Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-08-2022 Exécuté par 9100F (administrateur) sur DESKTOP-G8TM2VS (Micro-Star International Co., Ltd. MS-7B24) (14-08-2022 13:28:22) Exécuté depuis E:\Bureau Profils chargés: 9100F Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Backblaze\bzbui.exe ->) (Backblaze, Inc. -> ) C:\Program Files (x86)\Backblaze\bzbuitray.exe (C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe (explorer.exe ->) (Backblaze, Inc. -> ) C:\Program Files (x86)\Backblaze\bzbui.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Backblaze, Inc. -> ) C:\Program Files (x86)\Backblaze\bzserv.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3dd75df32535321a\RtkAudUService64.exe (services.exe ->) (X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.22031.10091.0_x64__8wekyb3d8bbwe\Music.UI.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3dd75df32535321a\RtkAudUService64.exe [1361000 2021-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [6711504 2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) HKLM\...\Run: [] => [X] HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [423096 2021-03-05] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-02-24] (Adobe Inc. -> ) HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe --startup_mode (Pas de fichier) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe --startup_mode (Pas de fichier) HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-02-24] (Adobe Inc. -> ) HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1188632 2021-11-20] (Backblaze, Inc. -> ) HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [7201488 2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\Run: [MicrosoftEdgeAutoLaunch_8A4CA75F0C371C3350BAAF0CD0F78681] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-1308895308-339672598-1779221098-1001\...\MountPoints2: {d79c2820-7332-11ec-b9f2-309c23a24301} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe --startup_mode (Pas de fichier) HKLM\...\Windows x64\Print Processors\Canon MG6200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAU.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2021-12-24] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6200 series: C:\WINDOWS\system32\CNMLMAU.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\PEPrinterMonitor.dll [285232 2022-05-16] (Wondershare Technology Co.,Ltd -> Wondershare Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-09] (Google LLC -> Google LLC) IFEO\EOSnotify.exe: [Debugger] / IFEO\InstallAgent.exe: [Debugger] / IFEO\MusNotification.exe: [Debugger] / IFEO\MusNotificationUx.exe: [Debugger] / IFEO\remsh.exe: [Debugger] / IFEO\SihClient.exe: [Debugger] / IFEO\UpdateAssistant.exe: [Debugger] / IFEO\upfc.exe: [Debugger] / IFEO\UsoClient.exe: [Debugger] / IFEO\WaaSMedic.exe: [Debugger] / IFEO\WaasMedicAgent.exe: [Debugger] / IFEO\Windows10Upgrade.exe: [Debugger] / IFEO\Windows10UpgraderApp.exe: [Debugger] / Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\i1Profiler Tray.lnk [2022-05-29] ShortcutTarget: i1Profiler Tray.lnk -> C:\Program Files (x86)\X-Rite\i1Profiler\i1ProfilerTray.exe (Pas de fichier) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\XRGamma.lnk [2022-05-29] ShortcutTarget: XRGamma.lnk -> C:\Program Files (x86)\X-Rite\i1Profiler\XRGamma.exe (Pas de fichier) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02C93D39-AC6B-4380-93DE-4F37DEB9E7A0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {057EA0BC-3CAC-451A-B9C9-1554FD26D244} - System32\Tasks\CCleanerSkipUAC - 9100F => E:\Téléchargements\CCleaner.exe $(Arg0) (Pas de fichier) Task: {1786D7AD-CD4B-4D8C-BEC8-F64376586C9C} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [26024 2021-08-26] (X-Rite Incorporated -> X-Rite Inc.) Task: {1A8CBA42-0211-4813-B815-D4043815D8E4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {2659EAFF-FF30-4CD9-A10F-D67E05DD9C1C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {3595A2EE-8E28-48BA-8774-7D5DE5049398} - System32\Tasks\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97} => C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp\XRD Manager.exe -> /exenoupdates /noprereqs /qr AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers64 ACTION="INSTALL" EXECUTEACTION="INSTALL" ROOTDRIVE="G:\" AI_PREREQDIRS="C:\Users\9100F\AppData\Local\Temp\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}" OLDPRODUCTS="{D28FA7F4-F6D0-4A4F-AB4D-C703A0627C0B}" AI_SETUPEXEPATH="C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp\XRD