Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par vistt (administrateur) sur DESKTOP-V9ERSDE (Micro-Star International Co., Ltd. MS-7C71) (27-04-2024 22:49:07)
Exécuté depuis C:\Users\vistt\Desktop\FRST64.exe
Profils chargés: vistt
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4355 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_1.0.38.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7>
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1e9988599adb3e80\RtkAudUService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1e9988599adb3e80\RtkAudUService64.exe [1622896 2022-11-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CHERRY KEYS] => C:\Program Files\Cherry\CHERRY KEYS (x64)\cherry_keyboard-config-tool.exe [3520544 2020-08-12] (Cherry GmbH -> Cherry GmbH)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2023-10-28] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobePSE21AutoAnalyzer] => "C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe" (Pas de fichier)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1792256 2023-06-23] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [AdobePSE24AutoAnalyzer] => C:\Program Files\Adobe\Elements 2024 Organizer\Elements Auto Creations 2024.exe [3859424 2024-04-10] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-02-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hik\update_server\startUp.exe (Pas de fichier)
HKLM-x32\...\Run: [supportserver] => C:\Program Files (x86)\hik\supportserver\YS_Dameon.exe (Pas de fichier)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-10-28] (Adobe Inc. -> )
HKLM\...\Winlogon: [Shell] explorer.exe,Windows Driver Foundation (WDF).exe --minimized <=== ATTENTION
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [4988888 2024-04-27] (Microsoft Windows -> Microsoft Corporation) <=== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [193592 2024-03-25] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [Google Update] => C:\Users\vistt\AppData\Local\Google\Update\1.3.36.372\GoogleUpdateCore.exe [223008 2024-02-01] (Google LLC -> Google LLC)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306528 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Pas de fichier)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [MicrosoftEdgeAutoLaunch_C1CEFB31A8CDAAC3B05E33E9AB21FA38] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [microsoft] => "C:\Users\vistt\AppData\Roaming\microsoft\microsoft.exe" (Pas de fichier)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\MountPoints2: {cf2cf823-0f1c-11ed-aaa0-18cc18d04183} - "F:\setup.exe"
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\Fliqlo.scr [388096 2021-03-06] (9031) [Fichier non signé]
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2022-10-16] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP8700 series: CNMLMC4.DLL (Pas de fichier)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP8700 series XPS: C:\Windows\system32\CNMXLMC4.DLL [394240 2013-08-26] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [360448 2013-09-11] (CANON INC.) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.92\Installer\chrmstp.exe [2024-04-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {39A14E8D-EA25-445C-8266-B9EBA4368F5E} - \Driver Booster Update -> Pas de fichier <==== ATTENTION
Task: {581e0df4-8322-4308-b22b-286622dabd1c} - pas de chemin du fichier. <==== ATTENTION
Task: {5E812A37-7F18-48CF-B2A6-48559FB500CE} - \Driver Booster SkipUAC (vistt) -> Pas de fichier <==== ATTENTION
Task: {C4CAD63E-9E9B-4BF8-A498-983928471548} - \Driver Booster Scheduler -> Pas de fichier <==== ATTENTION
Task: {F008BCA5-C8EC-4E9D-BE9C-396B2E11DB9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-vi.stt77@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2023-10-28] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {73AAC01F-5605-4C82-95C9-3B47A9CB35CC} - System32\Tasks\Check system => C:\Windows\system32\WindowsPowerShell\v1.0\PowerShell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -windowstyle Hidden C:\ProgramData\updates.ps1 <==== ATTENTION
Task: {026B0534-09CF-40F3-B767-71CD33C976B6} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\vistt\Downloads\esetonlinescanner.exe LOGON (Pas de fichier)
Task: {0B5AA7E6-9255-4FEF-A10E-293318728CB5} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\vistt\Downloads\esetonlinescanner.exe SCHED (Pas de fichier)
Task: {F6A800C1-03D1-40FE-A24F-AE250DFFA022} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {CC00815C-7FCF-4C79-A0D3-F1B4F1A234A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {4CC11EA9-A838-4D1F-AB87-E3664F15FCD3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1850474398-3260066896-2527288250-1002Core => C:\Users\vistt\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {91A1ECE9-7820-4E17-9945-21B303BE35E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1850474398-3260066896-2527288250-1002UA => C:\Users\vistt\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {5B294268-770F-4EB0-8231-34ED15CB9877} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {EAB67C15-2A80-4B81-983E-184E79B6F07F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2064744 2021-01-19] (Intel(R) Production Software -> Intel Corporation)
Task: {18D6F4A7-DA41-4201-9733-83C9DCA23999} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {EFA05EBC-1D3E-4BA5-9819-D684DFED138B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {CE11D37D-6640-400A-A7BF-DB23DAD086C6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {26478238-51C2-423B-8B15-33EB1CB4183C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {914174B5-BDD8-4586-87C4-B578E8ADB2F6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA7E8A09-A3C5-4ADD-9BD4-953FE66001C7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {278C2133-D4A2-466C-91A0-C0B4A4F0B262} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EB375EE-E77F-4136-A2BB-24DBBF133695} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [61336 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEB6A33F-4693-44DE-AAAA-0508048CDC84} - System32\Tasks\Microsoft\Windows\ApplicationData\appuriverifierdailytAStXJhZ => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\C92FCB76-DE28-419B-BAAE-5BD319C63EC8.ps1" <==== ATTENTION
Task: {BCB50B5C-3B4C-4AE5-8C07-6AA7A9A892E5} - System32\Tasks\Microsoft\Windows\Bluetooth\Chromeniumscrypt => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\Users\Public\updates.ps1
Task: {5D9BEA19-2D0C-43D2-B5E6-A49BC7D6D841} - System32\Tasks\Microsoft\Windows\Bluetooth\CLEANTASK => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Users\vistt\AppData\Local\Temp\618b800c-9da6-43a3-ae00-5a3db7428929.ps1" <==== ATTENTION
Task: {44C4B609-9833-4FF1-9C83-1198E08412F8} - System32\Tasks\Microsoft\Windows\Bluetooth\java => C:\ProgramData\java.exe (Pas de fichier) <==== ATTENTION
Task: {02384B75-730E-4916-9D77-DB91572670A0} - System32\Tasks\Microsoft\Windows\Bluetooth\svchost => C:\Windows\powershells.exe (Pas de fichier)
Task: {DF1BAAAF-EF35-4AE8-8464-87C3746B7E30} - System32\Tasks\Microsoft\Windows\Bluetooth\time => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\C:\Windows\updates.ps1
Task: {23D3479A-D33F-4AE6-B050-9977721D4D8B} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTaskITA813BW => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\80FA49B1-BF6D-4548-B460-54C9015B8BA7.ps1" <==== ATTENTION
Task: {012AA530-4480-4629-A182-8FB1C16B9AD8} - System32\Tasks\Microsoft\Windows\Clip\License ValidationmzE5dLD => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\A074C467-6793-4A51-8861-97A0CDC62642.ps1" <==== ATTENTION
Task: {4BE1244C-197A-4954-B369-50EE6F0C3F9C} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTaskEjegXC => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\15397AC5-672A-491C-8341-E9FD74EFBC4F.ps1" <==== ATTENTION
Task: {9101CD00-E851-484A-8985-4C7F66E18321} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProvj3wEoxI => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\E7AD8E6F-9BE2-49B9-8826-DD64CCF935BF.ps1" <==== ATTENTION
Task: {628197F3-2D01-4B3B-AFD9-31C8B0E8F5B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5AD58744-471A-4A12-9B08-2B08B3E3068B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {21B72455-77E1-42E4-9C19-EE0D2B14035A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A7AD81E0-9760-4D07-8866-37E25B9511D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {44D3B552-2EAB-4316-B732-E0B1C7E630B4} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [1118128 2024-02-22] (SteelSeries France SASU -> Nahimic)
Task: {37CB8CFB-F5E1-4F5F-A5BA-228F567B8E74} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1438232 2024-02-22] (SteelSeries France SASU -> Nahimic)
Task: {AEDC08BC-819B-4FCD-B099-E17C45DCAA2C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5E01FE6F-4C4C-480F-90A3-97CBBCC9FFDC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3DF312F-FD24-41CA-B75B-D4E5142899AF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {1FFAA2E1-9477-41ED-8E29-E9AEE47C2AE9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9669467-3922-4FBB-AF7E-D1BEBE46CE1E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E6DB368-97B3-4772-8DF3-65D5943B325F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0C00B29-9337-44EB-ABB7-D91B4645F7B1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2876D9F5-BF12-454E-AA35-15F81ACA7734} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9408F47-E41E-4FD7-90B6-AD1CCBFAE91E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A28959CF-6F5E-4082-920F-4BFF3C07EC80} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {158CF851-7141-4929-A464-EBA309171257} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1850474398-3260066896-2527288250-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E767F745-4BC8-46FB-AA5B-40FBF7AA85C3} - System32\Tasks\SidebarStartup => C:\Users\vistt\AppData\Local\SidebarDiagnostics\app-3.5.5\SidebarDiagnostics.exe (Pas de fichier)
