Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Exécuté par Mohamed (administrateur) sur DESKTOP-5PHKA25 (MSI MS-7917) (12-01-2020 22:57:15)
Exécuté depuis C:\Users\Mohamed\Desktop
Profils chargés: Mohamed (Profils disponibles: Mohamed)
Platform: Windows 10 Home Version 1803 17134.1184 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\HidesterVPN\hidester-svc.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdHelper.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdHelper.x64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairOsdLauncher.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpnNotificationService.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Iain Patterson) [Fichier non signé] C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.1.286.0\McCSPServiceHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Mohamed\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [405032 2019-01-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [ExpressVpnNotificationService] => C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpnNotificationService.exe [773248 2019-02-21] (Express Vpn LLC -> ExpressVPN)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [82183912 2019-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [Steam] => C:\Program Files (x86)\steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [Discord] => C:\Users\Mohamed\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [FACEIT] => C:\Program Files\FACEIT\FACEIT.exe [81046232 2018-01-11] (FACE IT LIMITED -> FACEIT Ltd.)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36060048 2019-12-20] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mohamed\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1004484390-4179699781-4128157937-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [36864 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2153.120\Installer\chrmstp.exe [2019-11-28] (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-05-11]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks LLC -> Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-11-19]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {07678661-190C-448D-9CCC-A78DB3CB1EEB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {08524C2B-2A1D-4846-9805-1169A3F7E54A} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0C7FF760-315D-4676-B009-CEB563DCBB24} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {125F2CB8-6B14-458D-BFFB-1BB1340E7E1E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {17A0380F-BEA7-484A-8692-938E88266342} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-19] (Google Inc -> Google Inc.)
Task: {17B01FC2-A17E-4E3D-94FF-628AC9CF0289} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {1ABB590D-CBEE-42C4-997E-5B62EE7EC3A1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_pepper.exe [1452600 2019-06-11] (Adobe Inc. -> Adobe)
Task: {20D9A478-73C7-424F-82AD-20ECC194B3B1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-11] (Adobe Inc. -> Adobe)
Task: {244E56CD-6303-422F-A34F-D97B8FDF2AA9} - System32\Tasks\Start CorsairLink4 => C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe [27079376 2017-10-17] (Corsair Components, Inc. -> Corsair Components, Inc.)
Task: {26C7D5A0-2A2D-4724-A756-28B5BC8D37A0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-11] (Adobe Inc. -> Adobe Systems)
Task: {27822CA6-735B-429D-8DF9-34A02BFA0B33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35FC5230-4E75-44D8-8E50-F9A014F2F6A8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-1004484390-4179699781-4128157937-1001" /ENABLE
Task: {35FC5230-4E75-44D8-8E50-F9A014F2F6A8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {36A4D39B-422B-46CB-B060-A7A61CF6F31C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {39BDCECE-BDA0-4219-B301-10DEF7D9BFD6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {4421C469-7544-45BC-BDED-8C7DBC955AD6} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64920 2019-12-24] (Microsoft Corporation -> Microsoft)
Task: {452F3D18-D9C1-45F9-ABCE-8ED7FA0108D2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857552 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {4A2CC869-8A17-4FF5-91F1-2C7C2695C46C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4AB8B3E9-9DEC-4A93-8A81-486643368403} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1444144 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {4B6B61A0-4090-4B44-BA3E-3AF5E1773F0C} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
Task: {55220B12-8640-45F8-BF78-2D0A63FF4649} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {58072854-2846-45D2-BF17-8E45F8B749AC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CF1F741-F527-49B5-B73F-658B990F6B0E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {75DADC7E-6FBF-4E58-8480-9193B86FB065} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [994672 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {81DBB298-BF0A-488A-9C01-46BAA3B7C407} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {8920F4D8-2CC1-4BBA-B10C-33B065561658} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857552 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {8A769B50-A0AB-48A8-94E1-69230771ECA9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3487088 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B61FC7B-2502-4FEC-84A5-11EC1D1E1D08} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {A257E16B-99CE-4F37-A3D0-0631D59059C3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [695664 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8C66D6D-5AE4-4375-9752-DDCA1ACB9781} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {B18DC928-214C-426A-B27F-34D2A95B27D9} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B78EB30F-0736-45B1-BFEC-1EEC7E5E06C1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {BD513EF4-06B6-4BE0-B692-0DF743F63042} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-19] (Google Inc -> Google Inc.)