Manager.exe" SETUPEXEDIR="C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp\" TARGETDIR="G:\" APPDIR="C:\Program Files (x86)\X-Rite\Devices\" <==== ATTENTION Task: {504B4BC9-7DBC-402E-96DD-89E44FE2D8D1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {5472A8BF-51FE-47C3-BFB1-DEF62432ACD1} - System32\Tasks\GoogleUpdateTaskMachineUA{A11D2C61-2D5B-496B-87E6-75EF7F23F7D5} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-09] (Google Inc -> Google LLC) Task: {5B50306B-8BB6-4CA4-A56F-8C876953FE75} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {6B889B3B-1163-443D-BBC1-27D519C4EACF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {71FCD946-C09B-4E9C-AF8E-E5279999A9DC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {787AD84E-1098-4042-A3FD-687EE8F20230} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {9A5419C9-4A7B-4311-9CD9-1CC1AB259211} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A58FD932-3623-4709-92E8-AFF2B67A35C1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {BC56D500-B55E-4BA5-A732-E2438715048C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CC7FCF2C-DBAF-4B2A-B3E0-AFD1CE45DFCF} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-1308895308-339672598-1779221098-1001_6 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [417280 2022-07-14] (Microsoft Windows -> Microsoft Corporation) Task: {CF4A2105-8417-489A-94AB-9643043A006A} - System32\Tasks\GoogleUpdateTaskMachineCore{F41C60FC-D7D6-4772-B126-5C36D4E7EE73} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-09] (Google Inc -> Google LLC) Task: {D39CE09B-DEAC-4CA6-A8BA-224C0072EB77} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {D7D9309C-0521-4A2B-B10A-85CD3CB0E406} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DBE31880-1BF4-4108-AA8D-3715FEC5A865} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E9EA98B9-5B32-41A5-9CB4-458553F4F99A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {EB151D4E-8217-452B-B20F-DF8293DC4221} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {EC5D7818-AA0C-4614-84BA-30B2F6282880} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {F06D8F6D-C3FD-4ED7-A6C8-82C45E5BB8DA} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation) Task: {F4DB06B9-706F-4E39-B12E-8BA1D3281BD4} - System32\Tasks\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A} => C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp\XRD Manager.exe -> /exenoupdates /exelang 1036 /noprereqs /qr AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers64 ACTION="INSTALL" EXECUTEACTION="INSTALL" ROOTDRIVE="G:\" TRANSFORMS=":1036" AI_PREREQFILES="C:\Users\9100F\AppData\Local\Temp\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A}\drivers64.msi" AI_PREREQDIRS="C:\Users\9100F\AppData\Local\Temp" AI_SETUPEXEPATH="C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp\XRD Manager.exe" SETUPEXEDIR="C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp\" TARGETDIR="G:\" APPDIR="C:\Program Files (x86)\X-Rite\Devices\" <==== ATTENTION Task: {F53CE6D4-ECA1-420D-ABB3-E166F61BB895} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe Task: C:\WINDOWS\Tasks\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}.job => C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp\XRD Manager.exeǥ/exenoupdates /noprereqs /qr AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers64 ACTION=INSTALL EXECUTEACTION=INSTALL ROOTDRIVE G:\ AI_PREREQDIRS=C:\Users\9100F\AppData\Local\Temp\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97} OLDPRODUCTS={D28FA7F4-F6D0-4A4F-AB4D-C703A0627C0B} AI_SETUPEXEPATH=C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp\XRD Manager.exe SETUPEXEDIR=C:\Users\9100F\AppData\Local\Temp\is-TDPAU.tmp Task: C:\WINDOWS\Tasks\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A}.job => C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp\XRD Manager.exeȒ/exenoupdates /exelang 1036 /noprereqs /qr AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers64 ACTION=INSTALL EXECUTEACTION=INSTALL ROOTDRIVE G:\ TRANSFORMS=:1036 AI_PREREQFILES=C:\Users\9100F\AppData\Local\Temp\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A}\drivers64.msi AI_PREREQDIRS=C:\Users\9100F\AppData\Local\Temp AI_SETUPEXEPATH=C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp\XRD Manager.exe SETUPEXEDIR=C:\Users\9100F\AppData\Local\Temp\is-832DN.tmp ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{87ac6cf6-3787-44c9-b8d6-286786dcfd24}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d7bd5848-70d2-4f50-a0f5-10614ad9e384}: [NameServer] 208.67.222.222,208.67.220.220 Tcpip\..