Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022 Exécuté par Swaggy (administrateur) sur MSI (Micro-Star International Co., Ltd. GE75 Raider 9SF) (22-09-2022 16:44:08) Exécuté depuis C:\Users\Swaggy\Desktop Profils chargés: Swaggy Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.978 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (A-Volute SAS -> A-Volute) C:\Users\Swaggy\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe ->) (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorHelper.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.665.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.42\msedgewebview2.exe <6> (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe (drivers\RivetNetworks\Killer\KAPSService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (drivers\RivetNetworks\Killer\KSPSService.exe ->) (Intel Corporation -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KSPS.exe (drivers\RivetNetworks\Killer\xTendSoftAPService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAP.exe (DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxEM.exe (explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34> (explorer.exe ->) (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\Speccy\Speccy64.exe (Rivet Networks LLC) C:\Program Files\WindowsApps\rivetnetworks.killercontrolcenter_3.1122.329.0_x64__rh07ty8m5nkag\KillerControlCenter_v2\KillerIntelligenceCenter.exe (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b16f8c7f597d113d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (Intel Corporation -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KSPSService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe (services.exe ->) (Micro-Star International CO., LTD. -> ) [Fichier non signé] C:\Program Files (x86)\MSI\Dragon Center\Sendevsvc\Sendevsvc.exe (services.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\MSIAPP_Service\MSIAPService.exe (services.exe ->) (Micro-Star International Co., Ltd.) [Fichier non signé] C:\Windows\SysWOW64\MSIService.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5fb296660a9719a9\RtkAudUService64.exe <2> (services.exe ->) (Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (svchost.exe ->) (A-Volute) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.10.0_x64__w2gh52qy24etm\Nahimic3.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxext.exe (svchost.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.665.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5fb296660a9719a9\RtkAudUService64.exe [3498408 2022-07-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319544 2019-01-03] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [5870416 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) HKU\S-1-5-21-3834557477-1287295732-3263393440-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe (Pas de fichier) HKU\S-1-5-21-3834557477-1287295732-3263393440-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32687568 2022-09-21] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3834557477-1287295732-3263393440-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1371376 2022-05-22] (CyberGhost S.R.L. -> CyberGhost S.R.L.) HKU\S-1-5-21-3834557477-1287295732-3263393440-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-18] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-03-14] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Pas de fichier) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0CC0AB9B-30CD-493B-AF16-A0C6151977E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0FF0BA5F-F26C-4FB7-BB53-410C9DE0E957} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {11397286-C592-4A66-9059-A930A8DF894F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {1258A2F7-36CE-41BB-9809-B346B9626911} - \MSISCMTsk -> Pas de fichier <==== ATTENTION Task: {13386803-2EB8-4491-8C84-1DBF9FE46AE0} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION Task: {164978B7-F7B6-4370-9413-77FC3DFAF7A5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {1C76E73C-B696-48E5-AEA9-68969E798265} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {1CCDCBB9-0523-4C3A-AC41-6E5C90D5D45F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {2FB37A02-7B97-456C-A603-782A4BD94066} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {300278EF-93BB-4360-B159-AB7761AC7230} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094824 2021-10-08] (A-Volute SAS -> Nahimic) Task: {440AC99D-66A4-4287-A8A7-3671F39BA788} - System32\Tasks\GoogleUpdateTaskMachineCore{31EF6F82-2950-4F7D-8C52-BD0D8E48EAD7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-23] (Google LLC -> Google