Task: {4A157C85-217A-4D27-A420-285E70F4787C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [170496 2023-10-11] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{495d6990-91b6-4ce2-8fbf-b4ea6cc344f3}: [NameServer] 208.67.222.222,208.67.220.220
Tcpip\..\Interfaces\{495d6990-91b6-4ce2-8fbf-b4ea6cc344f3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}\356425D283135666: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}\356425D283135666: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{f9898041-06ed-4592-a0bc-e77c9641c164}: [DhcpNameServer] 192.168.42.129
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,169.254.123.23,1]
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.25,1]
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-27]
Edge DownloadDir: Default -> D:\02 GOOGLE PHOTOS 2016-2023\ZIPS
Edge HomePage: Default -> hxxp://google.fr/
Edge StartupUrls: Default -> "hxxps://www.google.fr/"
Edge Extension: (Free Vpn Chrome - free vpn proxy) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ebldcmdjfokdlhlldbfgljogkjkadoag [2024-03-03]
Edge Extension: (Simple Translate) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ebnhhgdjlffclccmkfhodkhkmpddafph [2024-03-03]
Edge Extension: (Keepa - Amazon Price Tracker) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejefaeioamebhekmfaclajddbpnnobje [2024-04-04]
Edge Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2024-04-15]
Edge Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2024-03-15]
Edge Extension: (Google Docs hors connexion) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-04]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-04]
Edge Extension: (Location Guard) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gobadfdlkomaelgflgjpciladbimmnpg [2024-03-03]
Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-04-09]
Edge Extension: (Edge relevant text changes) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
Edge Extension: (G Maps Extractor - Google Maps Scraper) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpfimicpogoghgcbhncoacofnohcbgci [2023-10-28]
Edge Extension: (Exif Viewer) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nfkenmdojopbcmndikjemfgdpgneolga [2024-03-03]
Edge Extension: (Gmail Checker - Read, Label & Manage) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nhjdhmbdahdidccpobobccagmmijndmp [2024-03-03]
Edge Extension: (uBlock Origin) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-04-09]
Edge Extension: (CyberGhost Cookie Cleaner) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2024-03-03]
Edge Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2024-03-03]
Edge Extension: (ChatGPT Writer - Write mail, messages with AI) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdnenlnelpdomajfejgapbdpmjkfpjkp [2024-04-18]
Edge Extension: (Google Sheets) - C:\Extension\6.2.9._0 [2023-12-13]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: jznz8wfd.default
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1 [2021-04-26]
FF Homepage: Mozilla\Firefox\Profiles\k72evm8f.default-release-1 -> www.google.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\adblockultimate@adblockultimate.net.xpi [2020-10-24]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\firefox@ghostery.com.xpi [2020-10-24]
FF Extension: (To Google Translate) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-10-24]
FF Extension: (uBlock Origin) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\uBlock0@raymondhill.net.xpi [2020-10-24]
FF Extension: (Flagfox) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2020-10-24]
FF Extension: (Bitwarden - Gestionnaire de mots de passe gratuit) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2020-10-24]
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\jznz8wfd.default [2022-02-02]
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\eiuy3wzm.default-release-1677750795555 [2023-03-02]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-07-23] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [Pas de fichier]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin-x32: shipin7 -> C:\Program Files (x86)\hik\PCPlayer\npSP7WebVideoPlugin.dll [Pas de fichier]
FF Plugin-x32: shipin7safebox -> C:\Program Files (x86)\hik\PCPlayer\npSafePlugin.dll [Pas de fichier]
FF Plugin-x32: shipin7update -> C:\Program Files (x86)\hik\PCPlayer\npUpdataPlugin.dll [Pas de fichier]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default [2024-04-27]
CHR HomePage: Default -> hxxp://google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Extension: (uBlock Origin) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-04-05]
CHR Extension: (Free Vpn Chrome - free vpn proxy) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebldcmdjfokdlhlldbfgljogkjkadoag [2024-02-21]
CHR Extension: (Adobe Acrobat : outils de modif., de conversion et de signature de PDF) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-04-25]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2024-03-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-11]
CHR Extension: (Exif Viewer) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnpbnmjmgabkfemdehelbgdppngihhg [2023-08-29]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-16]
CHR Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2024-04-17]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2024-04-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-04-17]
CHR Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2024-02-15]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-21]
CHR Extension: (ChatGPT Writer - Write mail, messages with AI) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnenlnelpdomajfejgapbdpmjkfpjkp [2024-04-18]
CHR Profile: C:\Users\vistt\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-24]
CHR HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 Adobe Elements 2024 Update Service; C:\Program Files\Adobe\Elements 2024 Organizer\Adobe Elements 2024 Update Service.exe [374240 2024-04-10] (Adobe Inc. -> Adobe Systems Incorporated)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S4 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1191040 2021-06-29] (ASUSTeK Computer Inc. -> )
S4 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11762624 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
S4 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [11976128 2021-02-26] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S4 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncHelper.exe [3507728 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
S4 LetsViewService; C:\Program Files (x86)\LetsView\LetsView\usbmmidd_v2\..\WXCastService.exe [411000 ] (Apowersoft Ltd -> )
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 MSI_Central_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [150840 2021-06-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S4 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S4 NahimicService; C:\Windows\system32\NahimicService.exe [1910296 2024-02-22] (SteelSeries France SASU -> Nahimic)
S4 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_defcd1ccab02e3ec\Display.NvContainer\NVDisplay.Container.exe [1275544 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\OneDriveUpdaterService.exe [3848208 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
S4 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-04-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 spacedeskService; C:\Windows\System32\spacedeskService.exe [4816336 2023-04-26] (Datronicsoft Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 Adobe Elements 2023 Update Service; "C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe" [X]
S2 AdobeUpdateService; pas de ImagePath
S2 ElevationService; C:\Program Files (x86)\Wondershare\MobileTrans (Français)\ElevationService.exe [X]
S2 WMI_Hook_Service; pas de ImagePath
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\Windows\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 brbtusb_54; C:\Windows\System32\DriverStore\FileRepository\brbtusb_54.inf_amd64_da938c315b14cd2c\brbtusb_54.sys [70560 2024-03-21] (WDKTestCert Asher Han,133238407001069367 -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
S3 cpuz149; C:\Windows\temp\cpuz149\cpuz149_x64.sys [44320 2024-04-21] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2020-07-15] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2021-11-09] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl22878eb5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E4D8465-D3F2-4436-9E89-44E65288942D}\MpKslDrv.sys [301336 2024-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [23040 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 NPF; C:\Program Files (x86)\hik\PCPlayer\npf64.sys [36600 2015-10-15] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [29576 2021-11-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 spacedeskDriverAndroidControl; C:\Windows\System32\drivers\spacedeskDriverAndroidControl.sys [49120 2023-02-20] (Datronicsoft Inc. -> )
S3 spacedeskDriverAudio; C:\Windows\System32\drivers\spacedeskDriverAudio.sys [127416 2023-04-26] (Datronicsoft Inc. -> datronicsoft Inc.)
R3 spacedeskDriverBus; C:\Windows\System32\drivers\spacedeskDriverBus.sys [107960 2023-04-04] (Datronicsoft Inc. -> datronicsoft Inc.)