Task: {BEF5C94A-49BD-42DF-B759-FEA50AFCC8A9} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {C3EAAE70-A86F-4068-92FA-52ACD993282A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9A1F790-85CD-473E-9D8F-5D99A5B26C3A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D1DFFFD6-BA12-4D00-9F1A-15B51C72F708} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5F64D84-1B97-45FD-A728-D101C662F4BD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {DAAA3D7F-AD42-4516-94E0-E4DED63C9F7A} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {DD7C1A71-1DA3-4555-8C40-604D4208871E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E83CCCFD-A4FB-418D-891E-9F49DB61911B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{08c3891e-0f89-454b-8c02-b87f3a846d3c}: [DhcpNameServer] 10.171.0.1
Tcpip\..\Interfaces\{1c8d1f1e-caea-4b46-8bfa-e01ae9e69f67}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4b2a1311-45c6-4467-aa9d-1ddb38109841}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
DownloadDir: C:\Users\Mohamed\Downloads

FireFox:
========
FF DefaultProfile: t09m5q6p.default
FF ProfilePath: C:\Users\Mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\t09m5q6p.default [2020-01-07]
FF Notifications: Mozilla\Firefox\Profiles\t09m5q6p.default -> hxxps://twitter.com
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\t09m5q6p.default\Extensions\sp@avast.com.xpi [2019-02-07]
FF Extension: (Avast Online Security) - C:\Users\Mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\t09m5q6p.default\Extensions\wrc@avast.com.xpi [2018-07-21]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Notifications: Default -> hxxps://twitter.com; hxxps://www.bloggersideas.com; hxxps://www.chess.com; hxxps://www.pinterest.fr
CHR Profile: C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default [2020-01-12]
CHR Extension: (Slides) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-31]
CHR Extension: (Docs) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-31]
CHR Extension: (Google Drive) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-31]
CHR Extension: (YouTube) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-31]
CHR Extension: (uBlock Origin) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-01-05]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-18]
CHR Extension: (Sheets) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-31]
CHR Extension: (ExpressVPN : un proxy VPN qui vous donne accès à tout) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2019-11-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-01]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Avast Online Security) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-21]
CHR Extension: (Skype) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-10-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Mata) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\oakhnpcgdembaopakdnfkejfcaeipeik [2018-11-11]
CHR Extension: (Gmail) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-12]
CHR Profile: C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-12]
CHR Profile: C:\Users\Mohamed\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-06]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2153.120\elevation_service.exe [970088 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2019-12-13] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-12-02] (Microsoft Corporation -> Microsoft Corporation)
S3 CLink4Service; C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe [32976 2017-10-17] (Corsair Components, Inc. -> Corsair Components, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [47656 2019-01-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [368640 2019-02-21] (Iain Patterson) [Fichier non signé]
R2 HstService; C:\Program Files (x86)\HidesterVPN\hidester-svc.exe [445952 2017-10-23] () [Fichier non signé]
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [529912 2019-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S4 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-01-28] (Rivet Networks LLC -> Rivet Networks)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [408416 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.286.0\\McCSPServiceHost.exe [2226608 2019-06-13] (McAfee, LLC. -> McAfee, LLC.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2425136 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3303736 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2017-10-10] (Even Balance, Inc. -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [690424 2019-01-25] (Oracle Corporation -> Oracle Corporation)
S3 VSStandardCollectorService150; E:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM [X]
S2 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2016-03-19] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [144456 2016-01-22] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [303712 2018-10-25] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [46944 2018-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [23392 2018-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz148; C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [44648 2020-01-12] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28160 2019-02-21] (ExprsVPN LLC -> )
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [9369040 2018-02-04] (FACE IT LIMITED -> )
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [257016 2019-05-15] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-04-06] (Logitech Inc -> Logitech Inc.)