LLC) Task: {44182ACE-4395-4E8F-AD3F-C9C3198838A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {53F9153E-9EFF-4169-960E-5772E5A43175} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {55974659-E506-4BB8-B181-11369E29B16C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-09-11] (Microsoft Corporation -> Microsoft Corporation) Task: {6FE5B853-8150-43F8-9AA5-B6950BC68B6B} - \MSI_Dragon Center -> Pas de fichier <==== ATTENTION Task: {7B543C8B-BBAE-4669-A570-69F98D8E7DCA} - System32\Tasks\GoogleUpdateTaskMachineUA{1C59AFF5-377D-457C-8422-8529A8F30339} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-05-23] (Google LLC -> Google LLC) Task: {8D5B9E98-E4CA-4232-B396-BF5238EA920B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {915FE3E5-C12E-45A3-8F26-38F4ED24654E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880112 2022-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {9FFCDFD8-A101-4C90-B8C0-5DD94196963B} - \Dragon_Center_updater -> Pas de fichier <==== ATTENTION Task: {A17070E5-B080-46C5-84BA-01E063958A0E} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1094824 2021-10-08] (A-Volute SAS -> Nahimic) Task: {A3E213C4-1758-453B-BAD7-BDACFB0BBECC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A9056998-3653-4904-B107-1A901556FEBD} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [833704 2021-10-08] (A-Volute SAS -> Nahimic) Task: {C691F3DE-C064-4FB9-B318-22512CE19379} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {DB1227D3-E187-4861-8E44-F586BD2056F2} - \OneDrive Standalone Update Task-S-1-5-21-2816604865-129171118-502757208-500 -> Pas de fichier <==== ATTENTION Task: {DEE833B1-4B80-442B-B1E3-D72D4A647ED7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8573352 2022-09-11] (Microsoft Corporation -> Microsoft Corporation) Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - \Microsoft\Windows\HelloFace\FODCleanupTask -> Pas de fichier <==== ATTENTION Task: {EB389587-6DF1-4CA8-9B72-D7739F566B3A} - \Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser -> Pas de fichier <==== ATTENTION Task: {F200C9A8-DD74-43E5-B321-F2B77493367B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-09-11] (Microsoft Corporation -> Microsoft Corporation) Task: {F296CF65-CCDB-4A2D-A7EF-7574E6E9F412} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {F5AF6E4F-A26E-493C-A71B-3E620142B809} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION Task: {F83D8ADB-AFF3-4541-BB47-D95C9803A73A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) Task: {F88E7311-A5FD-493A-A859-67D7CEFE8411} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833704 2021-10-08] (A-Volute SAS -> Nahimic) Task: {FEA1F50B-3599-4776-B662-8669BD21B5DE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-09-11] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{240750e2-35d8-45f2-913e-098252c3c68f}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Swaggy\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-22] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-09-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-09-11] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default [2022-09-22] CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} CHR DefaultSearchKeyword: Default -> duckduckgo.com CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list CHR Extension: (Safe Torrent Scanner) - C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-15] CHR Extension: (DuckDuckGo) - C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-08-28] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-30] CHR Extension: (Google Docs hors connexion) - C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Swaggy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-23] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-09-18] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [68336 2022-05-22] (CyberGhost S.R.L. -> CyberGhost S.R.L.) S3 dcsvc; C:\Windows\system32\dcsvc.dll [831488 2022-09-18] (Microsoft Windows -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-25] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-14] (Epic Games Inc. -> Epic Games, Inc.) R3 KAPSService; C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-05-11] (Intel Corporation -> Intel® Corporation) R2 Killer Analytics Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-05-11] (Intel Corporation -> Intel) R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-05-11] (Intel Corporation -> Intel) R2 KillerSmartphoneSleepService; C:\Windows\System32\drivers\RivetNetworks\Killer\KSPSService.exe [63864 2022-05-11] (Intel Corporation -> Rivet Networks, LLC.) R3 