S3 spacedeskKtmInputMouse; C:\Windows\System32\drivers\spacedeskKtmInputMouse.sys [42448 2022-11-04] (Datronicsoft Inc. -> )
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 Spyder5; C:\Windows\System32\drivers\dccmtr.sys [15360 2015-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\Windows\system32\DRIVERS\usbscan.sys [49664 2022-06-29] (Microsoft Corporation) [Fichier non signé]
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [118200 2020-03-18] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 WinRing0_1_2_0; C:\Users\vistt\AppData\Local\SidebarDiagnostics\app-3.5.5\LibreHardwareMonitorLib.sys [14544 2020-07-11] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 22:49 - 2024-04-27 22:49 - 000046285 _____ C:\Users\vistt\Desktop\FRST.txt
2024-04-27 22:27 - 2024-04-27 22:27 - 000003597 _____ C:\Users\vistt\Downloads\Windows PowerShell.zip
2024-04-27 22:27 - 2024-04-27 22:27 - 000000000 ____D C:\Users\vistt\Downloads\Windows PowerShell
2024-04-27 22:21 - 2024-04-27 22:21 - 000000000 ___HD C:\OneDriveTemp
2024-04-27 22:11 - 2024-04-27 22:34 - 137101312 _____ C:\Windows\system32\config\SOFTWARE
2024-04-27 21:58 - 2024-04-27 21:58 - 000000000 ____D C:\Users\vistt\AppData\Local\Microsoft_Corporation
2024-04-27 20:57 - 2024-04-27 20:58 - 000000000 ___HD C:\$WinREAgent
2024-04-27 20:57 - 2024-04-27 20:57 - 006281760 _____ (Intel) C:\Users\vistt\Downloads\Intel-Driver-and-Support-Assistant-Installer.exe
2024-04-27 19:48 - 2024-04-27 19:56 - 000000000 ___HD C:\$WINDOWS.~BT
2024-04-27 19:29 - 2024-04-27 19:38 - 000000000 ____D C:\Users\vistt\Desktop\SKP PLUGING
2024-04-27 19:18 - 2024-04-27 19:18 - 000004136 _____ C:\Users\vistt\Desktop\Préférences.dat
2024-04-27 19:10 - 2024-04-27 19:10 - 000254644 _____ C:\Users\vistt\Desktop\favoris_27_04_2024.html
2024-04-27 19:09 - 2024-04-27 19:09 - 000002281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-27 19:09 - 2024-04-27 19:09 - 000002240 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-04-27 19:08 - 2024-04-27 19:09 - 001376816 _____ (Google LLC) C:\Users\vistt\Downloads\ChromeSetup.exe
2024-04-27 18:35 - 2022-07-15 15:34 - 000010597 _____ C:\Users\vistt\Desktop\MaterialsSubstitutionTable.csv
2024-04-27 18:32 - 2024-04-27 19:56 - 000001908 _____ C:\Windows\diagwrn.xml
2024-04-27 18:32 - 2024-04-27 19:56 - 000001908 _____ C:\Windows\diagerr.xml
2024-04-27 17:56 - 2024-04-27 17:56 - 000000112 ___SH C:\bootTel.dat
2024-04-27 17:38 - 2024-04-27 17:38 - 000008652 _____ C:\Users\vistt\Desktop\Malwaere.txt
2024-04-27 17:31 - 2024-04-27 17:31 - 002586520 _____ (Malwarebytes) C:\Users\vistt\Downloads\MBSetup.exe
2024-04-27 17:19 - 2024-04-27 22:49 - 000000000 ____D C:\FRST
2024-04-27 17:19 - 2024-04-27 17:19 - 002394112 _____ (Farbar) C:\Users\vistt\Desktop\FRST64.exe
2024-04-27 15:29 - 2024-04-27 15:29 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-04-25 11:17 - 2024-04-25 11:17 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-25 11:17 - 2024-04-25 11:17 - 000046277 ____H C:\ProgramData\updates.ps1
2024-04-25 11:17 - 2024-04-25 11:17 - 000044084 _____ C:\Users\Public\updates.ps1
2024-04-25 11:17 - 2024-04-25 11:17 - 000003408 _____ C:\Windows\system32\Tasks\Check system
2024-04-21 18:17 - 2024-04-12 21:03 - 002031488 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 002031488 _____ C:\Windows\system32\vulkaninfo.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001578872 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001578872 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001488024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001445240 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001445240 _____ C:\Windows\system32\vulkan-1.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001295120 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001295120 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001226776 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 001046064 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 000670248 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 000505368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 002174512 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001626664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001543304 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001199640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001024664 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 000842288 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-04-21 18:17 - 2024-04-12 20:58 - 000787584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-04-21 18:17 - 2024-04-12 20:58 - 000459928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-04-21 18:16 - 2024-04-12 20:58 - 016034968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-04-21 18:16 - 2024-04-12 20:58 - 012930200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-04-21 18:16 - 2024-04-12 20:58 - 003721352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 006780544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 005913752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 005772824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 000853120 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-04-21 18:16 - 2024-04-12 04:05 - 000119466 _____ C:\Windows\system32\nvinfo.pb
2024-04-21 18:16 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-04-21 18:16 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2024-04-21 18:10 - 2024-04-21 18:10 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\IME
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\AppData\Roaming\com.logitech
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\AppData\Local\flutter_webview_windows
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\ai_overlay_tmp
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-13 22:29 - 2024-04-13 22:29 - 000000000 ____D C:\Users\vistt\AppData\Local\Trimble
2024-04-12 20:26 - 2024-04-12 20:26 - 000355454 _____ C:\Users\vistt\Desktop\Avis Appel - RESIDENCE LE MORPHEE - STOIANI Vitali - 12-04-2024.pdf
2024-04-10 12:17 - 2024-04-10 12:17 - 000034497 _____ C:\Users\vistt\Downloads\RBLP36833_3 34900389 Schéma Électrique.pdf
2024-04-10 12:16 - 2024-04-10 12:16 - 000167575 _____ C:\Users\vistt\Downloads\RBLP36833_3 34900389 Vue Éclatée.pdf
2024-04-10 06:41 - 2024-04-10 06:41 - 000001379 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elements Creations Notification 2024.lnk
2024-04-10 04:11 - 2024-04-10 04:12 - 000004127 _____ C:\ProgramData\StreamingMediaTechnologyLog.txt
2024-04-10 04:11 - 2024-04-10 04:11 - 000000000 ____D C:\Users\vistt\AppData\Local\PhotoshopElementsOrganizer
2024-04-10 04:06 - 2024-04-10 03:58 - 000002560 _____ C:\Users\Public\Documents\frsdk.cfg
2024-04-10 04:03 - 2024-04-10 04:03 - 000003662 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-vi.stt77@gmail.com
2024-04-10 03:59 - 2024-04-10 03:59 - 000001193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 2024.lnk
2024-04-08 21:37 - 2024-04-08 21:37 - 000163120 _____ C:\Users\vistt\Desktop\Avis_d_impot_2023_sur_les_revenus_2022.pdf
2024-04-08 09:07 - 2024-04-08 09:07 - 000003670 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-04-08 09:07 - 2024-02-22 09:58 - 000047240 _____ C:\Windows\system32\Drivers\semav6msr64.sys
2024-04-08 08:58 - 2024-04-08 08:58 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-08 08:57 - 2024-04-08 08:57 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-03-28 14:20 - 2024-03-28 14:20 - 000000000 ____D C:\ProgramData\dbg
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 22:39 - 2020-10-24 10:29 - 000760776 _____ C:\Windows\system32\perfh019.dat
2024-04-27 22:39 - 2020-10-24 10:29 - 000151484 _____ C:\Windows\system32\perfc019.dat
2024-04-27 22:39 - 2020-07-08 17:42 - 002683912 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-27 22:39 - 2019-12-07 16:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat
2024-04-27 22:39 - 2019-12-07 16:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat
2024-04-27 22:39 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-04-27 22:36 - 2021-12-15 14:05 - 000000000 ____D C:\Windows\SystemTemp
2024-04-27 22:36 - 2020-07-11 13:42 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-27 22:34 - 2023-10-06 17:17 - 000000000 ___RD C:\Users\vistt\iCloudDrive
2024-04-27 22:34 - 2022-08-11 08:01 - 000000000 ___RD C:\ONEDRIVE
2024-04-27 22:34 - 2020-07-08 17:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-27 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-27 22:34 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-04-27 22:32 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-04-27 22:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-04-27 22:11 - 2021-04-12 17:40 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-04-27 22:05 - 2020-07-11 00:35 - 000000000 ____D C:\ProgramData\SketchUp
2024-04-27 22:05 - 2020-07-11 00:35 - 000000000 ____D C:\Program Files\SketchUp
2024-04-27 21:50 - 2020-07-11 00:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-27 21:44 - 2021-04-07 20:13 - 000000000 ____D C:\Program Files (x86)\Intel
2024-04-27 21:44 - 2020-07-09 19:31 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-27 21:38 - 2020-07-09 18:16 - 000000000 ____D C:\Users\vistt\AppData\Local\Packages
