Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2021 Exécuté par nicolas baldi (administrateur) sur NICOLAS (Acer Nitro AN517-51) (07-11-2021 11:17:15) Exécuté depuis C:\Users\U\Desktop Profils chargés: nicolas baldi Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.282 (X64) Langue: Allemand (Allemagne) -> Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3030.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\U\AppData\Local\FluxSoftware\Flux\flux.exe (Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <3> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <24> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <8> (GoTrustID Inc. -> GOTrustID Inc.) C:\Program Files\GoTrust ID Plugin\Bridge_Service.exe (GoTrustID Inc. -> GOTrustID Inc.) C:\Program Files\GoTrust ID Plugin\GoTrust ID Plugin\GTFidoService.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxext.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.44\msedgewebview2.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.1.6.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (nordvpn s.a. -> ) C:\Users\U\AppData\Local\Programs\nordpass\resources\nordpass-background-app.exe (nordvpn s.a. -> NordPass Team) C:\Users\U\AppData\Local\Programs\nordpass\NordPass.exe <5> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_a88f3791f9fa8757\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (Rivet Networks LLC) C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.1.2925.0_x64__rh07ty8m5nkag\KillerControlCenter_v1\KillerControlCenter.exe (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSysSvc64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe [1464728 2019-01-31] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [ctfmon] => C:\Windows\System32\ctfmon.exe [28672 2021-06-05] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [f.lux] => C:\Users\U\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [Gaijin.Net Updater] => C:\Users\U\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [electron.app.NordPass] => C:\Users\U\AppData\Local\Programs\nordpass\NordPass.exe [136202208 2021-10-19] (nordvpn s.a. -> NordPass Team) HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\...\Run: [com.squirrel.slack.slack] => C:\Users\U\AppData\Local\slack\slack.exe [309568 2021-10-26] (Slack Technologies, Inc. -> Slack Technologies Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-02] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\95.1.31.88\Installer\chrmstp.exe [2021-10-31] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {014D9ADD-4E78-4D53-B880-8F8257823B5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {048F9E88-B07F-434F-8ADC-E5D57C149AEA} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated) Task: {0D3ABF98-41E3-4382-80DA-1BFEC742AB3E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {1B51567D-4C57-4858-8DAA-46F29DFB8898} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated) Task: {23DE877E-C0BC-4B93-ADB2-C904500D142C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {244B1B54-B30A-4343-98CD-597B4ACD905A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-19] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {25F51E5A-99ED-4614-BD89-FD67B810B9CE} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2C2E8A2E-A355-47C9-AC11-DF87F3D87010} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {32570F47-1602-4231-B9F5-9613D176A4F9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {35AABA69-D8C2-4F5A-A053-EFF80E244C85} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {37C97EE8-0B4F-41F2-A6D6-EA6F60E8535D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {38AF548B-1D67-44ED-8DA2-EA43541223BF} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-09] (Acer Incorporated -> Acer Incorporated) Task: {392E04EE-F360-40B5-BC14-47649D1E042F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6241704 2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {3AD774F4-F907-4DDE-84F9-C94917E36645} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> ) Task: {3D90A679-4BC7-43AF-A8E3-C2D9711AA045} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3E0D4023-FFA5-4D45-A9E3-49978406C1A9} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> ) Task: {401D182C-E1D5-4772-B34B-D170F073D31B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {488CFD3F-99CD-4E66-88B1-5A769B5503BE} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> ) Task: {50F7109A-ED67-4DDA-B826-C68C0283FF12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-24] (Google LLC -> Google LLC) Task: {590459FD-22D8-4AB6-92B5-E0041E981899} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated) Task: {5A46F37B-3425-4B9C-B581-B38A0B10FBC3} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> ) Task: {6305AFE6-974D-4BAE-B11F-97331B4042FD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6241704 2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {63CF5DF6-A996-4845-B5FC-C089C2638006} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {66AAF3BF-5F1E-40AE-BB2A-6A984D922735} - System32\Tasks\Adobe Acrobat DC Auto Update Scheduler => C:\Program Files (x86)\Common Files\Adobe Acrobat DC\Update\acroupd.exe [99192 2020-03-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated) [Fichier non signé] Task: {6B4F0233-90D9-4115-9117-DF338D8DEDB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6D634EC8-F135-4E4E-A2AC-4F14CB678095} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3292088849-3346179200-1007464640-500 => C:\Users\U\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {7C42A6E1-F4ED-4D31-9640-DD3806C8FE08} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {A07DBB20-08CF-40F1-AA9C-7355D1BED0F3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B502B5DD-A261-4D15-A655-2EEB5FF7E43C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108928 2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {B989F5D3-0408-4EEF-B0D6-7D8B851F0B65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-24] (Google LLC -> Google LLC) Task: {C2440FCC-480E-4EE2-95F2-7AEC908CA035} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C3184840-95BF-4A11-902D-AFB622C71CD1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C8528008-ACA2-43C9-B321-DD402959D587} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [601904 2019-07-19] (Acer Incorporated -> Acer Incorporated) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe Task: {D90F3EE4-119F-4671-AA3D-0E1FDE6B674F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {DBD48761-1515-4F40-A17A-CA411F0773E6} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-09] (Acer Incorporated -> Acer Incorporated) Task: {F1F749B5-E600-4EA0-B933-8D1D16EC0322} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [65064 2020-03-16] (Acer Incorporated -> Acer) Task: {FC7ED6CB-52AD-43BF-94C6-4DFA1BB5F19B} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-19] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {FFA8B970-ADCA-4A2F-B66C-56447592A1B1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings) AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ AutoConfigURL: [{E0942044-4096-4B44-B96C-108D05EEC2F2}] => hxxp://127.0.0.1:86/ AutoConfigURL: [{F2BA27DB-1E87-435A-B303-B0CD9BFB3200}] => hxxp://127.0.0.1:86/ Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{0c1600f6-7e82-4d52-ac22-4aa639511b3a}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{12485a62-ee95-4e59-8ad2-5e232360513c}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{5f892a23-35ba-4525-b41d-ada088fed827}: [DhcpNameServer] 192.168.247.64 Tcpip\..\Interfaces\{71dbb1c5-1dac-41cc-863f-f4971e140f08}: [DhcpNameServer] 10.61.12.1 Tcpip\..\Interfaces\{8dc0974e-c036-4965-89f0-af53252fe59c}: [DhcpNameServer] 192.168.1.254 ManualProxies: 0hxxp://127.0.0.1:86/ HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge Profile: C:\Users\U\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-29] FireFox: ======== FF DefaultProfile: ig06a86c.default FF ProfilePath: C:\Users\U\AppData\Roaming\Mozilla\Firefox\Profiles\ig06a86c.default [2021-10-07] FF ProfilePath: C:\Users\U\AppData\Roaming\Mozilla\Firefox\Profiles\ew5gumib.default-release [2021-10-11] FF Extension: (Amazon Assistant for Firefox) - C:\Users\U\AppData\Roaming\Mozilla\Firefox\Profiles\ew5gumib.default-release\Extensions\abb-acer@amazon.com.xpi [2020-08-24] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json] FF Extension: (Deutsch (DE) Language Pack) - C:\Users\U\AppData\Roaming\Mozilla\Firefox\Profiles\ew5gumib.default-release\Extensions\langpack-de@firefox.mozilla.org.xpi [2020-08-24] FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\U\AppData\Local\Google\Chrome\User Data\Default [2021-11-07] CHR Notifications: Default -> hxxps://app.asana.com; hxxps://app.slack.com; hxxps://brainychoose-captcha.top; hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://meet.google.com; hxxps://messages.google.com; hxxps://www.binance.com CHR HomePage: Default -> hxxps://google.com/ CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPBC8D0713-F241-4A5D-8250-A8168C3F734A&SSPV=","hxxp://www.google.com" CHR Extension: (Google Traduction) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-10-11] CHR Extension: (ColorZilla) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2021-10-11] CHR Extension: (SEO META in 1 CLICK) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2021-10-11] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-10-11] CHR Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooolghllnmhmmndgjiamiiodkpenpbb [2021-10-21] CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2021-10-26] CHR Extension: (Wappalyzer) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2021-11-03] CHR Extension: (WhatFont) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2021-10-11] CHR Extension: (Loom for Chrome) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2021-10-19] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-10-11] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\U\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-11] CHR Profile: C:\Users\U\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-07] CHR HKU\S-1-5-21-3292088849-3346179200-1007464640-1006\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] Brave: ======= BRA Profile: C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-10-07] BRA