\Interfaces\{e4b28cf3-5cf6-4a21-bd53-0bf4429d0090}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{e4b28cf3-5cf6-4a21-bd53-0bf4429d0090}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: E:\Téléchargements Edge DefaultProfile: Default Edge Profile: C:\Users\9100F\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-14] Edge Extension: (Word) - C:\Users\9100F\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-03-13] Edge Extension: (PowerPoint) - C:\Users\9100F\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-03-13] FireFox: ======== FF DefaultProfile: hbk708yd.default FF ProfilePath: C:\Users\9100F\AppData\Roaming\Mozilla\Firefox\Profiles\hbk708yd.default [2022-02-25] FF ProfilePath: C:\Users\9100F\AppData\Roaming\Mozilla\Firefox\Profiles\pp23lmi3.default-release-1652364076270 [2022-08-14] FF Extension: (Dashlane) - C:\Users\9100F\AppData\Roaming\Mozilla\Firefox\Profiles\pp23lmi3.default-release-1652364076270\Extensions\jetpack-extension@dashlane.com.xpi [2022-08-10] [UpdateUrl:hxxps://ws1.dashlane.com/5/binaries/query?logins=&platform=firefox&target=ff_web_extension&format=json&version=] FF Extension: (Français Language Pack) - C:\Users\9100F\AppData\Roaming\Mozilla\Firefox\Profiles\pp23lmi3.default-release-1652364076270\Extensions\langpack-fr@firefox.mozilla.org.xpi [2022-08-09] FF Extension: (Kaspersky Protection) - C:\Users\9100F\AppData\Roaming\Mozilla\Firefox\Profiles\pp23lmi3.default-release-1652364076270\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2022-08-01] FF ProfilePath: C:\Users\9100F\AppData\Roaming\Greyfirst\Celtx\Profiles\uvtkcj2g.default [2022-08-02] FF Extension: (Timezone Definitions for Mozilla Calendar) - C:\Program Files (x86)\Celtx\extensions\calendar-timezones@mozilla.org [2020-06-06] [] [non signé] FF Extension: (Default Shot Palette) - C:\Program Files (x86)\Celtx\extensions\default-palette@celtx.com [2020-06-06] [] [non signé] FF Extension: (MSN-Smileys) - C:\Program Files (x86)\Celtx\extensions\emoticons-msn-smileys@m513901.de [2020-06-06] [] [non signé] FF Extension: (DOM Inspector) - C:\Program Files (x86)\Celtx\extensions\inspector@mozilla.org [2020-06-06] [] [non signé] FF Extension: (Blackened) - C:\Program Files (x86)\Celtx\extensions\messagestyle-blackened@addons.instantbird.org [2020-06-06] [] [non signé] FF Extension: (Depth) - C:\Program Files (x86)\Celtx\extensions\messagestyle-depth@addons.instantbird.org [2020-06-06] [] [non signé] FF Extension: (Minimal) - C:\Program Files (x86)\Celtx\extensions\messagestyle-minimal20@addons.instantbird.org [2020-06-06] [] [non signé] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-03-05] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> E:\Logiciels Lecture Vidéo\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-03-05] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\9100F\AppData\Local\Google\Chrome\User Data\Default [2022-08-08] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\9100F\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-07-26] CHR Extension: (Google Docs hors connexion) - C:\Users\9100F\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-15] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\9100F\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842424 2021-03-05] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 bzserv; C:\Program Files (x86)\Backblaze\bzserv.exe [614168 2021-11-20] (Backblaze, Inc. -> ) R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-07-12] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-07-12] (Electronic Arts, Inc. -> Electronic Arts) S4 Red Giant Service; C:\Program Files\Red Giant\Services\Red Giant Service.exe [5976136 2020-08-01] (Red Giant LLC -> Red Giant LLC) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [81320 2021-08-26] (X-Rite Incorporated -> X-Rite Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287744 2022-02-10] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [154112 2021-10-15] (Microsoft Corporation) [Fichier non signé] R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-09-13] (Martin Malik - REALiX -> REALiX(tm)) R3 MpKsl709de338; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A9229C44-EF43-4364-8E83-E754CB3E03FD}\MpKslDrv.sys [141576 2022-08-14] (Microsoft Windows -> Microsoft Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 Spyder4; C:\WINDOWS\System32\drivers\dccmtr.sys [15360 2015-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor) S3 trufos; C:\WINDOWS\System32\drivers\trufos.sys [641736 2022-02-24] (Bitdefender SRL -> Bitdefender) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-08-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-08-05] (Microsoft Windows -> Microsoft Corporation) R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [20832 2014-07-11] (PC Micro Systems Inc. -> Nicomsoft Ltd.) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-14 12:07 - 2022-08-14 12:07 - 000004036 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-1308895308-339672598-1779221098-1001_6 2022-08-14 12:04 - 2022-08-14 12:05 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design 2022-08-13 23:31 - 2022-08-14 13:28 - 000000000 ____D C:\FRST 2022-08-13 23:21 - 2022-08-13 23:21 - 000000000 ____D C:\Users\9100F\AppData\Local\ZHP 2022-08-11 15:27 - 2022-08-11 15:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-08-11 15:27 - 2022-08-11 15:27 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2022-08-11 15:27 - 2022-08-11 15:27 - 000002082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-08-11 10:22 - 2022-08-11 10:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-08-10 14:10 - 2022-08-10 14:10 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-08-10 14:10 - 2022-08-10 14:10 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-08-10 14:09 - 2022-08-10 14:09 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-08-10 14:09 - 2022-08-10 14:09 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-08-10 14:09 - 2022-08-10 14:09 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-10 14:09 - 2022-08-10 14:09 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-10 14:09 - 2022-08-10 14:09 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-08-10 14:09 - 2022-08-10 14:09 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-08-10 14:02 - 2022-08-10 14:02 - 000000000 ___HD C:\$WinREAgent 2022-08-07 19:18 - 2022-06-03 06:15 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-07 19:18 - 2022-06-03 06:15 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-08-07 19:18 - 2022-06-03 06:15 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-07 19:18 - 2022-06-03 06:15 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-08-07 19:18 - 2022-06-03 06:15 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-08-07 19:18 - 2022-06-03 06:15 - 001432320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-08-07 19:18 - 2022-06-03 06:15 - 001432320 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-08-07 19:18 - 2022-06-03 06:15 - 001209408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-08-07 19:18 - 2022-06-03 06:15 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-07 19:18 - 2022-06-03 06:15 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 002121696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 001529920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 001175712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 000795736 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 000715944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 000712640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2022-08-07 19:18 - 2022-06-03 06:12 - 000636504 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-08-07 19:18 - 2022-06-03 06:12 - 000144496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2022-08-07 19:18 - 2022-06-03 06:12 - 000057440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 008610448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 007713848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 005101520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 002931872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 001600672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 000981672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 000792232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-08-07 19:18 - 2022-06-03 06:11 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2022-08-07 19:18 - 2022-06-03 06:10 - 005729744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2022-08-07 19:18 - 2022-06-03 06:09 - 007611824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2022-08-07 19:18 - 2022-06-03 06:09 - 006458880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2022-08-07 19:18 - 2022-06-03 06:09 - 000850080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2022-08-07 19:18 - 2022-06-03 05:42 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb 2022-08-05 14:32 - 2022-08-05 14:40 - 