2024-04-27 21:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-04-27 21:05 - 2020-07-29 18:41 - 000000000 ___HD C:\Users\vistt\AppData\Local\CrashDumps
2024-04-27 20:59 - 2021-03-22 01:20 - 000000000 ____D C:\Program Files\dotnet
2024-04-27 20:30 - 2021-10-05 17:34 - 000001349 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-04-27 20:30 - 2021-10-05 17:34 - 000000000 ____D C:\Users\vistt\AppData\Local\PCHealthCheck
2024-04-27 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2024-04-27 20:03 - 2020-07-09 19:32 - 000000000 ___HD C:\Users\vistt\AppData\Local\D3DSCache
2024-04-27 20:00 - 2020-07-08 17:37 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-27 19:56 - 2020-07-08 18:36 - 000000000 ____D C:\Windows\Panther
2024-04-27 19:09 - 2022-02-24 22:54 - 000000000 ____D C:\Program Files\Google
2024-04-27 19:09 - 2020-07-11 13:42 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-04-27 19:09 - 2020-07-11 13:42 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-04-27 18:25 - 2020-07-28 15:34 - 000000000 ____D C:\Users\vistt\AppData\Local\NVIDIA Corporation
2024-04-27 17:39 - 2021-03-23 11:01 - 000000000 ____D C:\ProgramData\Outbyte
2024-04-27 17:11 - 2021-12-05 00:13 - 000000000 ____D C:\Users\vistt\AppData\Local\LogiBolt
2024-04-27 16:58 - 2022-02-19 21:29 - 000000000 ____D C:\Users\vistt\AppData\Local\LogiOptionsPlus
2024-04-27 16:58 - 2021-11-17 22:18 - 000000000 ____D C:\Program Files (x86)\Canon
2024-04-27 16:58 - 2020-07-09 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-27 16:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-27 16:27 - 2020-07-08 17:37 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-27 15:29 - 2024-01-12 15:54 - 000000000 ____D C:\Windows\system32\zh-hant
2024-04-27 15:29 - 2024-01-12 15:54 - 000000000 ____D C:\Windows\system32\zh-hans
2024-04-27 15:29 - 2020-12-15 23:46 - 000002430 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk
2024-04-27 15:24 - 2020-07-08 17:37 - 000705288 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\F12
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-27 15:23 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2024-04-27 15:20 - 2020-07-08 17:40 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-27 08:38 - 2023-01-26 16:11 - 000000000 ____D C:\Users\vistt\Desktop\Elisabeth 2023
2024-04-27 07:40 - 2020-07-11 13:03 - 000000000 ___HD C:\Users\vistt\AppData\Local\Adobe
2024-04-25 19:28 - 2022-07-08 15:30 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\Excel
2024-04-25 14:27 - 2022-07-09 16:40 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\Word
2024-04-25 10:17 - 2022-08-11 01:25 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-24 22:11 - 2022-08-11 08:16 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-24 22:11 - 2022-08-11 08:16 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-24 22:11 - 2022-08-11 07:59 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1850474398-3260066896-2527288250-1002
2024-04-24 22:10 - 2022-04-27 11:16 - 000002126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-04-24 07:10 - 2021-07-19 11:49 - 000000000 ____D C:\Users\vistt\AppData\Local\CyberGhost
2024-04-21 19:30 - 2021-04-07 20:13 - 000000000 ____D C:\Program Files\Intel
2024-04-21 18:19 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Local\NVIDIA
2024-04-21 18:16 - 2020-07-28 15:33 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-04-21 18:16 - 2020-07-08 17:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-04-21 18:16 - 2020-07-08 17:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-04-20 20:06 - 2020-10-20 20:58 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-18 18:10 - 2021-03-05 09:09 - 000000000 ____D C:\ProgramData\ProfileBuilder3
2024-04-18 09:58 - 2021-12-05 00:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-18 09:58 - 2020-07-09 18:11 - 000000000 ___HD C:\Users\vistt
2024-04-16 10:21 - 2020-07-09 18:11 - 000000000 ___SD C:\Users\vistt\AppData\Roaming\Microsoft\Credentials
2024-04-13 22:29 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Roaming\SketchUp
2024-04-13 22:29 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Local\SketchUp
2024-04-12 20:55 - 2022-02-02 15:55 - 006035256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-04-12 20:55 - 2020-09-03 09:37 - 006948656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-04-12 17:23 - 2020-07-22 19:07 - 000000000 ____D C:\Users\vistt\AppData\Roaming\transmutr
2024-04-10 13:19 - 2020-07-28 15:33 - 002900520 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-04-10 13:19 - 2020-07-28 15:33 - 002231336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-04-10 13:18 - 2020-07-28 15:33 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2024-04-10 12:50 - 2020-09-18 22:07 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2024-04-10 12:50 - 2020-09-18 22:07 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-04-10 09:48 - 2020-09-03 10:02 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2024-04-10 06:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-10 06:35 - 2023-10-28 00:15 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-10 06:35 - 2023-10-12 11:18 - 000000000 ___HD C:\adobeTemp
2024-04-10 06:23 - 2022-09-26 15:38 - 000000000 ____D C:\Users\vistt\AppData\Roaming\com.adobe.dunamis
2024-04-10 06:22 - 2020-07-08 17:50 - 000000000 ____D C:\Windows\system32\MRT
2024-04-10 06:20 - 2020-07-08 17:50 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 04:25 - 2020-07-08 17:37 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-10 04:01 - 2020-07-11 13:03 - 000000000 ____D C:\ProgramData\Adobe
2024-04-10 03:59 - 2020-07-09 18:16 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Adobe
2024-04-10 03:58 - 2023-10-28 00:15 - 000000000 ____D C:\Program Files\Adobe
2024-04-09 12:14 - 2022-01-30 13:48 - 000000000 ____D C:\ProgramData\PhotoStitch
2024-04-08 09:21 - 2021-04-07 20:30 - 000003834 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2024-04-08 09:14 - 2020-09-13 12:02 - 000000000 ____D C:\ProgramData\Epic
2024-04-08 09:07 - 2021-04-07 20:13 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-04-08 09:07 - 2021-04-07 20:13 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-04-08 09:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-08 09:01 - 2023-12-12 23:34 - 000000000 ____D C:\Windows\InboxApps
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-06 01:13 - 2023-03-26 11:40 - 000000000 ____D C:\ProgramData\PlaceMaker
2024-04-04 22:00 - 2020-10-20 20:58 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 22:00 - 2020-10-20 20:58 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-01 23:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 11:17 - 2024-04-25 11:17 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2021-08-14 14:23 - 2020-06-27 10:45 - 019942960 _____ (OCCT - Ocbase - Adrien Mercier) C:\Program Files (x86)\OCCT6.0.0.exe
2024-02-01 18:20 - 2024-02-02 14:59 - 000000110 _____ () C:\Users\vistt\AppData\Roaming\Camdata.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000000408 _____ () C:\Users\vistt\AppData\Roaming\CamLayout.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000000408 _____ () C:\Users\vistt\AppData\Roaming\CamShapes.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000004549 _____ () C:\Users\vistt\AppData\Roaming\CamStudio.cfg
2020-09-28 20:18 - 2023-03-23 14:09 - 000000410 _____ () C:\Users\vistt\AppData\Local\oobelibMkey.log
2020-07-11 18:22 - 2021-08-11 00:11 - 000007598 ____H () C:\Users\vistt\AppData\Local\resmon.resmoncfg
==================== FCheck ================================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
FCheck: C:\Windows\SysWOW64\version_IObitDel.dll [2021-04-10] <==== ATTENTION (zéro octet Fichier/Dossier)
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par vistt (administrateur) sur DESKTOP-V9ERSDE (Micro-Star International Co., Ltd. MS-7C71) (27-04-2024 22:49:07)
Exécuté depuis C:\Users\vistt\Desktop\FRST64.exe
Profils chargés: vistt
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4355 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_1.0.38.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7>
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1e9988599adb3e80\RtkAudUService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1e9988599adb3e80\RtkAudUService64.exe [1622896 2022-11-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CHERRY KEYS] => C:\Program Files\Cherry\CHERRY KEYS (x64)\cherry_keyboard-config-tool.exe [3520544 2020-08-12] (Cherry GmbH -> Cherry GmbH)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2023-10-28] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobePSE21AutoAnalyzer] => "C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe" (Pas de fichier)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1792256 2023-06-23] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [AdobePSE24AutoAnalyzer] => C:\Program Files\Adobe\Elements 2024 Organizer\Elements Auto Creations 2024.exe [3859424 2024-04-10] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-02-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hik\update_server\startUp.exe (Pas de fichier)