Notifications: Default -> hxxps://app.asana.com; hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://mail.yahoo.com; hxxps://meet.google.com BRA DefaultSearchKeyword: Default -> :g BRA Extension: (Google Traduction) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-10-04] BRA Extension: (ColorZilla) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2021-02-19] BRA Extension: (SEO META in 1 CLICK) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2021-02-19] BRA Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2021-08-16] BRA Extension: (Wappalyzer) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2021-10-04] BRA Extension: (WhatFont) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2021-02-19] BRA Extension: (Loom for Chrome) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2021-10-04] BRA Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-02-19] BRA Extension: (Brave Local Data Files Updater) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-10-04] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-10-04] BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-10-04] BRA Extension: (Brave Ads Resources) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\hbejpnagkgeeohiojniljejpdpojmfdp [2021-05-18] BRA Extension: (Brave Ads Resources) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\ijgkfgmfiinppefbonemjidmkhgbonei [2021-10-04] BRA Extension: (Brave SpeedReader Updater) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-04] BRA Extension: (Brave NTP sponsored images) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-10-04] BRA Extension: (Crypto Wallets) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2021-04-20] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\U\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-10-04] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3833088 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3603200 2021-09-07] (Adobe Inc. -> Adobe Systems, Incorporated) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-19] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162384 2021-02-19] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-10-12] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 GoTrust ID Plugin; C:\Program Files\GoTrust ID Plugin\GoTrust ID Plugin\GTFidoService.exe [17408 2019-08-02] (GoTrustID Inc. -> GOTrustID Inc.) R2 GoTrustID Service; C:\Program Files\GoTrust ID Plugin\Bridge_Service.exe [246272 2019-08-02] (GoTrustID Inc. -> GOTrustID Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-08-23] (HP Inc. -> HP Inc.) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2616424 2019-06-18] (Rivet Networks LLC -> Rivet Networks) R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [820016 2019-07-19] (Acer Incorporated -> Acer Incorporated) S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated) S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72808 2019-06-18] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72816 2019-06-18] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_a88f3791f9fa8757\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_a88f3791f9fa8757\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [31896 2021-08-08] (Acer Incorporated -> Acer Incorporated) R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-07-30] (Google LLC -> Google, Inc.) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [162432 2019-06-18] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 NANMp50; C:\WINDOWS\System32\Drivers\NANMp50.sys [46776 2010-03-25] (PRINTING COMMUNICATIONS ASSOCIATES, INC -> Printing Communications Assoc., Inc. (PCAUSA)) S3 NANSp50; C:\WINDOWS\System32\Drivers\NANSp50.sys [45752 2010-03-25] (PRINTING COMMUNICATIONS ASSOCIATES, INC -> Printing Communications Assoc., Inc. (PCAUSA)) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-07 11:17 - 2021-11-07 11:17 - 000034333 _____ C:\Users\U\Desktop\FRST.txt 2021-11-07 11:17 - 2021-11-07 11:17 - 000000000 ____D C:\Users\U\Desktop\FRST-OlderVersion 2021-10-27 11:04 - 2021-10-21 18:45 - 000656512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-10-27 11:04 - 2021-10-21 18:43 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-10-27 11:03 - 2021-10-21 18:49 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-10-27 11:03 - 2021-10-21 18:49 - 001464952 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 001450232 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-10-27 11:03 - 2021-10-21 18:49 - 001450232 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-10-27 11:03 - 2021-10-21 18:49 - 001206384 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 001111256 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 001111256 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 000965336 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-10-27 11:03 - 2021-10-21 18:49 - 000965336 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 001523336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 001172608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 000800368 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 