Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Exécuté par coren (administrateur) sur DESKTOP-A71DKJS (HP OMEN by HP Desktop PC 880-p0xx) (20-12-2020 17:52:04)
Exécuté depuis D:\user\Bureau
Profils chargés: coren
Platform: Windows 10 Home Version 1909 18363.1256 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(HP Inc. -> ) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\OMEN Ally\HPOMNSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a7be790d73ea14eb\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_b6eaa96b215eb9da\x64\OmenCap.exe
(HP Inc. -> HP.Inc) C:\Program Files\HP\OMEN Ally\HPOMENBG.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WpcMon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_3e9ef682a1d3bf5b\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ROCCAT GmbH) [Fichier non signé] D:\IskuMonitor.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [704832 2017-04-27] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [RoccatIsku] => D:\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH) [Fichier non signé]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-75793469-3091950717-4245110902-1001\...\Run: [Steam] => D:\steam\steam.exe [3421984 2020-12-07] (Valve -> Valve Corporation)
HKU\S-1-5-21-75793469-3091950717-4245110902-1001\...\Run: [Discord] => C:\Users\coren\AppData\Local\Discord\app-0.0.307\Discord.exe
HKU\S-1-5-21-75793469-3091950717-4245110902-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-75793469-3091950717-4245110902-1001\...\Run: [Spotify] => C:\Users\coren\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-12] (Spotify AB -> Spotify Ltd)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {163665FA-74AD-403B-8F49-708662597523} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {265A012D-D388-4785-B2CE-3F1BF4C17596} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2C167471-9815-4381-AC5D-E315BE519424} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {37AE604C-3D30-4979-9B03-C71ABD2759FC} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {3C516D1B-82FA-4AF8-BDE5-C134BDAFAAB3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A490643-7B0C-4A36-975F-C5A925186127} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [219512 2018-12-24] (HP Inc. -> HP Inc.)
Task: {4E1F6C0B-5441-4401-AD1A-5170E2EDB848} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5355C0B4-840A-4CC9-847B-FDB615533139} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {59F76A47-0F9A-45DA-A29D-DAD095097F6C} - System32\Tasks\OMEN Command Center BackGround Process => C:\Program Files\HP\OMEN Ally\HPOMENBG.exe [255480 2017-05-11] (HP Inc. -> HP.Inc)
Task: {5AB4D433-F437-42CE-ABF6-AE2A49F7A00A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5CE33D98-9E17-4C2A-A935-9FC2CB1DD172} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-05-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {63EF222B-02AE-4A42-B56D-AA4F4D8CE850} - System32\Tasks\Téléchargement steam => D:\steam\Steam.exe [3421984 2020-12-07] (Valve -> Valve Corporation)
Task: {66E7D965-F1DE-499C-B96F-618185C4DAD3} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459264 2017-02-01] (HP Inc. -> )
Task: {759A0F3D-5FE1-461F-8177-FA0026429378} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {860C7418-D2B9-4C58-9B95-C070A2746690} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {8C7D8704-9092-4E80-916D-6B89ACC832B1} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-04-07] (HP Inc. -> HP Inc.)
Task: {918E2706-6113-410A-91A8-20E689C6A44C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {98863B4C-192D-49F2-8D18-81841673524C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.)
Task: {98FAEED2-38EC-492B-BBFF-A7AD0CA0CE82} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107368 2017-04-07] (HP Inc. -> HP Inc.)
Task: {9CAAF334-1BCC-400E-A545-5049635433E2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA076353-6961-4594-9A2E-369C51F65859} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0FBB502-D9F4-458D-A695-0EBBD70217B5} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-corentin.corneville@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {C4454FF4-1630-4BA7-AD4F-DE76E5E007A7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D4C19C4D-C020-4FCA-82AE-A7B094EB6009} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D5869193-1425-40AE-A47F-5647D38E2699} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDC07AD3-B9DA-41B9-A5C7-1D1AA2FDE3E8} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {ECA0C962-E284-4E41-987C-05F65C101294} - System32\Tasks\HPCeeScheduleForcoren => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2018-09-11] (HP Inc. -> HP Inc.)