HKLM-x32\...\Run: [supportserver] => C:\Program Files (x86)\hik\supportserver\YS_Dameon.exe (Pas de fichier)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-10-28] (Adobe Inc. -> )
HKLM\...\Winlogon: [Shell] explorer.exe,Windows Driver Foundation (WDF).exe --minimized <=== ATTENTION
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [4988888 2024-04-27] (Microsoft Windows -> Microsoft Corporation) <=== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [193592 2024-03-25] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [Google Update] => C:\Users\vistt\AppData\Local\Google\Update\1.3.36.372\GoogleUpdateCore.exe [223008 2024-02-01] (Google LLC -> Google LLC)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1423608 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306528 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (Pas de fichier)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [MicrosoftEdgeAutoLaunch_C1CEFB31A8CDAAC3B05E33E9AB21FA38] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\Run: [microsoft] => "C:\Users\vistt\AppData\Roaming\microsoft\microsoft.exe" (Pas de fichier)
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\...\MountPoints2: {cf2cf823-0f1c-11ed-aaa0-18cc18d04183} - "F:\setup.exe"
HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\Fliqlo.scr [388096 2021-03-06] (9031) [Fichier non signé]
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\90.0.3.0\GoogleDriveFS.exe [60567840 2024-04-24] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2022-10-16] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP8700 series: CNMLMC4.DLL (Pas de fichier)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP8700 series XPS: C:\Windows\system32\CNMXLMC4.DLL [394240 2013-08-26] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [360448 2013-09-11] (CANON INC.) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.92\Installer\chrmstp.exe [2024-04-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {39A14E8D-EA25-445C-8266-B9EBA4368F5E} - \Driver Booster Update -> Pas de fichier <==== ATTENTION
Task: {581e0df4-8322-4308-b22b-286622dabd1c} - pas de chemin du fichier. <==== ATTENTION
Task: {5E812A37-7F18-48CF-B2A6-48559FB500CE} - \Driver Booster SkipUAC (vistt) -> Pas de fichier <==== ATTENTION
Task: {C4CAD63E-9E9B-4BF8-A498-983928471548} - \Driver Booster Scheduler -> Pas de fichier <==== ATTENTION
Task: {F008BCA5-C8EC-4E9D-BE9C-396B2E11DB9A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-vi.stt77@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2023-10-28] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {73AAC01F-5605-4C82-95C9-3B47A9CB35CC} - System32\Tasks\Check system => C:\Windows\system32\WindowsPowerShell\v1.0\PowerShell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -windowstyle Hidden C:\ProgramData\updates.ps1 <==== ATTENTION
Task: {026B0534-09CF-40F3-B767-71CD33C976B6} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\vistt\Downloads\esetonlinescanner.exe LOGON (Pas de fichier)
Task: {0B5AA7E6-9255-4FEF-A10E-293318728CB5} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\vistt\Downloads\esetonlinescanner.exe SCHED (Pas de fichier)
Task: {F6A800C1-03D1-40FE-A24F-AE250DFFA022} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {CC00815C-7FCF-4C79-A0D3-F1B4F1A234A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {4CC11EA9-A838-4D1F-AB87-E3664F15FCD3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1850474398-3260066896-2527288250-1002Core => C:\Users\vistt\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {91A1ECE9-7820-4E17-9945-21B303BE35E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1850474398-3260066896-2527288250-1002UA => C:\Users\vistt\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2021-02-11] (Google LLC -> Google LLC)
Task: {5B294268-770F-4EB0-8231-34ED15CB9877} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {EAB67C15-2A80-4B81-983E-184E79B6F07F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2064744 2021-01-19] (Intel(R) Production Software -> Intel Corporation)
Task: {18D6F4A7-DA41-4201-9733-83C9DCA23999} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {EFA05EBC-1D3E-4BA5-9819-D684DFED138B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {CE11D37D-6640-400A-A7BF-DB23DAD086C6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {26478238-51C2-423B-8B15-33EB1CB4183C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {914174B5-BDD8-4586-87C4-B578E8ADB2F6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894032 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA7E8A09-A3C5-4ADD-9BD4-953FE66001C7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {278C2133-D4A2-466C-91A0-C0B4A4F0B262} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144768 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EB375EE-E77F-4136-A2BB-24DBBF133695} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [61336 2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEB6A33F-4693-44DE-AAAA-0508048CDC84} - System32\Tasks\Microsoft\Windows\ApplicationData\appuriverifierdailytAStXJhZ => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\C92FCB76-DE28-419B-BAAE-5BD319C63EC8.ps1" <==== ATTENTION
Task: {BCB50B5C-3B4C-4AE5-8C07-6AA7A9A892E5} - System32\Tasks\Microsoft\Windows\Bluetooth\Chromeniumscrypt => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\Users\Public\updates.ps1
Task: {5D9BEA19-2D0C-43D2-B5E6-A49BC7D6D841} - System32\Tasks\Microsoft\Windows\Bluetooth\CLEANTASK => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Users\vistt\AppData\Local\Temp\618b800c-9da6-43a3-ae00-5a3db7428929.ps1" <==== ATTENTION
Task: {44C4B609-9833-4FF1-9C83-1198E08412F8} - System32\Tasks\Microsoft\Windows\Bluetooth\java => C:\ProgramData\java.exe (Pas de fichier) <==== ATTENTION
Task: {02384B75-730E-4916-9D77-DB91572670A0} - System32\Tasks\Microsoft\Windows\Bluetooth\svchost => C:\Windows\powershells.exe (Pas de fichier)
Task: {DF1BAAAF-EF35-4AE8-8464-87C3746B7E30} - System32\Tasks\Microsoft\Windows\Bluetooth\time => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -File C:\C:\Windows\updates.ps1
Task: {23D3479A-D33F-4AE6-B050-9977721D4D8B} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTaskITA813BW => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\80FA49B1-BF6D-4548-B460-54C9015B8BA7.ps1" <==== ATTENTION
Task: {012AA530-4480-4629-A182-8FB1C16B9AD8} - System32\Tasks\Microsoft\Windows\Clip\License ValidationmzE5dLD => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\A074C467-6793-4A51-8861-97A0CDC62642.ps1" <==== ATTENTION
Task: {4BE1244C-197A-4954-B369-50EE6F0C3F9C} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTaskEjegXC => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\15397AC5-672A-491C-8341-E9FD74EFBC4F.ps1" <==== ATTENTION
Task: {9101CD00-E851-484A-8985-4C7F66E18321} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProvj3wEoxI => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-09] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Windows\System32\E7AD8E6F-9BE2-49B9-8826-DD64CCF935BF.ps1" <==== ATTENTION
Task: {628197F3-2D01-4B3B-AFD9-31C8B0E8F5B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5AD58744-471A-4A12-9B08-2B08B3E3068B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {21B72455-77E1-42E4-9C19-EE0D2B14035A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A7AD81E0-9760-4D07-8866-37E25B9511D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {44D3B552-2EAB-4316-B732-E0B1C7E630B4} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [1118128 2024-02-22] (SteelSeries France SASU -> Nahimic)
Task: {37CB8CFB-F5E1-4F5F-A5BA-228F567B8E74} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1438232 2024-02-22] (SteelSeries France SASU -> Nahimic)
Task: {AEDC08BC-819B-4FCD-B099-E17C45DCAA2C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5E01FE6F-4C4C-480F-90A3-97CBBCC9FFDC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3DF312F-FD24-41CA-B75B-D4E5142899AF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {1FFAA2E1-9477-41ED-8E29-E9AEE47C2AE9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9669467-3922-4FBB-AF7E-D1BEBE46CE1E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E6DB368-97B3-4772-8DF3-65D5943B325F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0C00B29-9337-44EB-ABB7-D91B4645F7B1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2876D9F5-BF12-454E-AA35-15F81ACA7734} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9408F47-E41E-4FD7-90B6-AD1CCBFAE91E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A28959CF-6F5E-4082-920F-4BFF3C07EC80} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {158CF851-7141-4929-A464-EBA309171257} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1850474398-3260066896-2527288250-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E767F745-4BC8-46FB-AA5B-40FBF7AA85C3} - System32\Tasks\SidebarStartup => C:\Users\vistt\AppData\Local\SidebarDiagnostics\app-3.5.5\SidebarDiagnostics.exe (Pas de fichier)
Task: {4A157C85-217A-4D27-A420-285E70F4787C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [170496 2023-10-11] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{495d6990-91b6-4ce2-8fbf-b4ea6cc344f3}: [NameServer] 208.67.222.222,208.67.220.220
Tcpip\..\Interfaces\{495d6990-91b6-4ce2-8fbf-b4ea6cc344f3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}\356425D283135666: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{784d5878-22c7-497b-97dd-4370a8b37476}\356425D283135666: [DhcpDomain] numericable.fr