S3 MotioninJoyXFilter; C:\WINDOWS\System32\drivers\MijXfilt.sys [121416 2012-05-12] (Shenzhen Saikeware Technology Co., Ltd. -> MotioninJoy) [Fichier non signé]
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7689728 2018-04-12] (Microsoft Windows -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 SIUSBXP; C:\WINDOWS\system32\drivers\SiUSBXp.sys [19456 2017-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-10-09] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45024 2019-02-21] (ExprsVPN LLC -> The OpenVPN Project)
S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [235832 2019-01-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247216 2019-01-28] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-23] (Microsoft Windows -> Microsoft Corporation)
S3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-25] (Splitmedialabs Limited -> SplitmediaLabs Limited)
U1 aswbdisk; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-12 22:57 - 2020-01-12 22:57 - 000040672 _____ C:\Users\Mohamed\Desktop\FRST.txt
2020-01-12 22:56 - 2020-01-12 22:55 - 002573312 _____ (Farbar) C:\Users\Mohamed\Desktop\FRST64.exe
2020-01-12 22:55 - 2020-01-12 22:55 - 002573312 _____ (Farbar) C:\Users\Mohamed\Downloads\FRST64.exe
2020-01-12 22:46 - 2020-01-12 22:46 - 000003822 _____ C:\Users\Mohamed\Desktop\ZHPCleaner (R).txt
2020-01-12 22:29 - 2020-01-12 22:53 - 000001632 _____ C:\Users\Mohamed\Desktop\ZHPCleaner (S).txt
2020-01-12 22:23 - 2020-01-12 22:23 - 003329408 _____ (Nicolas Coolman) C:\Users\Mohamed\Downloads\ZHPCleaner.exe
2020-01-12 22:23 - 2020-01-12 22:23 - 000000942 _____ C:\Users\Mohamed\Desktop\ZHPCleaner.lnk
2020-01-12 22:07 - 2020-01-12 22:07 - 000447682 _____ C:\Users\Mohamed\Desktop\ZHPDiag.txt
2020-01-12 22:04 - 2020-01-12 22:53 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\ZHP
2020-01-12 22:04 - 2020-01-12 22:23 - 000000000 ____D C:\Users\Mohamed\AppData\Local\ZHP
2020-01-12 22:04 - 2020-01-12 22:04 - 003255680 _____ (Nicolas Coolman) C:\Users\Mohamed\Downloads\ZHPDiag3.exe
2020-01-12 22:04 - 2020-01-12 22:04 - 000000932 _____ C:\Users\Mohamed\Desktop\ZHPDiag.lnk
2020-01-12 13:09 - 2020-01-12 13:09 - 000000647 _____ C:\Users\Mohamed\Desktop\Brain Workshop.lnk
2020-01-12 13:09 - 2020-01-12 13:09 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\Brain Workshop
2020-01-12 13:09 - 2020-01-12 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brain Workshop
2020-01-12 13:08 - 2020-01-12 13:08 - 010825715 _____ (Paul Hoskinson & Jonathan Toomim ) C:\Users\Mohamed\Downloads\brainworkshop-4.8.4-win32-setup.exe
2020-01-12 13:08 - 2020-01-12 13:08 - 010825715 _____ (Paul Hoskinson & Jonathan Toomim ) C:\Users\Mohamed\Downloads\brainworkshop-4.8.4-win32-setup (1).exe
2020-01-10 17:07 - 2020-01-10 17:07 - 000248651 _____ C:\Users\Mohamed\Downloads\Niche-List.pdf
2020-01-10 08:17 - 2020-01-10 08:17 - 000361458 _____ C:\Users\Mohamed\Downloads\L1Systeme_Cours1 (1).pdf
2020-01-10 08:16 - 2020-01-10 08:16 - 000973264 _____ C:\Users\Mohamed\Downloads\L1Systeme_Cours2.pdf
2020-01-10 08:16 - 2020-01-10 08:16 - 000973264 _____ C:\Users\Mohamed\Downloads\L1Systeme_Cours2 (1).pdf
2020-01-10 08:11 - 2020-01-10 08:11 - 000509781 _____ C:\Users\Mohamed\Downloads\L1Systeme_Cours3.pdf
2020-01-09 18:27 - 2020-01-09 18:27 - 000233349 _____ C:\Users\Mohamed\Downloads\Domain-Name-Tips.pdf
2020-01-09 01:19 - 2020-01-09 01:19 - 000022240 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_699917724082.dll
2020-01-09 01:14 - 2020-01-09 01:14 - 000022240 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_261987718462364.dll
2020-01-09 00:20 - 2020-01-09 00:20 - 000207336 _____ C:\Users\Mohamed\Downloads\How-to-type-on-the-workbook.pdf
2020-01-09 00:19 - 2020-01-09 00:19 - 000689537 _____ C:\Users\Mohamed\Downloads\Blog-for-a-Living-Level-1-Workbook.pdf
2020-01-05 18:16 - 2020-01-05 18:16 - 000000179 _____ C:\Users\Mohamed\Downloads\200-exemple-valgrind.c
