Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023 Exécuté par loge_ (administrateur) sur DESKTOP-JCGONUD (ASUSTeK Computer Inc. G74Sx) (29-05-2023 22:06:40) Exécuté depuis C:\Users\loge_\OneDrive\Bureau\FRST64.exe Profils chargés: loge_ Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3031 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\loge_\AppData\Roaming\ZHP\ZHPSuite.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21446.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3025_none_7e36ee127c6f13fc\TiWorker.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [6348112 2022-05-16] (Sentelic Corporation -> Sentelic Corporation) HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [67504 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [2242376 2022-05-16] (Sentelic Corporation -> TODO: ) HKLM\...\Run: [FLxHCIm] => C:\WINDOWS\system32\FLxHCIm.exe [73648 2022-06-23] (Fresco Logic Inc -> Fresco Logic) HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [846848 2014-06-20] (Qualcomm Atheros) [Fichier non signé] HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM\...\Run: [WindowsMasterUI] => C:\Program Files\Microsoft PC Manager\MSPCManager.exe [552344 2023-03-07] (Microsoft Corporation -> MSPCManager) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1318024 2021-04-15] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [SedServer] => "C:\Program Files (x86)\ATRis_Technik\Sed.exe" server (Pas de fichier) HKLM-x32\...\Run: [TrayProcess] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe [965312 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-24] (ASUSTeK Computer Inc. -> ASUS) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [128000 2014-06-30] (Qualcomm Atheros) [Fichier non signé] HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [MicrosoftEdgeAutoLaunch_394D44E9BEF283A10F88559E465ACA27] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152208 2023-05-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWCE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [ManyCam] => "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent (Pas de fichier) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [YandexDisk2] => C:\Users\loge_\AppData\Roaming\Yandex\YandexDisk2\3.2.19.4651\YandexDisk2.exe -autostart (Pas de fichier) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe (Pas de fichier) HKU\S-1-5-21-3512974781-3030408837-1657704919-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\...\Print\Monitors\EPSON WF-2810 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBWCE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\113.0.5672.127\Installer\chrmstp.exe [2023-05-19] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-06-30] (Qualcomm Atheros) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2022-06-02] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé] GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0CE4D03F-1664-4F52-86C3-BA6AF1595EFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {169106B7-89E8-4CF7-9A1F-8F4E38E50F6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC) Task: {184E62CF-AAE5-4EDC-B70C-4FEBC3EB8934} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-06] (Google LLC -> Google LLC) Task: {1B9CEA46-1360-4593-9168-96DF55620174} - System32\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {23AE5A6F-5E87-4F9E-8616-3484C961D29B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2D43E5D8-3D93-433D-B07B-E2A287A8F214} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {3D799C45-8964-46DF-B346-551D57659743} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3EC8E855-CF9A-452B-9108-DF16D4694A6C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5C5BAC0A-548D-4306-A816-443942C07B41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {65B638DF-6D83-4439-B712-F5B8A3DBC0D0} - System32\Tasks\Opera scheduled Autoupdate 1641414850 => C:\Users\loge_\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {6CC48ABE-B05F-4D91-B877-360E7209D067} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7037DC78-C0AC-4F88-8FAF-2A55C32F98CA} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {7FA03780-C63D-4F37-B4F5-D55B35557099} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {83EED6EC-DB96-4238-A0B9-718A7F08A044} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8B50DF82-86A5-425B-A8E7-7C72A8E6833F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {9EC964FE-9B6C-4DCA-A6BF-40701121B92F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A431217E-53B5-433B-81F2-D8C1329C4A6B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-01-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B304B3D9-CD08-4BD0-824F-CF8996DCA716} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C68A0654-8234-4AA8-9C7D-083E09075D4B} - System32\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {DF75E6DD-7355-499F-98A8-A2CD1DC45576} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EB54AB9F-6A7F-4F6B-BD45-B9E81AF0D47B} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121605552 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\windows\explorer.exe Task: C:\windows\Tasks\EPSON WF-2810 Series Update {1D9E84AE-CA80-44C3-872B-36B1B8E080F3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{1D9E84AE-CA80-44C3-872B-36B1B8E080F3} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\windows\Tasks\EPSON WF-2810 Series Update {D264494B-9230-403B-A5D6-46F1E54D62B2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWCE.EXE:/EXE:{D264494B-9230-403B-A5D6-46F1E54D62B2} /F:UpdateWORKGROUP\DESKTOP-JCGONUD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => Pas de fichier Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2c1627b7-7254-47cb-b9a6-28aab1c54692}: [DhcpNameServer] 192.168.5.1 Tcpip\..\Interfaces\{799644ae-b99a-42ed-a464-4eb6183fecb2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{a4b94cb3-c10e-4ee7-86aa-f070b25863c0}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ce895fed-d0c5-49d3-8039-f0308b6654c1}: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{d30028d5-451f-47ec-aeae-83675fbbe087}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-29] Edge Notifications: Default -> hxxps://www.bienici.com; hxxps://www.facebook.com; hxxps://www.slkworld.com Edge HomePage: Default -> hxxps://www.google.com/ Edge DefaultSearchURL: Default -> hxxps://www.google.fr/search?q={searchTerms}&btnK=Recherche+Google&source=hp&ei=663WYa-UF4aIU5Thr5AH&iflsig=ALs-wAMAAAAAYda7-93Vamvf4muWL6zHJCeYdzCA5F1Y&ved=0ahUKEwjvtbP635z1AhUGxBQKHZTwC3IQ4dUDCAc&uact=5&oq=ajouter+mail+aol+dans+courrier+windows+10&gs_lcp=Cgdnd3Mtd2l6EAMyBQgAEM0CMgUIABDNAjIFCAAQzQI6EQguEIAEELEDEIMBEMcBENEDOgsIABCABBCxAxCDAToOCC4QgAQQsQMQxwEQ0QM6CAgAEIAEELEDOgsILhCABBDHARDRAzoICC4QsQMQgwE6CwguEIAEEMcBEKMCOg4ILhCABBCxAxDHARCjAjoICC4QgAQQsQM6BQgAEIAEOgsILhCABBDHARCvAToFCAAQsQM6BggAEBYQHjoFCCEQoAE6CAghEBYQHRAeSgUIlU4YA1DWDljmkQFg1ZMBaAFwAHgAgAHpAYgBjCCSAQcyNS4xNS4xmAEAoAEBsAEA&sclient=gws-wiz Edge Session Restore: Default -> est activé. Edge Extension: (Edge relevant text changes) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24] Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-05-03] Edge Extension: (Void Theme - Black and Minimal) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kioklelcojgbjoljlilalgdcppkiioge [2022-01-07] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-05-02] Edge Extension: (Trend Micro Security) - C:\Users\loge_\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\plenenahmcbmckcigmnfohjdajncaakd [2023-04-24] FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] Chrome: ======= CHR Profile: C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default [2023-05-29] CHR HomePage: Default -> hxxp://www.google.fr/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Session Restore: Default -> est activé. CHR Extension: (Tampermonkey) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-01-24] CHR Extension: (Logitech Smooth Scrolling) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2022-01-06] CHR