 17:31 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-05-19 20:19 - 2019-07-25 17:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-19 12:06 - 2021-09-20 16:42 - 000000000 ____D C:\WINDOWS\Minidump
2023-05-19 11:57 - 2019-07-25 17:02 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-15 20:56 - 2021-12-13 17:41 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1055140297-1376467973-3644869950-1001
2023-05-15 20:56 - 2021-03-11 03:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-05-15 20:56 - 2020-04-06 11:44 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-11 16:13 - 2021-03-11 03:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-05-11 16:12 - 2022-10-12 17:46 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-05-11 04:04 - 2021-03-11 03:15 - 000592760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-11 04:03 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-11 04:03 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-11 04:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-10 23:14 - 2021-03-11 03:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-10 23:14 - 2021-03-11 03:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-10 13:40 - 2021-03-11 03:17 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-10 13:32 - 2019-07-27 01:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-10 13:30 - 2019-07-27 01:13 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-10 03:54 - 2021-03-11 03:16 - 000000000 ____D C:\Users\nouil
2023-05-04 14:02 - 2020-10-02 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-04 11:22 - 2019-12-04 16:20 - 000000000 ____D C:\Users\nouil\AppData\Local\Downloaded Installations
2023-05-03 21:11 - 2018-04-17 21:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-04-26 18:39 - 2021-03-05 19:45 - 007935568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-04-26 12:28 - 2021-03-11 03:15 - 000008192 ___SH C:\DumpStack.log.tmp
==================== Fichiers à la racine de certains dossiers ========
2023-05-04 11:19 - 2023-05-20 23:32 - 000011926 _____ () C:\Users\nouil\AppData\Roaming\Avid_CCS_Service_Stop.log
2023-05-21 01:56 - 2023-05-22 15:47 - 000007602 _____ () C:\Users\nouil\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2019-07-28 12:32 - 2016-11-15 05:09 - 002181120 _____ (Propellerhead Software AB) C:\WINDOWS\system32\ReWire.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000088576 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\SoundGridAsio.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000025088 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\SoundGridInstHlp.dll
2020-05-08 18:34 - 1998-10-07 13:08 - 000327168 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUn040c.exe
2021-10-09 15:54 - 2021-10-09 15:54 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2020-06-04 17:56 - 2009-08-18 12:29 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2020-06-04 17:56 - 2009-08-18 12:29 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 005620736 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SGDawNodeService.exe
2019-07-28 14:34 - 2017-01-29 01:26 - 000069632 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SoundGridAsio.dll
2019-07-28 14:34 - 2017-01-29 01:26 - 000018944 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\SoundGridInstHlp.dll
2022-03-18 21:05 - 2011-12-14 21:21 - 000086016 _____ C:\WINDOWS\SysWOW64\SYNSOPOS.exe
2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2023-05-22 18:26 - 2023-05-22 18:26 - 002382336 _____ (Farbar) C:\Users\nouil\Downloads\FRST64.exe
2023-05-22 17:25 - 2023-05-22 17:26 - 003516616 _____ (Nicolas Coolman) C:\Users\nouil\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{26de1565-8d7b-11eb-ae7f-806e6f6e6963}
{a9b2f217-022f-11e9-824d-806e6f6e6963}
{a9b2f218-022f-11e9-824d-806e6f6e6963}
{a9b2f219-022f-11e9-824d-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {263bf155-8207-11eb-83fa-c0c3e5a29d30}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {1373f658-758f-11ea-ae1e-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description EFI PXE 0 for IPv6 (E8-6A-64-6E-8B-7D)
Application logicielle (101fffff)
--------------------------------
identificateur {26de1565-8d7b-11eb-ae7f-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f217-022f-11e9-824d-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f218-022f-11e9-824d-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f219-022f-11e9-824d-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {a9b2f21a-022f-11e9-824d-806e6f6e6963}
description EFI PXE 0 for IPv4 (E8-6A-64-6E-8B-7D)
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {263bf157-8207-11eb-83fa-c0c3e5a29d30}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {263bf155-8207-11eb-83fa-c0c3e5a29d30}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {263bf157-8207-11eb-83fa-c0c3e5a29d30}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{263bf158-8207-11eb-83fa-c0c3e5a29d30}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{263bf158-8207-11eb-83fa-c0c3e5a29d30}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {263bf155-8207-11eb-83fa-c0c3e5a29d30}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {263bf157-8207-11eb-83fa-c0c3e5a29d30}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {263bf158-8207-11eb-83fa-c0c3e5a29d30}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================