2019-12-30 14:26 - 2019-01-01 07:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2019-12-30 14:26 - 2019-01-01 07:46 - 005746688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2019-12-30 14:26 - 2019-01-01 07:15 - 004529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2019-12-28 01:46 - 2019-12-28 01:46 - 000613889 _____ C:\Users\Mohamed\Downloads\dico.zip
2019-12-25 18:53 - 2019-12-25 21:56 - 000000037 _____ C:\Users\Mohamed\Desktop\Flux.txt
2019-12-25 03:15 - 2019-12-25 03:15 - 000288878 _____ C:\Users\Mohamed\Desktop\Guide - START HERE Beginners Guide to Learning Game Hacking _ Guided Hacking.html
2019-12-25 03:15 - 2019-12-25 03:15 - 000000000 ____D C:\Users\Mohamed\Desktop\Guide - START HERE Beginners Guide to Learning Game Hacking _ Guided Hacking_files
2019-12-24 19:07 - 2019-12-24 19:07 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\NuGet
2019-12-24 19:04 - 2019-12-24 19:04 - 000000000 ____D C:\Users\Mohamed\source
2019-12-24 18:35 - 2019-12-26 02:22 - 000000000 ____D C:\Users\Mohamed\AppData\Local\.IdentityService
2019-12-24 18:35 - 2019-12-25 13:33 - 000000000 ____D C:\Users\Mohamed\Documents\Visual Studio 2019
2019-12-24 18:34 - 2018-04-11 06:46 - 000402944 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2019-12-24 18:34 - 2018-04-11 06:44 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2019-12-24 18:34 - 2018-04-11 05:12 - 000380416 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2019-12-24 18:34 - 2018-04-11 05:11 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2019-12-24 18:34 - 2018-04-10 21:41 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2019-12-24 18:34 - 2018-04-10 21:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2019-12-24 18:34 - 2018-04-10 21:15 - 017871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2019-12-24 18:34 - 2018-04-10 21:15 - 014058496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2019-12-24 18:34 - 2018-04-10 21:11 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2019-12-24 18:34 - 2018-04-10 21:11 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2019-12-24 18:34 - 2018-04-10 21:10 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2019-12-24 18:34 - 2018-04-10 21:10 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2019-12-24 18:34 - 2018-04-10 21:09 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2019-12-24 18:34 - 2018-04-10 21:08 - 003632640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2019-12-24 18:34 - 2018-04-10 21:08 - 002249728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2019-12-24 18:34 - 2018-04-10 21:08 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2019-12-24 18:34 - 2018-04-10 21:08 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2019-12-24 18:34 - 2018-04-10 21:08 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2019-12-24 18:34 - 2018-04-10 21:08 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2019-12-24 18:34 - 2018-04-10 21:07 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2019-12-24 18:34 - 2018-04-10 21:07 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2019-12-24 18:34 - 2018-04-10 21:07 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2019-12-24 18:34 - 2018-04-10 21:06 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2019-12-24 18:34 - 2018-04-10 21:06 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2019-12-24 18:34 - 2018-04-10 21:06 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2019-12-24 18:34 - 2018-04-10 21:06 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2019-12-24 18:34 - 2018-04-10 21:06 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2019-12-24 18:34 - 2018-04-10 21:05 - 002000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2019-12-24 18:34 - 2018-04-10 21:05 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2019-12-24 18:34 - 2018-04-10 21:04 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2019-12-24 18:34 - 2018-04-10 21:03 - 002818560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2019-12-24 18:34 - 2018-04-10 21:02 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2019-12-24 18:34 - 2018-04-10 21:02 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2019-12-24 18:33 - 2019-12-24 18:33 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2019-12-24 18:33 - 2019-12-24 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2019-12-24 18:33 - 2019-12-24 18:33 - 000000000 ____D C:\Program Files\Application Verifier
