Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 04-06-2022 01
Exécuté par ULTRAPC (administrateur) sur DESKTOP-SRB8SS2 (Micro-Star International Co., Ltd. MS-7C51) (06-06-2022 18:58:31)
Exécuté depuis C:\Users\ULTRAPC\Downloads
Profils chargés: ULTRAPC
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1706 (X64) Langue: Français (Canada)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(D:\Epic games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Epic games\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Epic games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <44>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Shanghai Yitu Information Technology Co., Ltd. -> ) D:\iVCam\iVCam.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.65.8001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\ULTRAPC\AppData\Local\Microsoft\OneDrive\22.099.0508.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.5052.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.5052.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3069768 2022-04-08] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-1752012005-546722920-1809189200-1001\...\Run: [EpicGamesLauncher] => D:\Epic games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32637904 2022-06-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1752012005-546722920-1809189200-1001\...\Run: [MicrosoftEdgeAutoLaunch_3C1779211412E81CBAF57078A110419C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3595192 2022-06-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1752012005-546722920-1809189200-1001\...\Run: [iVCam] => D:\iVCam\iVCam.exe [4158344 2022-02-25] (Shanghai Yitu Information Technology Co., Ltd. -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-06-01] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {4127AF2E-5F36-4212-AE1E-AE1BFEF29BB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B2891DC-845F-4B1C-896F-C839BA3D6A2C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4B6F4AE0-2DC5-41A1-BF4D-1B24D3149FAB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4CF3D5EF-873A-4FBB-9109-398D4295BA17} - System32\Tasks\GoogleUpdateTaskMachineCore{B28DAB67-0EB5-431E-97A8-263E9A3FA057} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-21] (Google LLC -> Google LLC)
Task: {73F599AC-EA5B-4534-96CB-C6DF08A22C5B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7BA29083-99B2-441A-A67A-D27263AF7D20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {85B49E75-F8F1-4F45-A065-5163DF497257} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8E902029-1E53-451F-8C39-F758D16A4151} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {95A6EC9B-385E-46AD-B9F8-C09EEF565802} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9BF432FE-F361-4C8C-A7B1-0313A8DDD375} - System32\Tasks\Opera scheduled Autoupdate 1654380166 => C:\Users\ULTRAPC\AppData\Local\Programs\Opera\launcher.exe [2473216 2022-06-02] (Opera Software AS -> Opera Software)
Task: {ADD94B0D-ECA3-435E-B6D0-6F9A99600838} - System32\Tasks\GoogleUpdateTaskMachineUA{5E471C9F-D8C9-4890-8013-DFF8CD5EA3B9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-21] (Google LLC -> Google LLC)
Task: {BF8CC2B6-05BE-496D-A5DF-B64C2A4546EA} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {CA2E0529-3514-498F-8E5F-0EDEC473EE38} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D1A59F4F-F40C-4684-92A7-DD79861AEBBD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EBE9B765-6A5E-4622-BA6E-58FF3C884382} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {ED407943-9A4B-4DE8-BFD1-3B2C27014015} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF1C87BB-BF10-4E78-BB71-A550A02D82F5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5e785a36-147b-468e-b258-349aa7ed34e0}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-06]
Edge HomePage: Default -> hxxps://www.youtube.com/?gl=MA&hl=fr
Edge Extension: (Kaspersky Password Manager) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2022-03-24]
Edge Extension: (EditThisCookie) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2022-03-24]
Edge Extension: (Shimeji Browser Extension) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2022-03-24]
Edge Extension: (MEGA) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jemjknhgpjaacbghpdhgchbgccbpkkgf [2022-06-05]
Edge Extension: (Substital: Ajoutez des sous-titres aux vidéos) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kkkbiiikppgjdiebcabomlbidfodipjg [2022-03-24]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ULTRAPC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-06-04]

Chrome: 
=======
CHR Profile: C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default [2022-06-06]
CHR Notifications: Default -> hxxps://forums.commentcamarche.net
CHR HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
CHR DefaultSearchURL: Default -> hxxps://poshukach.com/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
CHR DefaultSearchKeyword: Default -> poshukach engin search
CHR DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
CHR Extension: (MEGA) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2022-06-04]