000707728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-10-27 11:03 - 2021-10-21 18:45 - 000676480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 000635000 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-10-27 11:03 - 2021-10-21 18:45 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 008724080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 007843984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 004938896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 002850416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 002114688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 001597584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 000981112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 000792208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-10-27 11:03 - 2021-10-21 18:44 - 000452216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-10-27 11:03 - 2021-10-21 18:43 - 000849016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-10-27 11:03 - 2021-10-21 18:39 - 006430824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-10-27 11:03 - 2021-10-21 01:48 - 000085748 _____ C:\WINDOWS\system32\nvinfo.pb 2021-10-26 13:30 - 2021-10-26 12:37 - 000000000 ____D C:\Windows.old 2021-10-26 13:29 - 2021-10-26 13:30 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-10-26 13:27 - 2021-10-26 13:28 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-10-26 13:27 - 2021-10-26 13:27 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-10-26 13:23 - 2021-10-26 13:23 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr 2021-10-26 13:23 - 2021-10-26 13:23 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe 2021-10-26 13:23 - 2021-10-26 13:23 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json 2021-10-26 13:23 - 2021-10-26 13:23 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll 2021-10-26 13:23 - 2021-10-26 13:23 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList 2021-10-26 13:23 - 2021-10-26 13:23 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList 2021-10-26 13:23 - 2021-10-26 13:23 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList 2021-10-26 13:23 - 2021-10-26 13:23 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost 2021-10-26 13:23 - 2021-10-26 13:23 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList 2021-10-26 13:23 - 2021-10-26 13:23 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost 2021-10-26 13:23 - 2021-10-26 13:23 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml 2021-10-26 13:23 - 2021-10-26 13:23 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2021-10-26 13:22 - 2021-10-26 13:22 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll 2021-10-26 13:22 - 2021-10-26 13:22 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-10-26 13:22 - 2021-10-26 13:22 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll 2021-10-26 13:22 - 2021-10-26 13:22 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-10-26 13:22 - 2021-10-26 13:22 - 000041594 _____ C:\WINDOWS\system32\ctac.json 2021-10-26 13:21 - 2021-10-26 13:21 - 000014610 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-10-26 13:21 - 2021-10-26 13:21 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll 2021-10-26 13:20 - 2021-10-26 13:20 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll 2021-10-26 13:20 - 2021-10-26 13:20 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2021-10-26 13:20 - 2021-10-26 13:20 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll 2021-10-26 13:20 - 2021-10-26 13:20 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe 2021-10-26 13:20 - 2021-10-26 13:20 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-10-26 13:20 - 2021-10-26 13:20 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll 2021-10-26 13:17 - 2021-11-07 11:01 - 000807760 _____ C:\WINDOWS\system32\perfh00C.dat 2021-10-26 13:17 - 2021-11-07 11:01 - 000156382 _____ C:\WINDOWS\system32\perfc00C.dat 2021-10-26 13:17 - 2021-10-26 13:17 - 000351124 _____ C:\WINDOWS\system32\perfi00C.dat 2021-10-26 13:17 - 2021-10-26 13:17 - 000040694 _____ C:\WINDOWS\system32\perfd00C.dat 2021-10-26 13:17 - 2021-10-26 13:17 - 000000000 ___HD C:\$WinREAgent 2021-10-26 13:17 - 2021-10-26 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\fr 2021-10-26 13:17 - 2021-10-26 13:17 - 000000000 ____D C:\WINDOWS\system32\fr 2021-10-26 13:14 - 2021-10-26 13:17 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-10-26 13:14 - 2021-10-26 13:14 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-10-26 13:14 - 2021-10-26 13:14 - 000000000 ____D C:\Program Files\MSBuild 2021-10-26 13:14 - 2021-10-26 13:14 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-10-26 13:14 - 2021-10-26 13:14 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-10-26 12:40 - 2021-11-07 11:01 - 002702546 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-10-26 12:39 - 2021-10-26 12:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-10-26 12:39 - 2021-10-26 12:39 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-10-26 12:37 - 2021-11-07 11:02 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{FC3A193D-A195-41EC-B43A-4B31D20E3DD8} 2021-10-26 12:37 - 2021-11-07 10:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-10-26 12:37 - 2021-10-26 12:37 - 000017148 _____ C:\WINDOWS\diagwrn.xml 2021-10-26 12:37 - 2021-10-26 12:37 - 000017148 _____ C:\WINDOWS\diagerr.xml 2021-10-26 12:37 - 2021-10-26 12:37 - 000004302 _____ C:\WINDOWS\system32\Tasks\Software Update Application 2021-10-26 12:37 - 2021-10-26 12:37 - 000003852 _____ C:\WINDOWS\system32\Tasks\ACCAgent 2021-10-26 12:37 - 2021-10-26 12:37 - 000003692 _____ C:\WINDOWS\system32\Tasks\AcerCMUpdateTask2.1.16258 2021-10-26 12:37 - 2021-10-26 12:37 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-26 12:37 - 2021-10-26 12:37 - 000003536 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2021-10-26 12:37 - 2021-10-26 12:37 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-26 12:37 - 2021-10-26 12:37 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-10-26 12:37 - 2021-10-26 12:37 - 000003312 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2021-10-26 12:37 - 2021-10-26 12:37 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-10-26 12:37 - 2021-10-26 12:37 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3292088849-3346179200-1007464640-500 2021-10-26 12:37 - 2021-10-26 12:37 - 000002782 _____ C:\WINDOWS\system32\Tasks\UbtFrameworkService 2021-10-26 12:37 - 2021-10-26 12:37 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-26 12:37 - 2021-10-26 12:37 - 000002730 _____ C:\WINDOWS\system32\Tasks\ACC 2021-10-26 12:37 - 2021-10-26 12:37 - 000002712 _____ C:\WINDOWS\system32\Tasks\UEIPInvitation 2021-10-26 12:37 - 2021-10-26 12:37 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2021-10-26 12:37 - 2021-10-26 12:37 - 000002556 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat DC Auto Update Scheduler 2021-10-26 12:37 - 2021-10-26 12:37 - 000002328 _____ C:\WINDOWS\system32\Tasks\ACCBackgroundApplication 2021-10-26 12:37 - 2021-10-26 12:37 - 000002296 _____ C:\WINDOWS\system32\Tasks\Power Button 2021-10-26 12:37 - 2021-10-26 12:37 - 000002222 _____ C:\WINDOWS\system32\Tasks\Quick Access 2021-10-26 12:37 - 2021-10-26 12:37 - 000002174 _____ C:\WINDOWS\system32\Tasks\NitroSense 2021-10-26 12:37 - 2021-10-26 12:37 - 000000020 ___SH C:\Users\U\ntuser.ini 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Modèles 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Mes documents 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\ProgramData\Modèles 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\ProgramData\Bureau 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 _SHDL C:\Program Files\Fichiers communs 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Oem 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2021-10-26 12:37 - 2021-10-26 12:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2021-10-26 12:32 - 2021-10-26 12:37 - 000000000 ____D C:\Users\U 2021-10-26 12:32 - 2021-10-26 12:34 - 000000000 ____D C:\Users\Administrator 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Voisinage réseau 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Voisinage d'impression 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Modèles 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Mes documents 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Menu Démarrer 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Documents\Mes vidéos 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Documents\Mes images 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\Documents\Ma musique 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\U\AppData\Local\Historique 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Voisinage réseau 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Voisinage d'impression 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Modèles 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Mes documents 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Menu Démarrer 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Mes vidéos 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Mes images 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\Documents\Ma musique 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-10-26 12:32 - 2021-10-26 12:32 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Historique 2021-10-26 12:32 - 2021-06-05 13:04 - 000001281 _____ C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-10-26 12:32 - 2021-06-05 13:04 - 000001281 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-10-26 12:32 - 2021-06-05 13:04 - 000000407 _____ C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-10-26 12:32 - 2021-06-05 13:04 - 000000407 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-10-26 12:31 - 2021-11-07 10:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-10-26 12:31 - 2021-10-26 18:16 - 000537608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-10-26 08:56 - 2021-11-06 20:19 - 000000000 ___DC C:\WINDOWS\Panther 2021-10-21 18:18 - 2021-10-21 18:18 - 000000279 _____ C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Corbeille.lnk 2021-10-21 09:45 - 2021-11-05 17:42 - 000000000 ____D C:\Users\U\AppData\Roaming\Slack 2021-10-21 09:45 - 2021-10-26 