Extension: (VPN gratuit pour Chrome par 1clickVPN) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfhplploccackoneaefokcmbjfbkenj [2023-05-29] CHR Extension: (Google Docs hors connexion) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-29] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-29] CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2022-01-06] CHR Extension: (Facture Gratuite pour AliExpress) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldacgepjfajfdaodegphiolcelhlnkfm [2023-05-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-06] CHR Extension: (Trend Micro Toolbar) - C:\Users\loge_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2023-05-07] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [311808 2014-06-30] (Windows (R) Win 7 DDK provider) [Fichier non signé] S4 CrypKey License; C:\windows\system32\crypserv.exe [126976 2010-03-18] (CrypKey (Canada) Ltd.) [Fichier non signé] S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [48832 2023-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2023-01-05] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] S4 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S4 FspSvc; C:\Windows\System32\FspService.exe [2178888 2022-05-16] (Sentelic Corporation -> ) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-29] (Malwarebytes Inc. -> Malwarebytes) S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S4 PCManager Service; C:\Program Files\Microsoft PC Manager\MSPCManagerService.exe [79768 2023-03-07] (Microsoft Corporation -> MSPCManagerService) S4 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> ) S4 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [360368 2022-05-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S2 SamsungRapidSvc; C:\windows\System32\RAPID\SamsungRapidSvc.exe [30960 2021-07-31] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-05-23] (Microsoft Windows Publisher -> Microsoft Corporation) R3 VssEaseusProvider; C:\windows\system32\dllhost.exe /Processid:{9A056582-3D6F-467A-A9FB-06AEF4F96428} [21312 2021-10-06] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation) S3 Browser; %SystemRoot%\System32\browser.dll [X] S4 TmWscSvc; "C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe" [X] S2 WorkshopDbService; "C:\Program Files (x86)\ATRis_Technik\pgsql\bin\pg_ctl.exe" runservice -N WorkshopDbService -D "C:\ProgramData\WorkshopData\data2" -w ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 AppleKmdfFilter; C:\windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R3 Btcsrusb; C:\windows\System32\Drivers\brlinkusb.sys [205312 2022-01-05] (Microsoft Windows Hardware Compatibility Publisher -> BARROT Corporation.) R1 cbfs20; C:\windows\System32\drivers\cbfs20.sys [447560 2022-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) R0 EUBAKUP; C:\windows\System32\drivers\eubakup.sys [75848 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\windows\System32\drivers\EUBKMON.sys [55352 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [24152 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [556112 2023-01-05] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 euimgprt; C:\windows\System32\DRIVERS\euimgprt.sys [40024 2023-02-13] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R3 fspad_win764; C:\windows\system32\DRIVERS\fspad_win764.sys [209744 2022-05-16] (Sentelic Corporation -> Sentelic Corporation) R3 gFilterMouUsb; C:\windows\System32\drivers\gFilterMouUsb.sys [30568 2022-01-05] (KYE SYSTEMS CORP. -> KYE Systems Corp.) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [239544 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsl01710197; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{752FE420-FC22-423E-BBE5-42E4BFFD7B8D}\MpKslDrv.sys [212264 2023-05-29] (Microsoft Windows -> Microsoft Corporation) R1 NetworkX; C:\windows\System32\ckldrv.sys [30272 2010-03-19] (CrypKey (Canada) Inc. -> ) R2 NPF; C:\windows\SysWOW64\drivers\npf64.sys [36600 2020-03-31] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 RtlWlanu; C:\windows\System32\drivers\rtwlanu.sys [8231912 2019-12-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R0 SamsungRapidDiskFltr; C:\windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [309752 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 SamsungRapidFSFltr; C:\windows\System32\DRIVERS\SamsungRapidFSFltr.sys [120280 2019-06-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2022-02-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 veracrypt; C:\windows\System32\drivers\veracrypt.sys [825176 2022-01-06] (IDRIX SARL -> IDRIX) S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [163048 2022-07-25] (MEDIATEK INC. -> MBB) R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-29 19:54 - 2023-05-29 19:54 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-05-29 19:54 - 2023-05-29 19:54 - 000000000 ____D C:\Users\loge_\AppData\Local\Malwarebytes 2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-05-29 19:53 - 2023-05-29 19:53 - 000000000 ____D C:\Program Files\Malwarebytes 2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe 2023-05-29 18:22 - 2023-05-29 18:23 - 000000000 ____D C:\windows\system32\appmgmt 2023-05-29 13:44 - 2023-05-29 22:07 - 000000000 ____D C:\FRST 2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe 2023-05-29 10:14 - 2023-05-29 22:08 - 000000000 ____D C:\Users\loge_\AppData\Roaming\ZHP 2023-05-29 10:14 - 2023-05-29 10:33 - 000000000 ____D C:\Users\loge_\AppData\Local\ZHP 2023-05-29 10:01 - 2023-05-29 10:01 - 000000000 ____D C:\Users\loge_\AppData\Local\mbam 2023-05-29 09:56 - 2023-05-29 09:58 - 000000000 ____D C:\AdwCleaner 2023-05-27 18:48 - 2023-05-27 18:48 - 000099218 _____ C:\Users\loge_\Downloads\ResileLigne-Free.pdf 2023-05-24 23:35 - 2023-05-24 23:35 - 000454144 _____ C:\Users\loge_\Downloads\morta_niv_2016.xls 2023-05-24 16:47 - 2023-05-24 16:47 - 000605436 _____ C:\Users\loge_\Downloads\464f4746-e15e-477c-8b52-23ac7f5e8b0d.pdf 2023-05-24 11:38 - 2023-05-24 11:38 - 000328896 _____ C:\Users\loge_\Downloads\Scan_2023-05-24-111044451.pdf 2023-05-24 10:45 - 2023-05-24 10:45 - 000000207 _____ C:\windows\tweaking.com-regbackup-DESKTOP-JCGONUD-Windows-10-Pro-(64-bit).dat 2023-05-24 10:45 - 2023-05-24 10:45 - 000000000 ____D C:\RegBackup 2023-05-24 10:44 - 2023-05-24 11:03 - 000000214 _____ C:\windows\Tasks\CreateExplorerShellUnelevatedTask.job 2023-05-24 10:37 - 2023-05-24 10:37 - 000000000 ____D C:\Program Files (x86)\Tweaking.com 2023-05-24 10:36 - 2023-05-24 10:40 - 000388892 _____ C:\windows\Tweaking.com - Windows Repair Setup Log.txt 2023-05-23 23:35 - 2023-05-23 23:35 - 000000000 ___HD C:\$WinREAgent 2023-05-23 18:47 - 2023-05-23 18:47 - 000000000 ____D C:\KVRT2020_Data 2023-05-23 18:46 - 2023-05-23 18:47 - 105758392 _____ (AO Kaspersky Lab) C:\Users\loge_\Downloads\KVRT.exe 2023-05-23 18:25 - 2023-05-23 18:39 - 000000000 ____D C:\Users\loge_\Doctor Web 2023-05-23 18:23 - 2023-05-23 18:25 - 291425544 _____ C:\Users\loge_\Downloads\gzxvgqea.exe 2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll 2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll 2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll 2023-05-23 11:01 - 2023-05-23 11:04 - 000000000 ____D C:\Program Files (x86)\iMobie 2023-05-23 10:45 - 2023-05-23 10:45 - 000000000 ____D C:\ProgramData\4ukey for android 2023-05-21 18:42 - 2023-05-21 18:42 - 010098408 _____ (Realtek Semiconductor Corp.) C:\windows\SysWOW64\RsCRIcon.dll 2023-05-21 18:05 - 2023-05-21 18:33 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA Corporation 2023-05-21 18:05 - 2023-05-21 18:05 - 000004308 _____ C:\windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000004088 _____ C:\windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000004000 _____ C:\windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000003940 _____ C:\windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000003894 _____ C:\windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000003866 _____ C:\windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000003858 _____ C:\windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000003654 _____ C:\windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\AppData\Local\CEF 2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\Users\loge_\ansel 2023-05-21 18:05 - 2023-05-21 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2023-05-21 18:05 - 2018-03-24 03:19 - 002480064 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll 2023-05-21 18:05 - 2018-03-24 03:19 - 002137024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll 2023-05-21 18:05 - 2018-03-24 03:19 - 001310144 _____ (NVIDIA Corporation) C:\windows\system32\NvRtmpStreamer64.dll 2023-05-21 18:04 - 2023-05-21 18:04 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2023-05-21 18:04 - 2022-05-16 13:46 - 000541784 _____ (Khronos Group) C:\windows\system32\OpenCL.dll 2023-05-21 18:04 - 2018-03-24 03:19 - 000189784 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll 2023-05-21 18:04 - 2018-03-24 03:19 - 000152408 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll 2023-05-21 18:04 - 2018-03-24 03:19 - 000001951 _____ C:\windows\NvTelemetryContainerRecovery.bat 2023-05-21 18:04 - 2018-03-24 01:05 - 000138120 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe 2023-05-21 18:04 - 2017-12-09 00:25 - 000798520 _____ C:\windows\SysWOW64\vulkan-1.dll 2023-05-21 18:04 - 2017-12-09 00:25 - 000490808 _____ C:\windows\SysWOW64\vulkaninfo.exe 2023-05-21 18:04 - 2017-12-09 00:24 - 000928568 _____ C:\windows\system32\vulkan-1.dll 2023-05-21 18:04 - 2017-12-09 00:24 - 000591672 _____ C:\windows\system32\vulkaninfo.exe 2023-05-21 18:03 - 2023-05-21 18:42 - 000059928 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys 2023-05-21 18:03 - 2018-03-24 03:19 - 001682288 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll 2023-05-21 18:03 - 2018-03-24 03:19 - 000058816 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvhci.sys 2023-05-21 18:03 - 2018-03-24 03:19 - 000045600 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll 2023-05-21 18:01 - 2023-05-21 18:01 - 000000000 ____D C:\NVIDIA 2023-05-19 17:29 - 2023-05-19 17:29 - 000255530 _____ C:\Users\loge_\Downloads\NTG5.5_ok.jpg.crdownload 2023-05-19 17:25 - 2023-05-19 17:25 - 000253872 _____ C:\Users\loge_\Downloads\ntg4.5.pdf 2023-05-19 14:28 - 2023-05-19 14:28 - 000064483 _____ C:\Users\loge_\Downloads\NTG4_5 comand pin spec _ INDIWORK.jpeg 2023-05-15 15:41 - 2023-05-15 15:41 - 001248091 _____ C:\Users\loge_\Downloads\APRIL-QUESTIONNAIRE-DE-SANTE.pdf 2023-05-15 10:50 - 2023-05-15 10:50 - 000055460 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE .pdf 2023-05-15 10:06 - 2023-05-15 10:06 - 000052712 _____ C:\Users\loge_\Downloads\LISTE DOCUMENTS SC COURTAGE by AVICAP.pdf 2023-05-09 15:17 - 2023-05-09 15:17 - 000003044 _____ C:\windows\system32\Tasks\ATKOSD2 2023-05-09 15:13 - 2023-05-09 15:13 - 000000000 ____D C:\Users\loge_\Downloads\ATKPackage_Win7_64_Z100015 2023-05-09 14:54 - 2023-05-09 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 10 2023-05-09 14:34 - 2023-05-09 14:39 - 000375138 _____ C:\Users\loge_\Downloads\Contrat_prelevement_2023.pdf 2023-05-09 14:33 - 2023-05-09 14:46 - 000859864 _____ C:\Users\loge_\Downloads\Mandat-prelevement.pdf 2023-05-08 11:31 - 2023-05-08 11:31 - 011810247 _____ C:\Users\loge_\Downloads\MTB Price list 19.04.23.pdf 2023-04-27 19:14 - 2023-04-27 19:14 - 003181831 _____ C:\Users\loge_\Downloads\Brochure Finn Est.pdf 2023-04-24 17:13 - 2023-05-15 10:52 - 000000000 ___RD C:\Users\loge_\Downloads\banque 2023-04-24 16:00 - 2023-04-24 16:00 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf 2023-04-24 15:10 - 2023-04-24 15:10 - 000000000 ____D C:\Users\loge_\AppData\Local\iToolab 2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\Users\loge_\AppData\Roaming\TSMonitor 2023-04-24 14:53 - 2023-04-24 14:53 - 000000000 ____D C:\tenorshare 2023-04-24 14:52 - 2023-05-23 10:44 - 000000000 ____D C:\Program Files (x86)\Tenorshare 