Tcpip\..\Interfaces\{f9898041-06ed-4592-a0bc-e77c9641c164}: [DhcpNameServer] 192.168.42.129
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,169.254.123.23,1]
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.25,1]
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-27]
Edge DownloadDir: Default -> D:\02 GOOGLE PHOTOS 2016-2023\ZIPS
Edge HomePage: Default -> hxxp://google.fr/
Edge StartupUrls: Default -> "hxxps://www.google.fr/"
Edge Extension: (Free Vpn Chrome - free vpn proxy) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ebldcmdjfokdlhlldbfgljogkjkadoag [2024-03-03]
Edge Extension: (Simple Translate) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ebnhhgdjlffclccmkfhodkhkmpddafph [2024-03-03]
Edge Extension: (Keepa - Amazon Price Tracker) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejefaeioamebhekmfaclajddbpnnobje [2024-04-04]
Edge Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2024-04-15]
Edge Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2024-03-15]
Edge Extension: (Google Docs hors connexion) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-04]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-04]
Edge Extension: (Location Guard) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gobadfdlkomaelgflgjpciladbimmnpg [2024-03-03]
Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-04-09]
Edge Extension: (Edge relevant text changes) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
Edge Extension: (G Maps Extractor - Google Maps Scraper) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpfimicpogoghgcbhncoacofnohcbgci [2023-10-28]
Edge Extension: (Exif Viewer) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nfkenmdojopbcmndikjemfgdpgneolga [2024-03-03]
Edge Extension: (Gmail Checker - Read, Label & Manage) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nhjdhmbdahdidccpobobccagmmijndmp [2024-03-03]
Edge Extension: (uBlock Origin) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-04-09]
Edge Extension: (CyberGhost Cookie Cleaner) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2024-03-03]
Edge Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2024-03-03]
Edge Extension: (ChatGPT Writer - Write mail, messages with AI) - C:\Users\vistt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdnenlnelpdomajfejgapbdpmjkfpjkp [2024-04-18]
Edge Extension: (Google Sheets) - C:\Extension\6.2.9._0 [2023-12-13]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: jznz8wfd.default
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1 [2021-04-26]
FF Homepage: Mozilla\Firefox\Profiles\k72evm8f.default-release-1 -> www.google.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\adblockultimate@adblockultimate.net.xpi [2020-10-24]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\firefox@ghostery.com.xpi [2020-10-24]
FF Extension: (To Google Translate) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-10-24]
FF Extension: (uBlock Origin) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\uBlock0@raymondhill.net.xpi [2020-10-24]
FF Extension: (Flagfox) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2020-10-24]
FF Extension: (Bitwarden - Gestionnaire de mots de passe gratuit) - C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\k72evm8f.default-release-1\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2020-10-24]
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\jznz8wfd.default [2022-02-02]
FF ProfilePath: C:\Users\vistt\AppData\Roaming\Mozilla\Firefox\Profiles\eiuy3wzm.default-release-1677750795555 [2023-03-02]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-07-23] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [Pas de fichier]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin-x32: shipin7 -> C:\Program Files (x86)\hik\PCPlayer\npSP7WebVideoPlugin.dll [Pas de fichier]
FF Plugin-x32: shipin7safebox -> C:\Program Files (x86)\hik\PCPlayer\npSafePlugin.dll [Pas de fichier]
FF Plugin-x32: shipin7update -> C:\Program Files (x86)\hik\PCPlayer\npUpdataPlugin.dll [Pas de fichier]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default [2024-04-27]
CHR HomePage: Default -> hxxp://google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Extension: (uBlock Origin) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-04-05]
CHR Extension: (Free Vpn Chrome - free vpn proxy) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebldcmdjfokdlhlldbfgljogkjkadoag [2024-02-21]
CHR Extension: (Adobe Acrobat : outils de modif., de conversion et de signature de PDF) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-04-25]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2024-03-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-11]
CHR Extension: (Exif Viewer) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnpbnmjmgabkfemdehelbgdppngihhg [2023-08-29]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-16]
CHR Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2024-04-17]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2024-04-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-04-17]
CHR Extension: (AdBlocker Ultimate) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2024-02-15]
CHR Extension: (CyberGhost Cookie Cleaner) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbkgifljdgkhlmlmgbalmcknbhbggmei [2022-01-21]
CHR Extension: (ChatGPT Writer - Write mail, messages with AI) - C:\Users\vistt\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnenlnelpdomajfejgapbdpmjkfpjkp [2024-04-18]
CHR Profile: C:\Users\vistt\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-24]
CHR HKU\S-1-5-21-1850474398-3260066896-2527288250-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 Adobe Elements 2024 Update Service; C:\Program Files\Adobe\Elements 2024 Organizer\Adobe Elements 2024 Update Service.exe [374240 2024-04-10] (Adobe Inc. -> Adobe Systems Incorporated)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S4 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1191040 2021-06-29] (ASUSTeK Computer Inc. -> )
S4 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11762624 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
S4 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [11976128 2021-02-26] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S4 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\FileSyncHelper.exe [3507728 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
S4 LetsViewService; C:\Program Files (x86)\LetsView\LetsView\usbmmidd_v2\..\WXCastService.exe [411000 ] (Apowersoft Ltd -> )
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 MSI_Central_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [150840 2021-06-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S4 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S4 NahimicService; C:\Windows\system32\NahimicService.exe [1910296 2024-02-22] (SteelSeries France SASU -> Nahimic)
S4 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_defcd1ccab02e3ec\Display.NvContainer\NVDisplay.Container.exe [1275544 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.070.0407.0003\OneDriveUpdaterService.exe [3848208 2024-04-24] (Microsoft Corporation -> Microsoft Corporation)
S4 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-04-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 spacedeskService; C:\Windows\System32\spacedeskService.exe [4816336 2023-04-26] (Datronicsoft Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 Adobe Elements 2023 Update Service; "C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe" [X]
S2 AdobeUpdateService; pas de ImagePath
S2 ElevationService; C:\Program Files (x86)\Wondershare\MobileTrans (Français)\ElevationService.exe [X]
S2 WMI_Hook_Service; pas de ImagePath
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\Windows\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 brbtusb_54; C:\Windows\System32\DriverStore\FileRepository\brbtusb_54.inf_amd64_da938c315b14cd2c\brbtusb_54.sys [70560 2024-03-21] (WDKTestCert Asher Han,133238407001069367 -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
S3 cpuz149; C:\Windows\temp\cpuz149\cpuz149_x64.sys [44320 2024-04-21] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2020-07-15] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2021-11-09] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl22878eb5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E4D8465-D3F2-4436-9E89-44E65288942D}\MpKslDrv.sys [301336 2024-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [23040 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 NPF; C:\Program Files (x86)\hik\PCPlayer\npf64.sys [36600 2015-10-15] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [29576 2021-11-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 spacedeskDriverAndroidControl; C:\Windows\System32\drivers\spacedeskDriverAndroidControl.sys [49120 2023-02-20] (Datronicsoft Inc. -> )
S3 spacedeskDriverAudio; C:\Windows\System32\drivers\spacedeskDriverAudio.sys [127416 2023-04-26] (Datronicsoft Inc. -> datronicsoft Inc.)
R3 spacedeskDriverBus; C:\Windows\System32\drivers\spacedeskDriverBus.sys [107960 2023-04-04] (Datronicsoft Inc. -> datronicsoft Inc.)