000000000 ____D C:\AdwCleaner 2022-08-05 10:39 - 2022-08-05 10:39 - 000000000 ____D C:\WINDOWS\system32\%Report% 2022-08-05 00:40 - 2022-08-05 00:40 - 1171803591 ____N C:\WINDOWS\MEMORY.DMP 2022-08-05 00:40 - 2022-08-05 00:40 - 001822980 _____ C:\WINDOWS\Minidump\080522-30562-01.dmp 2022-07-14 20:51 - 2022-07-14 20:51 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-07-14 20:51 - 2022-07-14 20:51 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-07-14 20:51 - 2022-07-14 20:51 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-07-14 20:51 - 2022-07-14 20:51 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-07-14 20:51 - 2022-07-14 20:51 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-07-14 20:51 - 2022-07-14 20:51 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-07-14 20:51 - 2022-07-14 20:51 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-07-14 20:51 - 2022-07-14 20:51 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-07-14 20:51 - 2022-07-14 20:51 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-07-14 19:49 - 2022-07-14 19:49 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-07-12 10:26 - 2022-07-19 11:51 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-07-12 10:11 - 2022-07-12 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2022-07-12 10:11 - 2022-07-12 10:11 - 000000000 ____D C:\Program Files (x86)\Origin 2022-07-12 09:53 - 2022-07-19 11:52 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Origin 2022-07-12 09:53 - 2022-07-19 11:52 - 000000000 ____D C:\ProgramData\Origin 2022-07-12 09:53 - 2022-07-19 11:50 - 000000000 ____D C:\Users\9100F\AppData\Local\Origin 2022-07-07 16:45 - 2022-07-07 16:45 - 000000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2020.lnk 2022-06-27 20:59 - 2022-08-14 12:03 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design 2022-06-23 10:51 - 2022-06-23 10:51 - 000000000 ____D C:\Users\9100F\.ms-ad 2022-06-17 00:21 - 2022-06-17 00:21 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-06-17 00:21 - 2022-06-17 00:21 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2022-06-17 00:21 - 2022-06-17 00:21 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-06-17 00:21 - 2022-06-17 00:21 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll 2022-06-17 00:21 - 2022-06-17 00:21 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2022-06-14 23:09 - 2022-06-14 23:09 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Blackmagic Design 2022-06-14 22:57 - 2022-06-14 22:57 - 000000000 ____D C:\ProgramData\Blackmagic Design 2022-06-14 22:55 - 2022-08-14 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design 2022-06-10 12:31 - 2022-06-10 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2022-06-10 12:31 - 2022-06-10 12:31 - 000000000 ____D C:\Program Files\Common Files\Wondershare 2022-06-10 12:31 - 2022-05-16 15:53 - 011885552 _____ C:\WINDOWS\SysWOW64\PECRT32.dll 2022-06-10 12:31 - 2022-05-16 15:53 - 000285232 _____ (Wondershare Software) C:\WINDOWS\system32\PEPrinterMonitor.dll 2022-06-09 08:34 - 2022-06-09 08:34 - 000000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk 2022-06-09 00:56 - 2022-07-14 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 2022-06-09 00:24 - 2022-06-09 00:24 - 000000000 ____D C:\Users\9100F\AppData\Roaming\MPC-HC 2022-06-08 22:37 - 2022-06-08 22:37 - 000000000 ____D C:\ProgramData\Real 2022-06-08 21:31 - 2022-07-10 00:01 - 000000000 ____D C:\Users\9100F\AppData\Roaming\vlc 2022-06-04 22:51 - 2022-06-04 22:51 - 000000000 ____D C:\Users\9100F\AppData\Local\lmc-player-ucfr-updater 2022-05-29 22:45 - 2022-05-29 22:45 - 000000000 ____D C:\Users\9100F\AppData\Local\UnrealEngine 2022-05-29 22:45 - 2022-05-29 22:45 - 000000000 ____D C:\Users\9100F\AppData\Local\CallOfCthulhu 2022-05-29 10:21 - 2022-05-29 10:21 - 000000000 ____D C:\Users\9100F\AppData\Roaming\i1Profiler 2022-05-29 10:20 - 2022-05-29 10:21 - 000000428 _____ C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job 2022-05-29 10:20 - 2022-05-29 10:20 - 000003024 _____ C:\WINDOWS\system32\Tasks\X-Rite Device Services Software Updater 2022-05-29 10:20 - 2020-05-29 10:11 - 001970104 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\hardlock.sys 2022-05-29 10:20 - 2020-05-29 10:11 - 000510800 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\aksfridge.sys 2022-05-29 10:20 - 2020-05-29 10:11 - 000389560 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\aksdf.sys 2022-05-29 10:20 - 2020-05-29 10:11 - 000206800 _____ (Aladdin Knowledge