KNDBWM; C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-05-11] (Intel Corporation -> Intel® Corporation) S3 KNDBWMService; C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-05-11] (Intel Corporation -> Intel® Corporation) R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Fichier non signé] R2 MSI Foundation Service; C:\Program Files (x86)\MSI\Dragon Center\MSIAPP_Service\MSIAPService.exe [47568 2018-10-30] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSITrueColorService; C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe [192848 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) R2 NahimicService; C:\Windows\system32\NahimicService.exe [1888424 2021-10-08] (A-Volute SAS -> Nahimic) R2 Sendevsvc; C:\Program Files (x86)\MSI\Dragon Center\Sendevsvc\Sendevsvc.exe [302888 2019-01-30] (Micro-Star International CO., LTD. -> ) [Fichier non signé] S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35240 2022-07-06] (SteelSeries ApS -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [73024 2019-01-04] (Rivet Networks LLC -> CloudBees, Inc.) S2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [73024 2019-01-04] (Rivet Networks LLC -> CloudBees, Inc.) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BlueStacksDrv_msi2; C:\Program Files\BlueStacks_msi2\BstkDrv.sys [303712 2019-01-23] (Bluestack Systems, Inc. -> Bluestack System Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [507904 2022-05-11] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [180224 2022-05-21] (Microsoft Corporation) [Fichier non signé] R3 cpuz149; C:\Users\Swaggy\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [44320 2022-09-22] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION S3 dg_ssudbus; C:\Windows\System32\drivers\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-09-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-09-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 enecir; C:\Windows\System32\drivers\enecir.sys [68608 2008-11-20] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.) S3 enecirhid; C:\Windows\System32\drivers\enecirhid.sys [14336 2008-04-29] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.) S3 enecirhidma; C:\Windows\System32\drivers\enecirhidma.sys [6656 2008-04-25] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.) U5 iaStorAfs; C:\Windows\System32\Drivers\iaStorAfs.sys [73376 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-05-11] (Intel Corporation -> Rivet Networks, LLC.) R3 MpKslc51a5b4a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4C65AFF5-B964-4691-9626-8664498A4357}\MpKslDrv.sys [228600 2022-09-22] (Microsoft Windows -> Microsoft Corporation) R3 msihid; C:\Windows\System32\drivers\msihid.sys [43968 2022-07-06] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [94784 2022-06-03] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 PtpFilterDriver; C:\Windows\System32\drivers\PtpFilterDriver.sys [51840 2016-12-27] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd) S3 ssbthid; C:\Windows\System32\drivers\ssbthid.sys [44688 2021-09-03] (SteelSeries ApS -> SteelSeries ApS) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [46776 2019-02-01] (SteelSeries ApS -> ) S3 sshid; C:\Windows\System32\drivers\sshid.sys [43424 2022-05-03] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R3 ssps2; C:\Windows\System32\drivers\ssps2.sys [42120 2021-09-03] (SteelSeries ApS -> SteelSeries ApS) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\Windows\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-09-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [453904 2022-09-10] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-10] (Microsoft Windows -> Microsoft Corporation) R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-12] (Micro-Star Int'l Co. Ltd. -> ) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-22 16:44 - 2022-09-22 16:44 - 000030678 _____ C:\Users\Swaggy\Desktop\FRST.txt 2022-09-22 16:43 - 2022-09-22 16:44 - 000000000 ____D C:\FRST 2022-09-22 16:39 - 2022-09-22 16:39 - 002371072 _____ (Farbar) C:\Users\Swaggy\Desktop\FRST64.exe 2022-09-22 16:39 - 2022-09-22 16:39 - 000338150 _____ C:\Users\Swaggy\Desktop\ZHPDiag.txt 2022-09-22 16:30 - 2022-09-22 16:39 - 000000000 ____D C:\Users\Swaggy\AppData\Roaming\ZHP 2022-09-22 16:30 - 2022-09-22 16:30 - 000000873 _____ C:\Users\Swaggy\Desktop\ZHPSuite.lnk 2022-09-22 16:30 - 2022-09-22 16:30 - 000000000 ____D C:\Users\Swaggy\AppData\Local\ZHP 2022-09-22 16:29 - 2022-09-22 16:29 - 003508424 _____ (Nicolas Coolman) C:\Users\Swaggy\Downloads\ZHPSuite.exe 2022-09-19 16:24 - 2022-09-19 16:24 - 000000000 ___HD