12:32 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc 2021-10-21 09:44 - 2021-10-26 10:17 - 000000000 ____D C:\Users\U\AppData\Local\slack 2021-10-17 18:28 - 2021-10-17 18:28 - 001648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe 2021-10-17 18:28 - 2021-10-17 18:28 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2021-10-17 18:28 - 2021-10-17 18:28 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2021-10-14 10:21 - 2021-10-26 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hubstaff 2021-10-13 14:59 - 2021-10-07 01:58 - 000125568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2021-10-13 14:59 - 2021-10-07 01:58 - 000067464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2021-10-13 14:59 - 2021-10-07 01:58 - 000038016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2021-10-13 14:56 - 2021-10-21 18:39 - 007578560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-10-11 11:52 - 2021-10-11 11:52 - 000000000 ____D C:\KVRT2020_Data 2021-10-11 11:08 - 2021-10-11 11:09 - 000005695 _____ C:\Users\U\Desktop\Fixlog.txt 2021-10-08 16:39 - 2021-10-08 16:39 - 000000000 ____D C:\Users\U\AppData\Local\Microsoft_Corporation ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-07 11:17 - 2021-10-07 13:39 - 002312192 _____ (Farbar) C:\Users\U\Desktop\FRST64.exe 2021-11-07 11:17 - 2021-07-02 12:30 - 000000000 ____D C:\FRST 2021-11-07 11:10 - 2021-10-05 08:31 - 000000000 ____D C:\Users\U\AppData\Roaming\NordPass 2021-11-07 11:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-07 11:05 - 2021-04-19 18:21 - 000179587 _____ C:\Users\U\Downloads\Codes Nico.xlsx 2021-11-07 11:01 - 2021-06-05 18:53 - 000745984 _____ C:\WINDOWS\system32\perfh007.dat 2021-11-07 11:01 - 2021-06-05 18:53 - 000156206 _____ C:\WINDOWS\system32\perfc007.dat 2021-11-07 11:01 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2021-11-07 10:58 - 2020-07-30 12:42 - 000000000 ____D C:\ProgramData\NVIDIA 2021-11-07 10:56 - 2020-08-24 18:21 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-07 10:55 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-07 10:55 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-07 10:55 - 2020-08-24 22:36 - 000000000 ___RD C:\Users\U\Google Drive 2021-11-07 10:54 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-11-07 10:54 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-07 10:54 - 2020-08-24 17:41 - 000012288 ___SH C:\DumpStack.log.tmp 2021-11-06 22:42 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-11-06 22:41 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR 2021-11-06 21:27 - 2020-08-27 09:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-11-06 20:09 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-05 19:13 - 2020-09-02 08:48 - 000000000 ____D C:\Users\U\AppData\Roaming\vlc 2021-11-05 18:27 - 2020-09-28 08:53 - 000000000 ____D C:\Users\U\AppData\Local\WarThunder 2021-11-05 17:42 - 2021-10-05 08:51 - 000000000 ____D C:\Users\U\AppData\Roaming\Hubstaff 2021-11-05 13:59 - 2020-08-24 15:47 - 000000000 ____D C:\Users\U\AppData\Local\CrashDumps 2021-11-03 09:06 - 2020-07-30 12:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-11-02 09:04 - 2020-08-24 18:22 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-01 20:04 - 2020-08-25 14:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-11-01 06:14 - 2020-08-25 07:37 - 000000000 ____D C:\Users\U\AppData\Local\D3DSCache 2021-10-31 19:44 - 2020-08-27 16:08 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-31 19:43 - 2021-02-19 12:29 - 000002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2021-10-29 12:41 - 2020-08-24 10:20 - 000000000 ____D C:\Users\U\AppData\Local\Packages 2021-10-27 15:27 - 2021-03-02 13:35 - 000000000 ____D C:\Users\U\AppData\Roaming\FileZilla 2021-10-27 11:22 - 2020-08-28 14:46 - 000000000 ____D C:\Users\U\AppData\Local\NVIDIA 2021-10-27 11:13 - 2021-09-09 09:57 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lifesize 2021-10-27 11:13 - 2021-09-09 09:57 - 000000000 ____D C:\Users\U\AppData\Roaming\Lifesize 2021-10-27 11:13 - 2021-09-09 09:57 - 000000000 ____D C:\Users\U\AppData\Local\lifesize_app 2021-10-27 08:47 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-10-26 18:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-10-26 18:16 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing 2021-10-26 13:30 - 2021-09-22 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NutsAboutNets 2021-10-26 13:30 - 2021-06-05 13:14 - 000000000 ____D C:\WINDOWS\Setup 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 __RHD C:\Users\Public\Libraries 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-10-26 13:30 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate 2021-10-26 13:30 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-10-26 13:30 - 2021-05-26 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2021-10-26 13:30 - 2021-02-12 08:47 - 000000000 ____D C:\WINDOWS\system32\DebugLog 2021-10-26 13:30 - 2020-10-12 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2021-10-26 13:30 - 2020-09-21 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Frog SEO Spider 2021-10-26 13:30 - 2020-08-25 14:30 