Task: {F576084C-9FA3-474F-A6CB-E4B09B0DB18C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F722EA2A-141B-43E7-9087-DA1BCACC8278} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForcoren.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1d22031a-cb0b-455e-972c-5835582cfae8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2a607818-ca5c-42a4-9b2b-9d733fa6b4d3}: [DhcpNameServer] 192.168.1.1

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\coren\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-20]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\coren\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-12-19]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\coren\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-12-18]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-12-17] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default [2020-12-20]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-05-19]
CHR Extension: (Avast Online Security) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-05-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-19]
CHR Extension: (Chrome Media Router) - C:\Users\coren\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-19]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-05-20] (BattlEye Innovations e.K. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [134624 2017-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-06-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1318184 2017-05-15] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\AppHelperCap.exe [689912 2020-11-05] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-04-03] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\NetworkCap.exe [688888 2020-11-05] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_b6eaa96b215eb9da\x64\OmenCap.exe [523544 2020-06-14] (HP Inc. -> HP Inc.)
R2 HPOMNSVC; c:\Program Files\HP\OMEN Ally\HPOMNSVC.exe [618816 2017-05-11] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_3214041c94f8abcd\x64\SysInfoCap.exe [689400 2020-11-05] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_a7be790d73ea14eb\x64\TouchpointAnalyticsClientService.exe [476424 2020-11-04] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [630776 2017-02-06] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\Windows\IAStorAfsService\iaStorAfsService.exe [2398840 2017-05-24] (Intel Corporation - pGFX -> Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [958216 2020-12-17] (McAfee, LLC -> McAfee, LLC)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1776768 2020-06-14] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_3e9ef682a1d3bf5b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_3e9ef682a1d3bf5b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [23952 2018-04-06] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23952 2018-06-27] (HP Inc. -> HP Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2018-05-07] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2018-05-07] (Logitech Inc -> Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-05-07] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2018-05-07] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2018-05-07] (Logitech -> Logitech Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [46592 2017-02-23] (Realtek Semiconductor Corp. -> Realtek)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-10-26] (Razer Inc. -> Razer Inc)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-12-20 15:00 - 2020-12-20 15:00 - 000000000 ____D C:\Users\coren\AppData\Local\cache
2020-12-20 14:58 - 2020-12-20 14:59 - 000000000 ____D C:\Users\coren\AppData\Local\Movavi
2020-12-20 14:58 - 2020-12-20 14:58 - 000000000 ____D C:\Users\coren\AppData\Local\VideoEditorPlus
2020-12-20 14:58 - 2020-12-20 14:58 - 000000000 ____D C:\Users\coren\AppData\Local\CrashRpt
2020-12-20 14:56 - 2020-12-20 14:56 - 000012763 _____ C:\ProgramData\juutbubq.wrj
2020-12-20 14:56 - 2020-12-20 14:56 - 000000016 _____ C:\ProgramData\mntemp
2020-12-19 20:19 - 2020-12-19 20:40 - 000000364 ____C C:\WINDOWS\Tasks\HPCeeScheduleForcoren.job
2020-12-19 20:19 - 2020-12-19 20:19 - 000003256 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForcoren
2020-12-10 20:56 - 2020-12-10 20:56 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll
2020-12-10 20:56 - 2020-12-10 20:56 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-10 20:56 - 2020-12-10 20:56 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-10 20:56 - 2020-12-10 20:56 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2020-12-10 20:56 - 2020-12-10 20:56 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-10 20:56 - 2020-12-10 20:56 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-10 20:56 - 2020-12-10 20:56 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-10 20:56 - 2020-12-10 20:56 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-10 20:56 - 2020-12-10 20:56 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-12-10 20:56 - 2020-12-10 20:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-12-20 17:52 - 2020-05-17 01:48 - 000000000 ___DC C:\FRST
2020-12-20 17:47 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-20 16:36 - 2020-08-06 01:11 - 000000000 ____D C:\Users\coren\AppData\Roaming\discord
2020-12-20 16:35 - 2020-08-06 01:11 - 000000000 ____D C:\Users\coren\AppData\Local\Discord
2020-12-20 16:21 - 2018-12-14 20:17 - 000000000 ___DC C:\Program Files (x86)\Google
2020-12-20 14:52 - 2020-03-14 16:23 - 001840160 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-20 14:52 - 2019-03-19 13:00 - 000791936 _____ C:\WINDOWS\system32\perfh00C.dat
2020-12-20 14:52 - 2019-03-19 13:00 - 000150004 _____ C:\WINDOWS\system32\perfc00C.dat
2020-12-20 14:52 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-12-20 14:48 - 2018-12-14 19:54 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-12-20 14:46 - 2020-03-14 15:19 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2020-12-20 14:46 - 2020-01-30 21:53 - 000000000 ____D C:\Users\coren\AppData\Local\Spotify
2020-12-20 14:46 - 2020-01-30 21:49 - 000000000 ____D C:\Users\coren\AppData\Roaming\Spotify
2020-12-20 12:26 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-20 12:16 - 2020-03-14 15:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-20 09:58 - 2019-05-13 17:38 - 000000000 ____D C:\Users\coren\AppData\Roaming\DS4Windows
2020-12-20 09:58 - 2019-02-18 12:32 - 000000000 ___DC C:\Users\coren\AppData\Local\Ubisoft Game Launcher
2020-12-19 19:24 - 2019-02-18 12:32 - 000000000 ___DC C:\Users\coren\AppData\Local\D3DSCache
2020-12-19 18:46 - 2017-09-25 09:51 - 000000000 ___DC C:\ProgramData\Realtek
2020-12-19 18:17 - 2020-07-17 00:14 - 000000000 ____D C:\Users\Public\Logi
2020-12-19 13:14 - 2020-05-20 09:27 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-19 13:14 - 2020-05-20 09:27 - 000002270 ____C C:\ProgramData\Bureau\Microsoft Edge.lnk
2020-12-18 21:30 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-18 21:30 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-17 03:29 - 2020-03-14 15:19 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-75793469-3091950717-4245110902-1001
2020-12-17 03:29 - 2020-03-14 15:14 - 000002408 ____C C:\Users\coren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-17 03:29 - 2019-02-18 12:33 - 000000000 __RDC C:\Users\coren\OneDrive
2020-12-11 07:11 - 2019-02-15 00:29 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-10 23:58 - 2020-03-14 15:12 - 000525216 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-10 23:58 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-10 23:58 - 2019-02-18 12:32 - 000000000 __RDC C:\Users\coren\3D Objects
2020-12-10 23:58 - 2017-03-18 04:53 - 000000000 _RHDC C:\Users\Public\AccountPictures
2020-12-10 20:57 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-10 20:08 - 2020-03-14 15:14 - 000000000 ____D C:\Users\coren
2020-12-06 20:59 - 2018-12-14 20:08 - 000000000 ___DC C:\Users\coren\AppData\Local\Packages
2020-12-04 21:20 - 2018-12-14 19:59 - 000000000 ___DC C:\WINDOWS\system32\Drivers\wd
2020-11-28 02:36 - 2020-05-20 09:21 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-28 02:36 - 2020-05-20 09:21 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-25 20:35 - 2020-03-14 15:19 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-22 14:42 - 2019-02-18 12:33 - 000000000 ___DC C:\Users\coren\AppData\Roaming\vlc
2020-11-22 01:02 - 2020-10-03 23:19 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Fichiers à la racine de certains dossiers ========

2019-05-18 11:51 - 2019-05-19 18:23 - 000001456 _____ () C:\Users\coren\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2019-06-29 12:04 - 2019-06-29 12:06 - 000000063 _____ () C:\Users\coren\AppData\Local\Autosofted License.txt

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================