C:\ProgramData\CyberLink 2022-09-18 18:59 - 2022-09-18 18:59 - 000085485 _____ C:\Users\Swaggy\Downloads\Facture_26771614.PDF 2022-09-18 11:54 - 2022-09-18 11:54 - 000335872 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-09-18 11:54 - 2022-09-18 11:54 - 000015030 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-09-18 11:52 - 2022-09-18 11:52 - 000000000 ___HD C:\$WinREAgent 2022-09-17 10:23 - 2022-09-17 10:30 - 000000000 ____D C:\Users\Swaggy\AppData\Roaming\2K Sports 2022-09-11 20:11 - 2022-09-11 20:11 - 000000000 ____D C:\Users\Swaggy\Documents\Modèles Office personnalisés 2022-09-11 18:49 - 2022-09-11 18:49 - 000002462 _____ C:\Users\Swaggy\Desktop\Word.lnk 2022-09-11 18:47 - 2022-09-11 18:47 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2022-09-11 18:46 - 2022-09-11 18:47 - 000000000 ____D C:\Program Files\Microsoft Office 2022-09-11 18:46 - 2022-09-11 18:46 - 000002510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000002479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2022-09-11 18:46 - 2022-09-11 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2022-09-11 18:46 - 2022-09-11 18:46 - 000000000 ____D C:\Program Files\Microsoft Office 15 2022-09-04 12:48 - 2022-09-18 16:38 - 000001607 _____ C:\Windows\system32\config\VSMIDK 2022-08-29 20:59 - 2022-08-29 20:59 - 002676645 _____ C:\Users\Swaggy\Desktop\Demande_de_preinscription_rentree_2019_11.pdf 2022-08-29 20:35 - 2022-08-29 20:35 - 002634566 _____ C:\Users\Swaggy\Downloads\Demande_de_preinscription_rentree_2019_11.pdf 2022-08-21 16:09 - 2022-08-21 16:09 - 000000000 ____D C:\Users\Swaggy\AppData\Local\ElevatedDiagnostics 2022-08-13 12:43 - 2022-08-13 12:43 - 000041472 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2022-08-13 12:42 - 2022-08-13 12:42 - 000327680 _____ C:\Windows\system32\pnpdiag.dll 2022-08-13 12:42 - 2022-08-13 12:42 - 000069632 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2022-08-10 16:55 - 2022-07-28 08:28 - 001905920 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-10 16:55 - 2022-07-28 08:28 - 001905920 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-10 16:55 - 2022-07-28 08:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-10 16:55 - 2022-07-28 08:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-10 16:55 - 2022-07-28 08:27 - 001471992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-10 16:55 - 2022-07-28 08:27 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-10 16:55 - 2022-07-28 08:27 - 001432320 _____ C:\Windows\system32\vulkan-1.dll 2022-08-10 16:55 - 2022-07-28 08:27 - 001213432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-10 16:55 - 2022-07-28 08:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-10 16:55 - 2022-07-28 08:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-10 16:55 - 2022-07-28 08:24 - 000865776 _____ C:\Windows\system32\nvofapi64.dll 2022-08-10 16:55 - 2022-07-28 08:24 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-08-10 16:55 - 2022-07-28 08:24 - 000687608 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-08-10 16:55 - 2022-07-28 08:23 - 002127872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-08-10 16:55 - 2022-07-28 08:23 - 001607680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-08-10 16:55 - 2022-07-28 08:23 - 001536504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-08-10 16:55 - 2022-07-28 08:23 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-08-10 16:55 - 2022-07-28 08:23 - 000714752 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-08-10 16:55 - 2022-07-28 08:22 - 010269688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 008803832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 005362672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 003066872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 001059328 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-08-10 16:55 - 2022-07-28 08:22 - 000456176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-08-10 16:55 - 2022-07-28 08:21 - 005735920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-08-10 16:55 - 2022-07-28 08:21 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-08-10 16:55 - 2022-07-28 08:20 - 006367440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-08-10 16:55 - 2022-07-22 05:25 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-07-30 08:43 - 2022-07-14 06:55 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2022-07-30 08:41 - 2022-07-14 06:55 - 000043184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-07-21 08:33 - 2022-07-21 08:33 - 000000000 ____D C:\Users\Swaggy\AppData\Local\Hk_project 2022-07-21 08:11 - 2022-07-21 