2023-04-24 14:52 - 2022-02-17 15:14 - 000165504 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudmdm.sys 2023-04-24 14:52 - 2022-02-17 15:14 - 000131712 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudbus.sys 2023-04-24 11:51 - 2023-04-24 11:51 - 012935249 _____ C:\Users\loge_\Downloads\CATALOGUE maison madrier contre collé.pdf 2023-04-24 11:51 - 2023-04-24 11:51 - 005754331 _____ C:\Users\loge_\Downloads\NOUVEAU maison ossature bois clé en main.pdf 2023-04-24 11:50 - 2023-04-24 11:50 - 002396735 _____ C:\Users\loge_\Downloads\Catalogue chalet en madrier, Yourte, Tonneau, Pod-converti-converti.pdf 2023-04-19 17:46 - 2023-04-19 17:46 - 012916823 _____ C:\Users\loge_\Downloads\Brochure-Logicobois.pdf 2023-04-09 11:54 - 2023-03-26 17:49 - 000135352 _____ C:\windows\system32\StartupInfo.xml 2023-04-09 11:53 - 2023-04-09 11:53 - 000001141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Manager.lnk 2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\ProgramData\Windows Master Setup 2023-04-09 11:53 - 2023-04-09 11:53 - 000000000 ____D C:\Program Files\Microsoft PC Manager 2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\Windows Master 2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\ToastNotificationManagerCompat 2023-04-09 11:52 - 2023-04-09 11:52 - 000000000 ____D C:\Users\loge_\AppData\Local\PC Manager 2023-04-09 11:51 - 2023-04-26 17:57 - 000000000 ____D C:\ProgramData\Windows Master 2023-03-26 19:36 - 2023-03-26 19:36 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.14 2023-03-26 17:46 - 2023-03-26 17:46 - 000000000 ____D C:\windows\system32\Drivers\mde 2023-03-24 15:30 - 2023-03-24 15:30 - 000016216 _____ C:\Users\loge_\Downloads\courrier-locataire-proprietaire.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-29 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\Registration 2023-05-29 22:01 - 2022-01-06 13:40 - 000000000 ____D C:\Program Files (x86)\Google 2023-05-29 22:00 - 2022-01-06 12:50 - 000000000 ____D C:\windows\system32\SleepStudy 2023-05-29 21:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-05-29 20:27 - 2019-12-07 11:14 - 000000000 ____D C:\windows\AppReadiness 2023-05-29 19:54 - 2019-12-07 11:14 - 000000000 ___HD C:\windows\ELAMBKUP 2023-05-29 19:51 - 2022-01-06 12:59 - 001761484 _____ C:\windows\system32\PerfStringBackup.INI 2023-05-29 19:51 - 2019-12-07 16:50 - 000775786 _____ C:\windows\system32\perfh00C.dat 2023-05-29 19:51 - 2019-12-07 16:50 - 000144898 _____ C:\windows\system32\perfc00C.dat 2023-05-29 19:51 - 2019-12-07 11:13 - 000000000 ____D C:\windows\INF 2023-05-29 19:50 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA 2023-05-29 19:47 - 2022-01-06 12:58 - 000000006 ____H C:\windows\Tasks\SA.DAT 2023-05-29 19:47 - 2022-01-05 21:36 - 000008192 ___SH C:\DumpStack.log.tmp 2023-05-29 19:47 - 2019-12-07 11:03 - 000786432 _____ C:\windows\system32\config\BBI 2023-05-29 18:51 - 2022-01-05 21:57 - 000000000 ____D C:\ProgramData\Trend Micro 2023-05-29 18:49 - 2022-01-05 22:05 - 000000000 ____D C:\Users\loge_\AppData\Local\Trend Micro 2023-05-29 18:47 - 2022-12-23 21:02 - 000000000 ____D C:\Users\loge_\WebComponents 2023-05-29 18:46 - 2022-01-05 22:51 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2023-05-29 18:44 - 2022-01-05 21:47 - 000000000 ____D C:\Users\loge_\AppData\Local\Packages 2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files\Bonjour 2023-05-29 18:22 - 2022-07-30 11:23 - 000000000 ____D C:\Program Files (x86)\Bonjour 2023-05-29 10:53 - 2019-12-07 11:03 - 000032768 _____ C:\windows\system32\config\ELAM 2023-05-29 09:58 - 2022-05-16 13:37 - 000000000 ____D C:\Users\loge_\AppData\Roaming\IObit 2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\ASUS 2023-05-29 09:58 - 2022-01-05 22:13 - 000000000 ____D C:\Program Files (x86)\ASUS 2023-05-28 10:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-05-27 22:25 - 2022-01-05 23:00 - 000000000 ____D C:\Users\loge_\AppData\Roaming\vlc 2023-05-27 09:27 - 2022-01-05 21:37 