CHR Extension: (Kaspersky Password Manager) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2022-03-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-14]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-05-16]
CHR Extension: (Shimeji Browser Extension) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2022-03-21]
CHR Extension: (Substital: Ajoutez des sous-titres aux vidéos) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkkbiiikppgjdiebcabomlbidfodipjg [2022-03-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ULTRAPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-21]

Opera: 
=======
OPR Profile: C:\Users\ULTRAPC\AppData\Roaming\Opera Software\Opera Stable [2022-06-06]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\ULTRAPC\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-06-04]
OPR Extension: (Opera Crypto Wallet) - C:\Users\ULTRAPC\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-06-04]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\ULTRAPC\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-06-04]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-30] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-03-21] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 Rockstar Service; D:\RockstarService.exe [2584528 2022-04-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10569840 2022-04-08] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X]
S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2022-06-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e2esoft_ivcamaudio_simple; C:\Windows\system32\drivers\iVCamAud.sys [255464 2020-11-04] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R3 iVCam; C:\Windows\system32\DRIVERS\iVCam.sys [1092552 2021-12-03] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
S3 MpKslce06b286; C:\Windows\system32\MpEngineStore\MpKslDrv.sys [137464 2022-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8571048 2022-04-08] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-06-06 18:58 - 2022-06-06 18:58 - 000019730 _____ C:\Users\ULTRAPC\Downloads\FRST.txt
2022-06-06 18:58 - 2022-06-06 18:58 - 000000000 ____D C:\FRST
2022-06-06 17:42 - 2022-06-06 17:43 - 000000000 ____D C:\AdwCleaner
2022-06-06 17:42 - 2022-06-06 17:42 - 008551608 _____ (Malwarebytes) C:\Users\ULTRAPC\Downloads\adwcleaner.exe
2022-06-06 08:14 - 2022-06-06 08:14 - 006705440 _____ (EnigmaSoft Limited) C:\Users\ULTRAPC\Downloads\SpyHunter-Installer.exe
2022-06-06 08:07 - 2022-06-06 08:07 - 002368000 _____ (Farbar) C:\Users\ULTRAPC\Downloads\FRST64.exe
2022-06-05 17:21 - 2021-12-03 10:48 - 001092552 _____ (e2eSoft) C:\Windows\system32\Drivers\iVCam.sys
2022-06-05 17:21 - 2020-11-04 00:13 - 000255464 _____ (e2eSoft) C:\Windows\system32\Drivers\iVCamAud.sys
2022-06-05 17:20 - 2022-06-05 17:20 - 043858336 _____ (e2eSoft ) C:\Users\ULTRAPC\Downloads\iVCam_x64_v7.0.2.exe
2022-06-05 00:15 - 2022-06-05 00:15 - 000000000 ____D C:\Windows\system32\MpEngineStore
2022-06-04 23:24 - 2022-06-04 23:24 - 015541864 _____ (e2eSoft ) C:\Users\ULTRAPC\Downloads\ivcam-451-downzen.com.exe
2022-06-04 23:02 - 2022-06-04 23:02 - 000004252 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1654380166
2022-06-04 23:02 - 2022-06-04 23:02 - 000001405 _____ C:\Users\ULTRAPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-06-04 23:02 - 2022-06-04 23:02 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\Opera Software
2022-06-04 23:01 - 2022-06-06 17:43 - 000000000 ____D C:\Users\ULTRAPC\AppData\Roaming\Lavasoft
2022-06-04 23:01 - 2022-06-06 17:43 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\Lavasoft
2022-06-04 23:01 - 2022-06-06 17:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2022-06-04 23:01 - 2022-06-04 23:01 - 000000000 ____D C:\Users\ULTRAPC\AppData\Roaming\Opera Software
2022-06-04 23:00 - 2022-06-06 17:43 - 000000000 ____D C:\ProgramData\Lavasoft
2022-06-04 23:00 - 2022-06-06 17:43 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2022-06-04 23:00 - 2022-06-05 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e2eSoft iVCam
2022-06-04 23:00 - 2022-06-04 23:00 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2022-06-04 23:00 - 2022-06-04 23:00 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\e2eSoft
2022-06-04 23:00 - 2022-06-04 23:00 - 000000000 ____D C:\ProgramData\Apple
2022-06-04 23:00 - 2022-06-04 23:00 - 000000000 ____D C:\Program Files\Bonjour
2022-06-04 23:00 - 2022-06-04 23:00 - 000000000 ____D C:\Program Files (x86)\Bonjour
2022-06-04 22:49 - 2022-06-04 22:49 - 005302288 _____ (InstBase S.R.L.) C:\Users\ULTRAPC\Downloads\iVCam _OhUhZ.exe
2022-06-04 22:45 - 2022-06-04 22:45 - 000000000 ____D C:\Users\ULTRAPC\AppData\LocalLow\Ubisoft
2022-06-04 21:52 - 2022-06-04 21:52 - 000000207 _____ C:\Users\ULTRAPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roller Champions.url
2022-06-04 21:44 - 2022-06-05 23:06 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\Ubisoft Game Launcher
2022-06-04 21:44 - 2022-06-04 21:44 - 000000000 ____D C:\Users\ULTRAPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-06-04 21:44 - 2022-06-04 21:44 - 000000000 ____D C:\ProgramData\Ubisoft