Systems Ltd.) C:\WINDOWS\SysWOW64\hlvdd.dll 2022-05-28 22:45 - 2022-05-29 10:21 - 000001372 ____H C:\WINDOWS\Tasks\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A}.job 2022-05-28 22:45 - 2022-05-28 22:45 - 000003668 _____ C:\WINDOWS\system32\Tasks\{AD08BFBB-40C9-4220-87B8-77D6CD7DE09A} 2022-05-28 22:45 - 2022-05-28 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\X-Rite 2022-05-28 18:09 - 2022-05-29 10:21 - 000001282 ____H C:\WINDOWS\Tasks\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97}.job 2022-05-28 18:09 - 2022-05-28 18:09 - 000003578 _____ C:\WINDOWS\system32\Tasks\{3A1B2112-3617-4D99-BF54-7AB8F9D18F97} 2022-05-28 17:31 - 2022-05-29 10:20 - 000000000 ____D C:\Users\9100F\AppData\Roaming\X-Rite 2022-05-28 17:29 - 2022-08-13 13:50 - 000000000 ____D C:\Program Files (x86)\X-Rite 2022-05-28 17:28 - 2022-05-28 18:10 - 000000000 ____D C:\ProgramData\X-Rite 2022-05-28 17:28 - 2021-12-20 17:14 - 000145920 _____ (Nicomsoft Ltd.) C:\WINDOWS\system32\DDCHelper.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000131584 _____ (Nicomsoft Ltd.) C:\WINDOWS\SysWOW64\DDCHelper.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000125440 _____ (Nicomsoft Ltd.) C:\WINDOWS\system32\DDCHelperX.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000108032 _____ (Nicomsoft Ltd.) C:\WINDOWS\SysWOW64\DDCHelperX.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000010240 _____ (Nicomsoft Ltd.) C:\WINDOWS\SysWOW64\Drivers\DDCDrv.sys 2022-05-28 17:28 - 2014-07-11 09:01 - 000020832 _____ (Nicomsoft Ltd.) C:\WINDOWS\system32\Drivers\DDCDrv.sys 2022-05-24 00:34 - 2022-05-24 00:42 - 000000000 ____D C:\Users\9100F\AppData\Roaming\XnViewMP 2022-05-23 22:56 - 2022-05-24 00:07 - 000000000 ____D C:\Users\9100F\AppData\Roaming\IrfanView 2022-05-19 23:50 - 2022-05-19 23:50 - 000000000 ____D C:\ProgramData\AOMEIPA 2022-05-19 23:49 - 2022-05-19 23:54 - 000001944 _____ C:\WINDOWS\GA_OF.dat 2022-05-19 22:46 - 2022-06-10 12:31 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Wondershare 2022-05-19 22:46 - 2022-05-19 22:46 - 000000016 _____ C:\ProgramData\mntemp 2022-05-19 22:45 - 2022-06-10 12:31 - 000000000 ____D C:\ProgramData\Wondershare 2022-05-19 22:45 - 2022-06-10 12:31 - 000000000 ____D C:\Program Files\Wondershare ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-14 13:25 - 2020-01-30 16:54 - 000000000 ____D C:\Users\9100F\AppData\Roaming\ZHP 2022-08-14 13:23 - 2019-07-09 11:02 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-14 12:25 - 2019-07-04 19:09 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-14 12:13 - 2021-03-13 17:59 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-08-14 12:13 - 2019-12-07 16:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat 2022-08-14 12:13 - 2019-12-07 16:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat 2022-08-14 12:13 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-14 12:08 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-14 12:07 - 2020-10-22 14:06 - 000000000 ____D C:\Users\9100F\AppData\LocalLow\Mozilla 2022-08-14 12:06 - 2020-11-19 01:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-08-14 12:05 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-08-14 11:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-14 11:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-14 11:37 - 2019-07-04 19:07 - 000000000 ____D C:\Users\9100F\AppData\Local\Packages 2022-08-14 10:34 - 2020-11-19 00:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-08-14 06:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-08-13 22:29 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-08-13 14:59 - 2022-03-05 20:00 - 000000000 ____D C:\ProgramData\driverscloud.com 2022-08-13 09:29 - 2020-11-19 01:47 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-13 09:22 - 2020-10-22 14:06 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-12 21:18 - 2020-08-02 19:51 - 000000000 ____D C:\ProgramData\GenArts 2022-08-12 12:46 - 2020-02-02 13:25 - 000000000 ____D C:\Users\9100F\AppData\Roaming\audacity 2022-08-11 23:54 - 2019-09-05 22:13 - 000000000 ____D C:\Users\9100F\AppData\Local\CrashDumps 2022-08-11 12:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2022-08-11 12:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-11 12:11 - 2019-07-05 13:27 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-08-11 12:07 - 2019-07-05 13:27 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-08-11 10:57 - 2019-09-06 17:23 - 000000000 ___RD C:\Users\9100F\Creative Cloud Files 2022-08-11 