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-05-24 12:11 - 2019-12-07 11:03 - 000000000 ____D C:\windows\CbsTemp 2023-05-24 12:07 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_\AppData\Roaming\Microsoft\Windows 2023-05-24 11:34 - 2022-01-05 21:47 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-05-24 11:32 - 2022-01-06 12:50 - 000294816 _____ C:\windows\system32\FNTCACHE.DAT 2023-05-24 11:32 - 2022-01-05 21:40 - 000000000 ____D C:\windows\CSC 2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\PrintDialog 2023-05-24 11:10 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\ImmersiveControlPanel 2023-05-23 23:46 - 2022-01-06 12:51 - 000000000 ____D C:\Users\loge_ 2023-05-23 23:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SysWOW64\WinMetadata 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SystemResources 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\WinMetadata 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\oobe 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\migwiz 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\ShellExperiences 2023-05-23 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\bcastdvr 2023-05-23 23:42 - 2022-01-06 12:53 - 003015168 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll 2023-05-23 11:18 - 2022-06-02 10:22 - 000000000 ____D C:\Users\loge_\AppData\Local\CrashDumps 2023-05-23 11:04 - 2023-01-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie 2023-05-21 18:42 - 2022-05-16 13:51 - 000842592 _____ (Realsil Semiconductor Corporation) C:\windows\system32\Drivers\RtsUer.sys 2023-05-21 18:06 - 2022-01-06 16:23 - 000000000 ____D C:\Users\loge_\AppData\Local\NVIDIA 2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2023-05-21 18:05 - 2022-01-05 21:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2023-05-20 23:15 - 2022-01-05 21:49 - 000000000 ____D C:\Users\loge_\AppData\Local\PlaceholderTileLogoFolder 2023-05-20 23:15 - 2022-01-05 21:47 - 000000000 ____D C:\ProgramData\Packages 2023-05-19 11:43 - 2022-01-06 13:41 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-05-17 16:56 - 2022-01-06 13:40 - 000003884 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA 2023-05-17 16:56 - 2022-01-06 13:40 - 000003760 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore 2023-05-15 13:16 - 2022-04-13 18:46 - 000000000 ____D C:\Users\loge_\Downloads\garant location 2023-05-11 21:52 - 2022-01-06 12:58 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-05-11 21:52 - 2022-01-06 12:58 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-05-10 12:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\SecureBootUpdates 2023-05-10 11:25 - 2022-01-05 21:53 - 000000000 ____D C:\windows\system32\MRT 2023-05-10 11:22 - 2022-01-05 21:53 - 159583304 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2023-05-09 15:15 - 2022-01-05 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2023-05-09 14:54 - 2022-05-16 13:38 - 000000000 ____D C:\ProgramData\ProductData 2023-05-04 17:30 - 2019-12-07 11:14 - 000000000 ____D C:\windows\LiveKernelReports 2023-05-03 10:09 - 2022-01-05 21:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-05-03 10:06 - 2022-01-05 21:36 - 000000000 ____D C:\windows\system32\Drivers\wd ==================== Fichiers à la racine de certains dossiers ======== 2021-12-13 15:05 - 2021-12-13 15:05 - 000000376 _____ () C:\Users\loge_\AppData\Local\cx.dat 2022-01-05 22:05 - 2022-01-05 22:05 - 000000036 _____ () C:\Users\loge_\AppData\Local\housecall.guid.cache 2021-12-13 15:06 - 2021-12-13 15:06 - 000000032 _____ () C:\Users\loge_\AppData\Local\xc.dat ==================== SigCheckExt ========================= 2014-06-30 14:29 - 2014-06-30 14:29 - 000370176 _____ (Qualcomm Atheros) C:\windows\system32\AthCredentialProvider.dll 2022-09-21 16:19 - 2010-03-18 22:25 - 000126976 _____ (CrypKey (Canada) Ltd.) C:\windows\system32\Crypserv.exe 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\enppui.