2022-06-04 21:40 - 2022-06-04 21:44 - 238627552 _____ (Ubisoft) C:\Users\ULTRAPC\Downloads\UbisoftConnectInstaller.exe
2022-06-01 07:38 - 2022-06-01 07:39 - 047745834 _____ C:\Users\ULTRAPC\Downloads\درس  حق البيئة - الإحسان بالحيوان والرفق بها - لمستوى الثانية إعدادي في إطار التعليم عن بعد.mp4
2022-05-30 23:13 - 2022-05-30 23:15 - 056101468 _____ C:\Users\ULTRAPC\Downloads\الولايات المتحدة الأمريكية_ ملخص تاريخي من قبل تأسيس الدولة إلى حديثاً.mp4
2022-05-30 23:02 - 2022-05-30 23:02 - 040440209 _____ C:\Users\ULTRAPC\Downloads\وثائقي – قصة صعود الولايات المتحدة والوصول للإمبراطورية الأمريكية.mp4
2022-05-29 19:31 - 2022-05-29 19:31 - 000188928 _____ C:\Windows\system32\uwfcfgmgmt.dll
2022-05-29 19:30 - 2022-05-29 19:30 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-05-29 19:30 - 2022-05-29 19:30 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-05-29 19:30 - 2022-05-29 19:30 - 000011799 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-05-29 19:23 - 2022-05-29 19:23 - 000000000 ___HD C:\$WinREAgent
2022-05-13 16:44 - 2022-05-13 16:44 - 000000028 ____H C:\.GamingRoot
2022-05-13 16:44 - 2022-05-13 16:44 - 000000000 ____D C:\XboxGames

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-06-06 18:49 - 2022-03-21 20:27 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-06 18:33 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-06 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-06-06 18:10 - 2022-03-21 14:40 - 001767994 _____ C:\Windows\system32\PerfStringBackup.INI
2022-06-06 18:10 - 2019-12-07 16:06 - 000788680 _____ C:\Windows\system32\perfh00C.dat
2022-06-06 18:10 - 2019-12-07 16:06 - 000147754 _____ C:\Windows\system32\perfc00C.dat
2022-06-06 18:10 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-06-06 18:06 - 2022-03-24 21:21 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2022-06-06 18:03 - 2022-03-21 14:45 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-06 18:03 - 2022-03-21 14:39 - 000000000 ___RD C:\Users\ULTRAPC\OneDrive
2022-06-06 18:03 - 2022-03-21 14:33 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-06 18:03 - 2022-03-21 14:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-06-06 18:02 - 2022-03-21 14:36 - 000000000 ____D C:\Users\ULTRAPC
2022-06-06 18:02 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-06-06 17:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-06 17:32 - 2022-03-21 14:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-06-06 08:07 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-06-06 00:40 - 2022-04-04 15:00 - 000000000 ____D C:\Users\ULTRAPC\AppData\Roaming\discord
2022-06-06 00:38 - 2022-04-04 15:00 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\Discord
2022-06-05 17:21 - 2022-03-21 20:36 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\D3DSCache
2022-06-05 15:15 - 2022-03-21 14:45 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-05 15:15 - 2022-03-21 14:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-06-05 15:15 - 2022-03-21 14:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-06-05 15:15 - 2022-03-21 14:43 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-06-05 13:15 - 2022-03-23 18:50 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\CrashDumps
2022-06-05 10:47 - 2022-03-24 21:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-04 21:35 - 2022-03-21 20:59 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\EpicGamesLauncher
2022-06-02 17:27 - 2022-03-21 14:37 - 000000000 ____D C:\ProgramData\Packages
2022-06-01 07:53 - 2022-03-26 21:57 - 000000000 ____D C:\Windows\system32\MRT
2022-06-01 07:52 - 2022-03-26 21:57 - 145501456 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-06-01 07:34 - 2022-03-21 20:34 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-05-31 18:18 - 2022-03-24 07:39 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-05-30 20:22 - 2022-03-21 20:32 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1752012005-546722920-1809189200-1001
2022-05-30 20:22 - 2022-03-21 14:39 - 000003382 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1752012005-546722920-1809189200-1001
2022-05-30 20:22 - 2022-03-21 14:36 - 000002385 _____ C:\Users\ULTRAPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-05-29 20:35 - 2022-03-21 14:33 - 000276584 _____ C:\Windows\system32\FNTCACHE.DAT
2022-05-29 20:35 - 2019-12-07 16:10 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-05-29 20:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-19 18:03 - 2022-03-27 19:26 - 000000000 ____D C:\Users\ULTRAPC\AppData\Local\ElevatedDiagnostics
2022-05-13 16:42 - 2022-03-24 21:23 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-05-13 16:42 - 2022-03-24 21:23 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-05-13 16:38 - 2022-04-18 22:09 - 002274768 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000394704 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000222672 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000132560 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2022-05-13 16:38 - 2022-04-18 22:09 - 000062952 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================