08:11 - 000000579 _____ C:\Users\Public\Desktop\Stray.lnk 2022-07-13 13:14 - 2022-07-13 13:14 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-13 13:14 - 2022-07-13 13:14 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-12 10:48 - 2022-07-12 10:48 - 000000223 _____ C:\Users\Swaggy\Desktop\Football Manager 2022 Editor.url 2022-07-07 22:12 - 2022-07-12 10:48 - 000000000 ____D C:\Users\Swaggy\Documents\Sports Interactive 2022-07-07 22:12 - 2022-07-12 10:48 - 000000000 ____D C:\Users\Swaggy\AppData\Local\Sports Interactive 2022-07-07 22:12 - 2022-07-12 10:48 - 000000000 ____D C:\Users\Public\Documents\Sports Interactive 2022-07-07 22:07 - 2022-07-07 22:07 - 000000223 _____ C:\Users\Swaggy\Desktop\Football Manager 2022.url 2022-07-07 11:35 - 2022-07-07 11:35 - 000000000 ____D C:\Users\Swaggy\AppData\Local\HaloInfinite 2022-07-07 11:35 - 2022-07-07 11:35 - 000000000 ____D C:\Users\Public\Documents\Steam 2022-07-03 17:28 - 2022-07-21 08:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mephisto 2022-07-03 17:28 - 2022-07-03 17:28 - 000000672 _____ C:\Users\Public\Desktop\Halo Infinite.lnk 2022-07-03 16:59 - 2022-07-21 08:08 - 000000000 ____D C:\Users\Swaggy\AppData\Local\Mephisto 2022-06-28 15:53 - 2022-06-28 15:53 - 000000000 ____D C:\Users\Swaggy\AppData\Local\DBG 2022-06-26 16:26 - 2022-06-26 16:26 - 000000000 ____D C:\Users\Swaggy\Downloads\Halo.The.Master.Chief.Collection.v1.2282.0.0.FRENCH-Mephisto 2022-06-26 16:25 - 2022-06-26 16:25 - 000477699 _____ C:\Users\Swaggy\Downloads\Halo.The.Master.Chief.Collection.v1.2282.0.0.FRENCH-Mephisto.torrent 2022-06-26 14:16 - 2022-06-26 14:16 - 000000000 ____D C:\ProgramData\VS Revo Group 2022-06-26 14:15 - 2022-06-26 14:15 - 000000000 ____D C:\Users\Swaggy\AppData\LocalLow\uTorrent.WebView2 2022-06-26 14:11 - 2022-06-26 16:24 - 000000000 ____D C:\Users\Swaggy\AppData\LocalLow\Rebound CG 2022-06-26 13:56 - 2022-06-26 13:56 - 000000000 ____D C:\ProgramData\GOG.com 2022-06-26 13:55 - 2022-06-26 16:24 - 000000000 ____D C:\GOG Games 2022-06-26 13:54 - 2022-06-26 13:54 - 000000000 ____D C:\Users\Swaggy\Downloads\State of Decay 2 - Juggernaut Edition [FitGirl Repack] 2022-06-25 10:37 - 2022-06-25 10:37 - 000000000 ____D C:\Users\Swaggy\AppData\LocalLow\Mediatonic 2022-06-25 10:37 - 2022-06-25 10:37 - 000000000 ____D C:\Users\Swaggy\AppData\Local\EOSUserHelper 2022-06-25 10:14 - 2022-06-25 10:14 - 000000379 _____ C:\Users\Swaggy\Desktop\Fall Guys.url 2022-06-25 09:55 - 2022-06-25 09:55 - 000557056 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-06-25 09:55 - 2022-06-25 09:55 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-22 16:45 - 2022-05-22 15:50 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-09-22 16:44 - 2022-05-23 03:21 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-22 16:44 - 2019-03-14 19:45 - 000000000 ____D C:\ProgramData\Common 2022-09-22 16:40 - 2022-05-26 14:19 - 000000000 ____D C:\Program Files (x86)\Steam 2022-09-22 16:34 - 2022-05-23 03:11 - 001802028 _____ C:\Windows\system32\PerfStringBackup.INI 2022-09-22 16:34 - 2022-05-22 15:52 - 000807754 _____ C:\Windows\system32\perfh00C.dat 2022-09-22 16:34 - 2022-05-22 15:52 - 000156376 _____ C:\Windows\system32\perfc00C.dat 2022-09-22 16:34 - 2022-05-22 15:49 - 000000000 ____D C:\Windows\INF 2022-09-22 16:28 - 2022-05-23 02:52 - 000000000 ____D C:\ProgramData\NVIDIA 2022-09-22 16:28 - 2022-05-22 15:50 - 000000000 ___HD C:\Program Files\WindowsApps 2022-09-22 16:28 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\AppReadiness 2022-09-22 16:26 - 2022-05-22 18:49 - 000000000 ____D C:\Users\Swaggy\AppData\Local\CyberGhost 2022-09-22 16:26 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\SystemTemp 2022-09-22 16:24 - 2022-05-23 03:15 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32 2022-09-22 16:24 - 2022-05-23 03:15 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64 2022-09-22 16:24 - 2022-05-23 03:15 - 000000000 __SHD C:\Users\Swaggy\IntelGraphicsProfiles 2022-09-22 16:24 - 2022-05-23 02:52 - 000012288 ___SH C:\DumpStack.log.tmp 2022-09-22 16:24 - 2022-05-23 02:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-09-22 16:24 - 2022-05-23 02:52 - 000000000 ____D C:\Intel 2022-09-21 17:56 - 2022-05-22 15:46 - 000786432 _____ C:\Windows\system32\config\BBI 2022-09-21 17:09 - 2022-05-31 18:23 - 000002431 _____ C:\Users\Swaggy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-09-21 17:09 - 2022-05-23 03:17 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3834557477-1287295732-3263393440-1001 2022-09-21 17:09 - 2022-05-23 03:16 - 000003358 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3834557477-1287295732-3263393440-1001 