2019-12-24 18:33 - 2019-12-24 18:33 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\3082
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\2052
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1055
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1049
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1046
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1045
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1042
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1041
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1040
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1036
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1033
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1031
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1029
2019-12-24 18:30 - 2019-12-24 18:34 - 000000000 ____D C:\WINDOWS\system32\1028
2019-12-24 18:30 - 2019-12-24 18:30 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2019-12-24 18:30 - 2019-12-24 18:30 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2019-12-24 18:28 - 2019-12-24 18:34 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2019-12-24 18:28 - 2019-12-24 18:28 - 000001817 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2019-12-24 18:28 - 2019-12-24 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2019-12-24 18:28 - 2019-12-24 18:28 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2019-12-24 17:18 - 2019-12-24 19:02 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\Visual Studio Setup
2019-12-24 17:18 - 2019-12-24 17:18 - 000001377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2019-12-24 17:18 - 2019-12-24 17:18 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\vstelemetry
2019-12-24 17:18 - 2019-12-24 17:18 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\vs_installershell
2019-12-24 17:18 - 2019-12-24 17:18 - 000000000 ____D C:\Users\Mohamed\AppData\Local\ServiceHub
2019-12-24 17:17 - 2019-12-24 18:28 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2019-12-24 17:17 - 2019-12-24 17:17 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2019-12-24 17:16 - 2019-12-24 17:16 - 001382560 _____ (Microsoft Corporation) C:\Users\Mohamed\Downloads\vs_Community.exe
2019-12-22 20:12 - 2019-12-22 20:13 - 111891976 _____ (Oracle Corporation) C:\Users\Mohamed\Downloads\VirtualBox-6.1.0-135406-Win.exe
2019-12-22 20:11 - 2019-12-22 20:11 - 010923164 _____ C:\Users\Mohamed\Downloads\Oracle_VM_VirtualBox_Extension_Pack-6.1.0.vbox-extpack
2019-12-22 00:10 - 2019-12-22 00:10 - 000000739 _____ C:\Users\Mohamed\Downloads\095-exercice1.c
2019-12-21 18:11 - 2019-11-28 11:52 - 000094216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-12-21 18:11 - 2019-11-28 11:47 - 001641160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-12-21 18:11 - 2019-11-28 11:47 - 000790928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-12-21 18:11 - 2019-11-28 11:47 - 000490336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-12-21 18:11 - 2019-11-28 11:47 - 000396304 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-12-21 18:11 - 2019-11-28 11:46 - 001632112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-12-21 18:11 - 2019-11-28 11:46 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-12-21 18:11 - 2019-11-28 11:31 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-12-21 18:11 - 2019-11-28 11:31 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-12-21 18:11 - 2019-11-28 11:27 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-12-21 18:11 - 2019-11-28 11:27 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-12-21 18:11 - 2019-11-28 11:26 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2019-12-21 18:11 - 2019-11-28 11:25 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-12-21 18:11 - 2019-11-28 11:25 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-12-21 18:11 - 2019-11-28 10:09 - 001453624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-12-21 