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2021-10-26 13:30 - 2020-08-24 22:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-10-26 13:30 - 2020-08-24 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-10-26 13:30 - 2020-08-24 17:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer 2021-10-26 13:30 - 2020-07-30 13:19 - 000000000 ____D C:\WINDOWS\oem 2021-10-26 13:30 - 2020-07-30 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2021-10-26 13:30 - 2020-07-30 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2021-10-26 13:30 - 2020-07-30 12:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2021-10-26 13:30 - 2020-07-30 12:09 - 000000000 ____D C:\Program Files\Intel 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ta-lk 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ta-in 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\si-lk 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\my-mm 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders 2021-10-26 13:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\am-et 2021-10-26 13:30 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-10-26 13:30 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-10-26 13:29 - 2020-08-29 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2021-10-26 13:27 - 2021-06-05 19:00 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning 2021-10-26 13:27 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System 2021-10-26 13:26 - 2021-06-05 19:00 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-10-26 13:26 - 2021-06-05 19:00 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-10-26 13:18 - 2021-06-05 19:00 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\system32\winrm 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\system32\slmgr 2021-10-26 13:18 - 2021-06-05 18:52 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\dsc 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-10-26 13:18 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Com 2021-10-26 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\IME 2021-10-26 12:54 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-10-26 12:54 - 2020-08-24 10:26 - 000000000 ____D C:\ProgramData\Packages 2021-10-26 12:38 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-10-26 12:38 - 2020-07-30 12:06 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-10-26 12:37 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT 2021-10-26 12:37 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender 2021-10-26 12:37 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-10-26 12:33 - 2021-08-31 10:35 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-10-26 12:33 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-10-26 12:33 - 2021-04-28 10:46 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2021-10-26 12:33 - 2021-03-02 13:35 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2021-10-26 12:33 - 2020-10-30 19:09 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord 2021-10-26 12:33 - 2020-09-28 08:53 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2021-10-26 12:33 - 2020-08-24 18:26 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-10-26 12:32 - 2021-10-05 08:31 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NordSec 2021-10-26 12:32 - 2021-02-16 21:02 - 000000000 ____D C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-10-26 12:32 - 2021-02-12 08:44 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages 2021-10-26 12:31 - 2021-09-22 13:48 - 000000000 ____D C:\WINDOWS\Firmware 2021-10-26 12:31 - 2020-07-30 12:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-10-26 10:17 - 2020-09-10 10:40 - 000000000 ____D C:\Users\U\AppData\Local\SquirrelTemp 2021-10-25 16:16 - 2020-09-02 09:59 - 000001456 _____ C:\Users\U\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2021-10-21 19:58 - 2021-01-28 16:04 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-10-20 16:20 - 2020-09-29 08:00 - 000000000 ____D C:\Users\U\.ScreamingFrogSEOSpider 2021-10-19 13:18 - 2021-10-05 08:31 - 000000000 ____D C:\Users\U\AppData\Local\nordpass-updater 2021-10-14 21:28 - 2020-10-13 09:28 - 1456452247 _____ C:\WINDOWS\MEMORY.DMP 2021-10-14 10:21 - 2021-10-05 08:50 - 000000000 ____D C:\Program Files\Hubstaff 2021-10-14 10:03 - 2020-08-24 15:20 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-10-14 10:01 - 2020-08-24 15:20 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-10-11 12:53 - 2020-08-24 10:20 - 000000000 ____D C:\Users\U\AppData\Local\ConnectedDevicesPlatform 2021-10-11 12:48 - 2020-09-10 10:41 - 000002352 _____ C:\Users\U\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-10-10 19:59 - 2021-01-25 21:07 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Fichiers à la racine de certains dossiers ======== 2020-09-02 09:59 - 2021-10-25 16:16 - 000001456 _____ () C:\Users\U\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2020-08-28 08:11 - 2020-08-28 08:11 - 000000000 _____ () C:\Users\U\AppData\Local\oobelibMkey.log 2020-11-01 18:20 - 2020-11-01 18:20 - 000007601 _____ () C:\Users\U\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================