S3 spacedeskKtmInputMouse; C:\Windows\System32\drivers\spacedeskKtmInputMouse.sys [42448 2022-11-04] (Datronicsoft Inc. -> )
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 Spyder5; C:\Windows\System32\drivers\dccmtr.sys [15360 2015-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\Windows\system32\DRIVERS\usbscan.sys [49664 2022-06-29] (Microsoft Corporation) [Fichier non signé]
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [118200 2020-03-18] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 WinRing0_1_2_0; C:\Users\vistt\AppData\Local\SidebarDiagnostics\app-3.5.5\LibreHardwareMonitorLib.sys [14544 2020-07-11] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 22:49 - 2024-04-27 22:49 - 000046285 _____ C:\Users\vistt\Desktop\FRST.txt
2024-04-27 22:27 - 2024-04-27 22:27 - 000003597 _____ C:\Users\vistt\Downloads\Windows PowerShell.zip
2024-04-27 22:27 - 2024-04-27 22:27 - 000000000 ____D C:\Users\vistt\Downloads\Windows PowerShell
2024-04-27 22:21 - 2024-04-27 22:21 - 000000000 ___HD C:\OneDriveTemp
2024-04-27 22:11 - 2024-04-27 22:34 - 137101312 _____ C:\Windows\system32\config\SOFTWARE
2024-04-27 21:58 - 2024-04-27 21:58 - 000000000 ____D C:\Users\vistt\AppData\Local\Microsoft_Corporation
2024-04-27 20:57 - 2024-04-27 20:58 - 000000000 ___HD C:\$WinREAgent
2024-04-27 20:57 - 2024-04-27 20:57 - 006281760 _____ (Intel) C:\Users\vistt\Downloads\Intel-Driver-and-Support-Assistant-Installer.exe
2024-04-27 19:48 - 2024-04-27 19:56 - 000000000 ___HD C:\$WINDOWS.~BT
2024-04-27 19:29 - 2024-04-27 19:38 - 000000000 ____D C:\Users\vistt\Desktop\SKP PLUGING
2024-04-27 19:18 - 2024-04-27 19:18 - 000004136 _____ C:\Users\vistt\Desktop\Préférences.dat
2024-04-27 19:10 - 2024-04-27 19:10 - 000254644 _____ C:\Users\vistt\Desktop\favoris_27_04_2024.html
2024-04-27 19:09 - 2024-04-27 19:09 - 000002281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-27 19:09 - 2024-04-27 19:09 - 000002240 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-04-27 19:08 - 2024-04-27 19:09 - 001376816 _____ (Google LLC) C:\Users\vistt\Downloads\ChromeSetup.exe
2024-04-27 18:35 - 2022-07-15 15:34 - 000010597 _____ C:\Users\vistt\Desktop\MaterialsSubstitutionTable.csv
2024-04-27 18:32 - 2024-04-27 19:56 - 000001908 _____ C:\Windows\diagwrn.xml
2024-04-27 18:32 - 2024-04-27 19:56 - 000001908 _____ C:\Windows\diagerr.xml
2024-04-27 17:56 - 2024-04-27 17:56 - 000000112 ___SH C:\bootTel.dat
2024-04-27 17:38 - 2024-04-27 17:38 - 000008652 _____ C:\Users\vistt\Desktop\Malwaere.txt
2024-04-27 17:31 - 2024-04-27 17:31 - 002586520 _____ (Malwarebytes) C:\Users\vistt\Downloads\MBSetup.exe
2024-04-27 17:19 - 2024-04-27 22:49 - 000000000 ____D C:\FRST
2024-04-27 17:19 - 2024-04-27 17:19 - 002394112 _____ (Farbar) C:\Users\vistt\Desktop\FRST64.exe
2024-04-27 15:29 - 2024-04-27 15:29 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-04-25 11:17 - 2024-04-25 11:17 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2024-04-25 11:17 - 2024-04-25 11:17 - 000046277 ____H C:\ProgramData\updates.ps1
2024-04-25 11:17 - 2024-04-25 11:17 - 000044084 _____ C:\Users\Public\updates.ps1
2024-04-25 11:17 - 2024-04-25 11:17 - 000003408 _____ C:\Windows\system32\Tasks\Check system
2024-04-21 18:17 - 2024-04-12 21:03 - 002031488 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 002031488 _____ C:\Windows\system32\vulkaninfo.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001578872 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001578872 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-04-21 18:17 - 2024-04-12 21:03 - 001488024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001445240 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001445240 _____ C:\Windows\system32\vulkan-1.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001295120 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001295120 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-04-21 18:17 - 2024-04-12 21:03 - 001226776 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 001046064 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 000670248 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-04-21 18:17 - 2024-04-12 21:00 - 000505368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 002174512 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001626664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001543304 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001199640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 001024664 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-04-21 18:17 - 2024-04-12 20:59 - 000842288 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-04-21 18:17 - 2024-04-12 20:58 - 000787584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-04-21 18:17 - 2024-04-12 20:58 - 000459928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-04-21 18:16 - 2024-04-12 20:58 - 016034968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-04-21 18:16 - 2024-04-12 20:58 - 012930200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-04-21 18:16 - 2024-04-12 20:58 - 003721352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 006780544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 005913752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 005772824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-04-21 18:16 - 2024-04-12 20:57 - 000853120 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-04-21 18:16 - 2024-04-12 04:05 - 000119466 _____ C:\Windows\system32\nvinfo.pb
2024-04-21 18:16 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-04-21 18:16 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2024-04-21 18:10 - 2024-04-21 18:10 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\IME
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\AppData\Roaming\com.logitech
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\AppData\Local\flutter_webview_windows
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Users\vistt\ai_overlay_tmp
2024-04-18 09:58 - 2024-04-18 09:58 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-13 22:29 - 2024-04-13 22:29 - 000000000 ____D C:\Users\vistt\AppData\Local\Trimble
2024-04-12 20:26 - 2024-04-12 20:26 - 000355454 _____ C:\Users\vistt\Desktop\Avis Appel - RESIDENCE LE MORPHEE - STOIANI Vitali - 12-04-2024.pdf
2024-04-10 12:17 - 2024-04-10 12:17 - 000034497 _____ C:\Users\vistt\Downloads\RBLP36833_3 34900389 Schéma Électrique.pdf
2024-04-10 12:16 - 2024-04-10 12:16 - 000167575 _____ C:\Users\vistt\Downloads\RBLP36833_3 34900389 Vue Éclatée.pdf
2024-04-10 06:41 - 2024-04-10 06:41 - 000001379 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elements Creations Notification 2024.lnk
2024-04-10 04:11 - 2024-04-10 04:12 - 000004127 _____ C:\ProgramData\StreamingMediaTechnologyLog.txt
2024-04-10 04:11 - 2024-04-10 04:11 - 000000000 ____D C:\Users\vistt\AppData\Local\PhotoshopElementsOrganizer
2024-04-10 04:06 - 2024-04-10 03:58 - 000002560 _____ C:\Users\Public\Documents\frsdk.cfg
2024-04-10 04:03 - 2024-04-10 04:03 - 000003662 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-vi.stt77@gmail.com
2024-04-10 03:59 - 2024-04-10 03:59 - 000001193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 2024.lnk
2024-04-08 21:37 - 2024-04-08 21:37 - 000163120 _____ C:\Users\vistt\Desktop\Avis_d_impot_2023_sur_les_revenus_2022.pdf
2024-04-08 09:07 - 2024-04-08 09:07 - 000003670 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-04-08 09:07 - 2024-02-22 09:58 - 000047240 _____ C:\Windows\system32\Drivers\semav6msr64.sys
2024-04-08 08:58 - 2024-04-08 08:58 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-08 08:57 - 2024-04-08 08:57 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-03-28 14:20 - 2024-03-28 14:20 - 000000000 ____D C:\ProgramData\dbg
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-27 22:39 - 2020-10-24 10:29 - 000760776 _____ C:\Windows\system32\perfh019.dat
2024-04-27 22:39 - 2020-10-24 10:29 - 000151484 _____ C:\Windows\system32\perfc019.dat
2024-04-27 22:39 - 2020-07-08 17:42 - 002683912 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-27 22:39 - 2019-12-07 16:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat
2024-04-27 22:39 - 2019-12-07 16:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat
2024-04-27 22:39 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-04-27 22:36 - 2021-12-15 14:05 - 000000000 ____D C:\Windows\SystemTemp
2024-04-27 22:36 - 2020-07-11 13:42 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-27 22:34 - 2023-10-06 17:17 - 000000000 ___RD C:\Users\vistt\iCloudDrive
2024-04-27 22:34 - 2022-08-11 08:01 - 000000000 ___RD C:\ONEDRIVE