18:11 - 2019-11-28 10:07 - 000662840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-12-21 18:11 - 2019-11-28 10:06 - 001628704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-12-21 18:11 - 2019-11-28 10:06 - 000322360 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2019-12-21 18:11 - 2019-11-28 09:53 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-12-21 18:11 - 2019-11-28 09:53 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-12-21 18:11 - 2019-11-28 09:48 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-12-21 18:11 - 2019-11-28 09:47 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-12-21 18:11 - 2019-11-28 06:20 - 001040744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-12-21 18:11 - 2019-11-28 06:14 - 001224504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-12-21 18:11 - 2019-11-28 06:13 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-12-21 18:11 - 2019-11-28 06:13 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-12-21 18:11 - 2019-11-28 06:12 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-12-21 18:11 - 2019-11-28 06:11 - 000498072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-12-21 18:11 - 2019-11-28 06:10 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-12-21 18:11 - 2019-11-28 06:10 - 002571336 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-12-21 18:11 - 2019-11-28 06:10 - 002161072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-12-21 18:11 - 2019-11-28 06:10 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-12-21 18:11 - 2019-11-28 06:09 - 009080840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-12-21 18:11 - 2019-11-28 06:09 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-12-21 18:11 - 2019-11-28 06:09 - 001260784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-12-21 18:11 - 2019-11-28 06:09 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-12-21 18:11 - 2019-11-28 06:09 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-12-21 18:11 - 2019-11-28 06:09 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-12-21 18:11 - 2019-11-28 06:09 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-12-21 18:11 - 2019-11-28 06:09 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-12-21 18:11 - 2019-11-28 05:52 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-12-21 18:11 - 2019-11-28 05:51 - 000424208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-12-21 18:11 - 2019-11-28 05:49 - 006567472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-12-21 18:11 - 2019-11-28 05:49 - 001979960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-12-21 18:11 - 2019-11-28 05:49 - 001651040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-12-21 18:11 - 2019-11-28 05:49 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-12-21 18:11 - 2019-11-28 05:48 - 000603792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-12-21 18:11 - 2019-11-28 05:48 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-12-21 18:11 - 2019-11-28 05:43 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-12-21 18:11 - 2019-11-28 05:41 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-12-21 18:11 - 2019-11-28 05:41 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevQueryBroker.dll
2019-12-21 18:11 - 2019-11-28 05:40 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-12-21 18:11 - 2019-11-28 05:40 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-12-21 18:11 - 2019-11-28 05:40 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-12-21 18:11 - 2019-11-28 05:40 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-12-21 18:11 - 2019-11-28 05:39 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-12-21 18:11 - 2019-11-28 05:39 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-12-21 18:11 - 2019-11-28 05:39 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-12-21 18:11 - 2019-11-28 05:38 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-12-21 18:11 - 2019-11-28 05:38 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-12-21 18:11 - 2019-11-28 05:37 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-12-21 