2022-09-20 13:14 - 2022-05-22 18:49 - 000000000 ____D C:\Users\Swaggy\AppData\Roaming\CyberGhost 2022-09-19 16:20 - 2022-05-31 13:54 - 000000000 ____D C:\Users\Swaggy\AppData\Roaming\uTorrent 2022-09-19 16:15 - 2022-05-31 13:56 - 000000000 ____D C:\Users\Swaggy\AppData\Local\BitTorrentHelper 2022-09-19 16:09 - 2022-05-23 02:52 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-09-18 16:45 - 2022-05-23 03:21 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-09-18 16:45 - 2022-05-23 03:21 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-09-18 12:07 - 2022-05-22 18:42 - 000000000 ____D C:\Users\Swaggy\AppData\Local\UnrealEngine 2022-09-18 11:58 - 2022-05-23 02:52 - 000472304 _____ C:\Windows\system32\FNTCACHE.DAT 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\SystemResources 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\setup 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\oobe 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\Dism 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\DDFs 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\appraiser 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\Provisioning 2022-09-18 11:57 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\bcastdvr 2022-09-18 11:56 - 2022-05-22 15:50 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2022-09-18 11:56 - 2022-05-22 15:50 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2022-09-18 11:56 - 2022-05-22 15:47 - 000000000 ____D C:\Windows\CbsTemp 2022-09-18 11:54 - 2022-05-23 02:54 - 003103744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-09-18 11:48 - 2022-05-23 03:17 - 000000000 ____D C:\Windows\system32\MRT 2022-09-18 11:47 - 2022-05-23 03:17 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-09-17 20:17 - 2022-05-23 02:52 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-09-17 12:12 - 2022-05-31 13:44 - 000000000 ____D C:\Users\Swaggy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-09-12 20:56 - 2022-06-05 18:38 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-09-12 20:56 - 2022-06-05 18:38 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-09-12 15:45 - 2022-06-05 10:57 - 000000000 ____D C:\Users\Swaggy\AppData\Local\CrashDumps 2022-09-12 15:23 - 2022-05-23 03:15 - 000000000 ____D C:\Users\Swaggy\AppData\Local\Packages 2022-09-11 18:47 - 2022-05-22 15:50 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-09-10 09:50 - 2022-05-23 02:52 - 000000000 ____D C:\Windows\system32\Drivers\wd 2022-09-03 12:36 - 2022-05-22 15:50 - 000000000 ____D C:\Windows\system32\SecurityHealth 2022-08-29 20:39 - 2022-05-23 03:21 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{1C59AFF5-377D-457C-8422-8529A8F30339} 2022-08-29 20:39 - 2022-05-23 03:21 - 000003542 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{31EF6F82-2950-4F7D-8C52-BD0D8E48EAD7} ==================== Fichiers à la racine de certains dossiers ======== 2022-06-05 18:46 - 2022-06-05 18:48 - 001065984 _____ () C:\Users\Swaggy\AppData\Local\file__0.localstorage ==================== SigCheckExt ========================= 2009-12-18 19:54 - 2009-12-18 19:54 - 000003584 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\msiapcfg.dll 2009-07-09 23:54 - 2009-07-09 23:54 - 000160768 _____ (Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe 2011-04-16 01:26 - 2011-04-16 01:26 - 001598464 _____ (Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIWmiAcpi.dll 2022-09-22 16:39 - 2022-09-22 16:39 - 002371072 _____ (Farbar) C:\Users\Swaggy\Desktop\FRST64.exe 2022-09-22 16:29 - 2022-09-22 16:29 - 003508424 _____ (Nicolas Coolman) C:\Users\Swaggy\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} flightsigning Yes default {current} resumeobject {8f0f5bb4-d9df-11ec-9ee9-ac78e2863f5a} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {42ada695-444c-11ea-86f2-81692b2a3967} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{42ada696-444c-11ea-86f2-81692b2a3967} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{42ada696-444c-11ea-86f2-81692b2a3967} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {42ada695-444c-11ea-86f2-81692b2a3967} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {8f0f5bb4-d9df-11ec-9ee9-ac78e2863f5a} nx OptIn bootmenupolicy Standard Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {8f0f5bb4-d9df-11ec-9ee9-ac78e2863f5a} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {42ada695-444c-11ea-86f2-81692b2a3967} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {42ada696-444c-11ea-86f2-81692b2a3967} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================