2024-04-27 22:34 - 2020-07-08 17:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-27 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-27 22:34 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-04-27 22:32 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-04-27 22:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-04-27 22:11 - 2021-04-12 17:40 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-04-27 22:05 - 2020-07-11 00:35 - 000000000 ____D C:\ProgramData\SketchUp
2024-04-27 22:05 - 2020-07-11 00:35 - 000000000 ____D C:\Program Files\SketchUp
2024-04-27 21:50 - 2020-07-11 00:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-27 21:44 - 2021-04-07 20:13 - 000000000 ____D C:\Program Files (x86)\Intel
2024-04-27 21:44 - 2020-07-09 19:31 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-27 21:38 - 2020-07-09 18:16 - 000000000 ____D C:\Users\vistt\AppData\Local\Packages
2024-04-27 21:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-04-27 21:05 - 2020-07-29 18:41 - 000000000 ___HD C:\Users\vistt\AppData\Local\CrashDumps
2024-04-27 20:59 - 2021-03-22 01:20 - 000000000 ____D C:\Program Files\dotnet
2024-04-27 20:30 - 2021-10-05 17:34 - 000001349 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-04-27 20:30 - 2021-10-05 17:34 - 000000000 ____D C:\Users\vistt\AppData\Local\PCHealthCheck
2024-04-27 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2024-04-27 20:03 - 2020-07-09 19:32 - 000000000 ___HD C:\Users\vistt\AppData\Local\D3DSCache
2024-04-27 20:00 - 2020-07-08 17:37 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-27 19:56 - 2020-07-08 18:36 - 000000000 ____D C:\Windows\Panther
2024-04-27 19:09 - 2022-02-24 22:54 - 000000000 ____D C:\Program Files\Google
2024-04-27 19:09 - 2020-07-11 13:42 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-04-27 19:09 - 2020-07-11 13:42 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-04-27 18:25 - 2020-07-28 15:34 - 000000000 ____D C:\Users\vistt\AppData\Local\NVIDIA Corporation
2024-04-27 17:39 - 2021-03-23 11:01 - 000000000 ____D C:\ProgramData\Outbyte
2024-04-27 17:11 - 2021-12-05 00:13 - 000000000 ____D C:\Users\vistt\AppData\Local\LogiBolt
2024-04-27 16:58 - 2022-02-19 21:29 - 000000000 ____D C:\Users\vistt\AppData\Local\LogiOptionsPlus
2024-04-27 16:58 - 2021-11-17 22:18 - 000000000 ____D C:\Program Files (x86)\Canon
2024-04-27 16:58 - 2020-07-09 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-27 16:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-27 16:27 - 2020-07-08 17:37 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-27 15:29 - 2024-01-12 15:54 - 000000000 ____D C:\Windows\system32\zh-hant
2024-04-27 15:29 - 2024-01-12 15:54 - 000000000 ____D C:\Windows\system32\zh-hans
2024-04-27 15:29 - 2020-12-15 23:46 - 000002430 _____ C:\Users\vistt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk
2024-04-27 15:24 - 2020-07-08 17:37 - 000705288 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-04-27 15:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\F12
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2024-04-27 15:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-27 15:23 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2024-04-27 15:20 - 2020-07-08 17:40 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-27 08:38 - 2023-01-26 16:11 - 000000000 ____D C:\Users\vistt\Desktop\Elisabeth 2023
2024-04-27 07:40 - 2020-07-11 13:03 - 000000000 ___HD C:\Users\vistt\AppData\Local\Adobe
2024-04-25 19:28 - 2022-07-08 15:30 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\Excel
2024-04-25 14:27 - 2022-07-09 16:40 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Microsoft\Word
2024-04-25 10:17 - 2022-08-11 01:25 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-24 22:11 - 2022-08-11 08:16 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-24 22:11 - 2022-08-11 08:16 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-24 22:11 - 2022-08-11 07:59 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1850474398-3260066896-2527288250-1002
2024-04-24 22:10 - 2022-04-27 11:16 - 000002126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-04-24 07:10 - 2021-07-19 11:49 - 000000000 ____D C:\Users\vistt\AppData\Local\CyberGhost
2024-04-21 19:30 - 2021-04-07 20:13 - 000000000 ____D C:\Program Files\Intel
2024-04-21 18:19 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Local\NVIDIA
2024-04-21 18:16 - 2020-07-28 15:33 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 18:16 - 2020-07-28 15:33 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-04-21 18:16 - 2020-07-08 17:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-04-21 18:16 - 2020-07-08 17:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-04-20 20:06 - 2020-10-20 20:58 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-18 18:10 - 2021-03-05 09:09 - 000000000 ____D C:\ProgramData\ProfileBuilder3
2024-04-18 09:58 - 2021-12-05 00:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-18 09:58 - 2020-07-09 18:11 - 000000000 ___HD C:\Users\vistt
2024-04-16 10:21 - 2020-07-09 18:11 - 000000000 ___SD C:\Users\vistt\AppData\Roaming\Microsoft\Credentials
2024-04-13 22:29 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Roaming\SketchUp
2024-04-13 22:29 - 2020-07-11 00:38 - 000000000 ____D C:\Users\vistt\AppData\Local\SketchUp
2024-04-12 20:55 - 2022-02-02 15:55 - 006035256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-04-12 20:55 - 2020-09-03 09:37 - 006948656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-04-12 17:23 - 2020-07-22 19:07 - 000000000 ____D C:\Users\vistt\AppData\Roaming\transmutr
2024-04-10 13:19 - 2020-07-28 15:33 - 002900520 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-04-10 13:19 - 2020-07-28 15:33 - 002231336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-04-10 13:18 - 2020-07-28 15:33 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2024-04-10 12:50 - 2020-09-18 22:07 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2024-04-10 12:50 - 2020-09-18 22:07 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-04-10 09:48 - 2020-09-03 10:02 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2024-04-10 06:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-10 06:35 - 2023-10-28 00:15 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-10 06:35 - 2023-10-12 11:18 - 000000000 ___HD C:\adobeTemp
2024-04-10 06:23 - 2022-09-26 15:38 - 000000000 ____D C:\Users\vistt\AppData\Roaming\com.adobe.dunamis
2024-04-10 06:22 - 2020-07-08 17:50 - 000000000 ____D C:\Windows\system32\MRT
2024-04-10 06:20 - 2020-07-08 17:50 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 04:25 - 2020-07-08 17:37 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-10 04:01 - 2020-07-11 13:03 - 000000000 ____D C:\ProgramData\Adobe
2024-04-10 03:59 - 2020-07-09 18:16 - 000000000 ____D C:\Users\vistt\AppData\Roaming\Adobe
2024-04-10 03:58 - 2023-10-28 00:15 - 000000000 ____D C:\Program Files\Adobe
2024-04-09 12:14 - 2022-01-30 13:48 - 000000000 ____D C:\ProgramData\PhotoStitch
2024-04-08 09:21 - 2021-04-07 20:30 - 000003834 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2024-04-08 09:14 - 2020-09-13 12:02 - 000000000 ____D C:\ProgramData\Epic
2024-04-08 09:07 - 2021-04-07 20:13 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-04-08 09:07 - 2021-04-07 20:13 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-04-08 09:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-08 09:01 - 2023-12-12 23:34 - 000000000 ____D C:\Windows\InboxApps
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-08 09:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-06 01:13 - 2023-03-26 11:40 - 000000000 ____D C:\ProgramData\PlaceMaker
2024-04-04 22:00 - 2020-10-20 20:58 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 22:00 - 2020-10-20 20:58 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-01 23:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 11:17 - 2024-04-25 11:17 - 000333824 ____H (GitHub Community) C:\ProgramData\Microsoft.Win32.TaskScheduler.dll
2021-08-14 14:23 - 2020-06-27 10:45 - 019942960 _____ (OCCT - Ocbase - Adrien Mercier) C:\Program Files (x86)\OCCT6.0.0.exe
2024-02-01 18:20 - 2024-02-02 14:59 - 000000110 _____ () C:\Users\vistt\AppData\Roaming\Camdata.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000000408 _____ () C:\Users\vistt\AppData\Roaming\CamLayout.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000000408 _____ () C:\Users\vistt\AppData\Roaming\CamShapes.ini
2024-02-01 18:20 - 2024-02-02 14:59 - 000004549 _____ () C:\Users\vistt\AppData\Roaming\CamStudio.cfg
2020-09-28 20:18 - 2023-03-23 14:09 - 000000410 _____ () C:\Users\vistt\AppData\Local\oobelibMkey.log
2020-07-11 18:22 - 2021-08-11 00:11 - 000007598 ____H () C:\Users\vistt\AppData\Local\resmon.resmoncfg
==================== FCheck ================================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
FCheck: C:\Windows\SysWOW64\version_IObitDel.dll [2021-04-10] <==== ATTENTION (zéro octet Fichier/Dossier)
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================