18:11 - 2019-11-28 05:36 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-12-21 18:11 - 2019-11-28 05:36 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-12-21 18:11 - 2019-11-28 05:36 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-12-21 18:11 - 2019-11-28 05:35 - 001418752 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-12-21 18:11 - 2019-11-28 05:35 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-12-21 18:11 - 2019-11-28 05:34 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-12-21 18:11 - 2019-11-28 05:29 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-12-21 18:11 - 2019-11-28 05:28 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-12-21 18:11 - 2019-11-28 05:28 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-12-21 18:11 - 2019-11-28 05:28 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-12-21 18:11 - 2019-11-28 05:28 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2019-12-21 18:11 - 2019-11-28 05:25 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-12-21 18:11 - 2019-11-28 04:13 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-12-21 18:11 - 2019-08-13 15:43 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-12-20 16:44 - 2019-12-20 16:44 - 000036778 _____ C:\Users\Mohamed\Downloads\liste_web_s4_math_aix.xlsx
2019-12-19 16:45 - 2019-12-19 16:45 - 000000000 ____D C:\AdwCleaner
2019-12-19 10:09 - 2019-12-19 10:09 - 001004221 _____ C:\Users\Mohamed\Downloads\is-5dfa630f6fd2f.webm
2019-12-18 21:55 - 2019-12-18 21:59 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\Golly
2019-12-18 21:55 - 2019-09-27 09:22 - 003387392 _____ C:\Users\Mohamed\Desktop\Golly.exe
2019-12-18 21:54 - 2019-12-18 21:55 - 005211833 _____ C:\Users\Mohamed\Downloads\golly-3.3-win-32bit.zip
2019-12-17 18:42 - 2019-12-17 18:42 - 001667228 _____ C:\Users\Mohamed\Downloads\0636-kali-linux.pdf
2019-12-17 18:19 - 2019-12-17 18:19 - 001721223 _____ C:\Users\Mohamed\Downloads\0580-programmation-mobile-avec-android.pdf
2019-12-13 15:12 - 2019-12-13 16:45 - 000000000 ____D C:\Program Files\CUAssistant
2019-12-13 11:24 - 2019-12-13 11:24 - 000579721 _____ C:\Users\Mohamed\Downloads\MRH ELLOUZATI MOHAMED.pdf
2019-12-13 11:23 - 2019-12-13 11:23 - 002975454 _____ C:\Users\Mohamed\Downloads\CONTRAT ELLOUZATI MOHAMED.pdf
2019-12-13 11:23 - 2019-12-13 11:23 - 000192266 _____ C:\Users\Mohamed\Downloads\MyNexity_74747018.pdf
2019-12-13 11:23 - 2019-12-13 11:23 - 000192266 _____ C:\Users\Mohamed\Downloads\MyNexity_74747018 (1).pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-12 22:57 - 2019-05-19 14:49 - 000000000 ____D C:\FRST
2020-01-12 22:47 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-12 22:07 - 2018-06-09 20:32 - 001770016 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-12 22:07 - 2018-04-12 17:18 - 000790992 _____ C:\WINDOWS\system32\perfh00C.dat
2020-01-12 22:07 - 2018-04-12 17:18 - 000150022 _____ C:\WINDOWS\system32\perfc00C.dat
2020-01-12 22:07 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2020-01-12 21:58 - 2018-06-09 20:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-12 21:58 - 2018-06-09 20:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-12 21:58 - 2017-10-24 16:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-12 21:57 - 2018-06-09 20:32 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1004484390-4179699781-4128157937-1001
2020-01-12 21:56 - 2017-10-09 16:36 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\Origin
2020-01-12 21:46 - 2018-06-09 20:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-01-12 21:43 - 2016-07-10 03:13 - 000000000 ____D C:\Program Files (x86)\steam
2020-01-12 21:41 - 2018-04-12 12:59 - 000000000 ____D C:\Users\Mohamed\AppData\Local\AVAST Software
2020-01-12 21:31 - 2018-06-09 20:28 - 000002476 _____ C:\Users\Mohamed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-12 21:31 - 2016-08-23 12:20 - 000000000 ___RD C:\Users\Mohamed\OneDrive
2020-01-12 14:08 - 2016-07-10 03:09 - 000000000 ____D C:\Users\Mohamed\AppData\Local\CrashDumps