10:22 - 2020-10-22 14:06 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-11 00:32 - 2020-11-19 00:44 - 005173696 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-08-11 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-08-11 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-08-11 00:31 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-11 00:31 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-08-11 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-08-10 14:09 - 2020-11-19 01:46 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-08-09 00:24 - 2022-04-20 17:32 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-07 19:19 - 2019-07-04 19:09 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-08-05 13:49 - 2020-11-19 01:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-08-05 10:47 - 2022-02-25 11:43 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2022-08-05 10:44 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-08-05 10:42 - 2022-02-25 11:44 - 000000000 ____D C:\Program Files\Common Files\AV 2022-08-05 10:24 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2022-08-05 00:40 - 2021-03-14 01:29 - 000000000 ____D C:\WINDOWS\Minidump 2022-08-04 20:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-08-04 20:57 - 2019-09-04 21:38 - 000000000 ____D C:\Users\9100F\AppData\Local\ElevatedDiagnostics 2022-08-04 13:15 - 2021-03-13 17:52 - 000000000 ____D C:\Users\9100F 2022-08-04 11:40 - 2021-04-15 23:11 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-03 00:44 - 2019-09-13 10:13 - 000001456 _____ C:\Users\9100F\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2022-08-02 10:39 - 2021-06-05 10:35 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Cybelsoft 2022-07-27 08:35 - 2020-11-19 01:46 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-16 01:05 - 2019-07-04 19:07 - 000000000 ____D C:\Users\9100F\AppData\Roaming\Adobe 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-07-15 01:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions ==================== Fichiers à la racine de certains dossiers ======== 2019-09-13 10:13 - 2022-08-03 00:44 - 000001456 _____ () C:\Users\9100F\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2022-02-28 11:01 - 2022-02-28 11:01 - 000000000 _____ () C:\Users\9100F\AppData\Local\oobelibMkey.log 2021-03-07 22:48 - 2021-03-08 13:07 - 000007599 _____ () C:\Users\9100F\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2022-05-28 17:28 - 2021-12-20 17:14 - 000145920 _____ (Nicomsoft Ltd.) C:\WINDOWS\system32\DDCHelper.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000125440 _____ (Nicomsoft Ltd.) C:\WINDOWS\system32\DDCHelperX.dll 2022-02-04 20:02 - 2008-01-30 18:36 - 000090112 _____ (MindVision Software) C:\WINDOWS\unvise32.exe 2022-05-28 17:28 - 2021-12-20 17:14 - 000131584 _____ (Nicomsoft Ltd.) C:\WINDOWS\SysWOW64\DDCHelper.dll 2022-05-28 17:28 - 2021-12-20 17:14 - 000108032 _____ (Nicomsoft Ltd.) C:\WINDOWS\SysWOW64\DDCHelperX.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {55f6e030-1b8b-11ed-ba4d-806e6f6e6963} {2938f4d7-9e7e-11e9-bbf6-969fb7dd733c} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=A: path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {ee3c11d3-8413-11eb-b113-a310a31705c3} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {2938f4d7-9e7e-11e9-bbf6-969fb7dd733c} description Hard Drive Application logicielle (101fffff) -------------------------------- identificateur {55f6e030-1b8b-11ed-ba4d-806e6f6e6963} description USB CD Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {ee3c11d5-8413-11eb-b113-a310a31705c3} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {ee3c11d3-8413-11eb-b113-a310a31705c3} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {ee3c11d5-8413-11eb-b113-a310a31705c3} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{ee3c11d6-8413-11eb-b113-a310a31705c3} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{ee3c11d6-8413-11eb-b113-a310a31705c3} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {ee3c11d3-8413-11eb-b113-a310a31705c3} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {ee3c11d5-8413-11eb-b113-a310a31705c3} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=A: path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} integrityservices Enable ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {ee3c11d6-8413-11eb-b113-a310a31705c3} description Windows Recovery ramdisksdidevice unknown ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================