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\windows\system32\ensppui.dll 2022-01-15 15:19 - 2017-12-08 12:01 - 000713216 _____ C:\windows\system32\xvidcore.dll 2022-01-15 15:19 - 2017-12-08 12:01 - 000251392 _____ C:\windows\system32\xvidvfw.dll 2022-09-21 16:19 - 2010-01-20 18:28 - 000165888 ____R (Kenonic Controls) C:\windows\Ckconfig.exe 2022-09-21 16:19 - 2010-01-20 18:28 - 000011776 _____ C:\windows\Ckrfresh.exe 2022-06-02 10:37 - 1998-10-07 13:08 - 000327168 _____ (InstallShield Software Corporation) C:\windows\IsUn040c.exe 2022-06-02 10:38 - 2002-08-06 14:41 - 000087392 _____ (Twain Working Group) C:\windows\twain.dll 2022-09-21 16:11 - 2022-09-21 15:57 - 000004656 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS16GT.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000016384 _____ (Microsoft Corporation) C:\windows\SysWOW64\DS32GT.DLL 2022-12-16 18:00 - 1998-08-18 17:25 - 000169984 _____ C:\windows\SysWOW64\glut32.dll 2022-09-21 16:11 - 2022-09-21 15:57 - 001050896 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJET35.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJINT35.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSJTER35.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000168720 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSLTUS35.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000024848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBC32GT.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000072704 _____ (Microsoft Corporation) C:\windows\SysWOW64\ODBCTL32.DLL 2022-09-21 16:11 - 2022-09-21 15:57 - 000368912 _____ (Microsoft Corporation) C:\windows\SysWOW64\VBAR332.DLL 2022-01-15 15:19 - 2017-12-08 11:59 - 000638976 _____ C:\windows\SysWOW64\xvidcore.dll 2022-01-15 15:19 - 2017-12-08 11:59 - 000235520 _____ C:\windows\SysWOW64\xvidvfw.dll 2022-12-23 18:51 - 2020-03-31 15:13 - 000149504 _____ C:\windows\SysWOW64\Drivers\NpfDetect.dll 2022-12-23 18:51 - 2020-03-31 15:13 - 000046080 _____ C:\windows\SysWOW64\Drivers\NpfDetectApp.exe 2022-07-14 11:17 - 2022-07-14 11:17 - 000077824 _____ ( ) C:\Users\loge_\Downloads\guiformat.exe 2023-05-23 11:19 - 2017-02-16 00:00 - 000188416 _____ (ICSharpCode.net) C:\Users\loge_\Downloads\ICSharpCode.SharpZipLib.dll 2022-12-23 18:58 - 2022-12-23 18:58 - 001039609 _____ ( ) C:\Users\loge_\Downloads\IPCamSuite-1.2.26.8.exe 2022-12-23 21:02 - 2022-12-23 21:02 - 015407992 _____ ( ) C:\Users\loge_\Downloads\LocalServiceComponents.exe 2023-05-23 11:19 - 2017-02-16 00:00 - 000693760 _____ C:\Users\loge_\Downloads\Protect32.dll 2023-05-23 11:19 - 2017-02-16 00:00 - 000761856 _____ C:\Users\loge_\Downloads\Protect64.dll 2023-05-29 19:27 - 2023-05-29 19:27 - 003309256 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPCleaner (1).exe 2023-05-29 10:25 - 2023-05-29 10:26 - 003516616 _____ (Nicolas Coolman) C:\Users\loge_\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale en-us inherit {globalsettings} default {current} resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de démarrage Windows ----------------------------- identificateur {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \windows\system32\winload.exe description Windows 10 locale en-us inherit {bootloadersettings} allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \windows resumeobject {f30ed862-13ce-11ed-b1ba-5404a602c74d} nx OptIn bootmenupolicy Standard Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {67310fda-6ede-11ec-9265-eff7afe036b9} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {7c4e7a57-6ede-11ec-b0bb-fb2931f49ac1} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {f30ed862-13ce-11ed-b1ba-5404a602c74d} device partition=C: path \windows\system32\winresume.exe description Windows Resume Application locale en-us inherit {resumeloadersettings} allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Windows Memory Diagnostic locale en-us inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {7c4e7a58-6ede-11ec-b0bb-fb2931f49ac1} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================