2020-01-12 12:07 - 2018-06-09 20:32 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-01-12 02:59 - 2017-04-11 19:41 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\discord
2020-01-11 21:29 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-11 13:18 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-11 13:11 - 2018-06-09 20:28 - 000000000 ____D C:\Users\Mohamed
2020-01-10 22:00 - 2018-03-25 23:47 - 000000000 ____D C:\Users\Mohamed\AppData\LocalLow\Mozilla
2020-01-10 17:07 - 2019-02-25 23:20 - 000000000 ____D C:\ProgramData\VirtualBox
2020-01-10 17:07 - 2017-01-28 17:31 - 000000000 ____D C:\Users\Mohamed\.VirtualBox
2020-01-10 07:41 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-10 00:29 - 2018-10-31 21:50 - 000002317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-09 13:09 - 2018-06-08 11:30 - 000000000 ___DC C:\WINDOWS\Panther
2020-01-09 13:07 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-09 13:03 - 2019-03-19 13:37 - 000000000 ___HD C:\$WINDOWS.~BT
2020-01-09 13:03 - 2018-06-09 20:32 - 000003813 _____ C:\WINDOWS\diagwrn.xml
2020-01-09 13:03 - 2018-06-09 20:32 - 000003813 _____ C:\WINDOWS\diagerr.xml
2020-01-09 13:03 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Registration
2020-01-09 01:20 - 2019-11-07 11:17 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-01-09 01:20 - 2018-06-09 20:32 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-09 01:20 - 2018-06-09 20:32 - 000003354 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-08 16:38 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-01-07 15:35 - 2019-11-19 15:34 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2020-01-06 11:36 - 2019-02-16 21:22 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-01-06 01:04 - 2017-11-26 11:37 - 000000000 ____D C:\Users\Mohamed\AppData\Local\Packages
2019-12-30 14:26 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-12-27 03:25 - 2016-12-10 22:11 - 000000000 ____D C:\Users\Mohamed\AppData\Roaming\TS3Client
2019-12-24 18:33 - 2016-03-19 17:51 - 000000000 ____D C:\ProgramData\Package Cache
2019-12-24 18:30 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-12-24 18:28 - 2018-06-09 21:23 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-12-22 20:39 - 2017-01-28 17:51 - 000000000 ____D C:\Users\Mohamed\VirtualBox VMs
2019-12-22 12:33 - 2018-06-09 20:27 - 000485272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-12-22 12:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-12-22 12:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-12-22 12:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-12-21 17:45 - 2019-11-07 11:17 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-15 11:56 - 2017-10-24 16:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-12-15 02:11 - 2017-10-24 16:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-12-15 02:10 - 2018-10-20 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-12-15 02:10 - 2017-10-24 16:28 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-12-14 23:56 - 2016-03-19 18:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-12-14 23:54 - 2016-03-19 18:34 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-12-13 00:04 - 2017-09-07 18:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Fichiers à la racine de certains dossiers ========

2016-07-11 20:35 - 2016-07-11 20:35 - 003086696 _____ () C:\Users\Mohamed\speedfan_4-52_en_11074.exe
2016-07-10 03:13 - 2016-07-10 03:13 - 001444992 _____ () C:\Users\Mohamed\SteamSetup.exe
2016-07-11 20:46 - 2016-07-11 20:47 - 001224080 _____ ( ) C:\Users\Mohamed\winrar_5-31_en_9632_32.exe
2017-10-29 14:41 - 2017-10-29 20:37 - 000000117 _____ () C:\Users\Mohamed\AppData\Roaming\D2Info0
2017-10-29 14:41 - 2017-10-29 21:05 - 000000008 _____ () C:\Users\Mohamed\AppData\Roaming\DofusAppId0_1
2017-10-29 14:43 - 2017-10-29 15:09 - 000000008 _____ () C:\Users\Mohamed\AppData\Roaming\DofusAppId0_2
2016-11-10 23:17 - 2016-11-10 23:17 - 000002496 _____ () C:\Users\Mohamed\AppData\Local\recently-used.xbel
2017-01-28 17:50 - 2019-07-08 14:18 - 000007602 _____ () C:\Users\Mohamed\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================