Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-05-2023
Exécuté par Utilisateur (administrateur) sur DESKTOP-PRQJN0U (Gigabyte Technology Co., Ltd. H610M S2H DDR4) (23-05-2023 18:42:23)
Exécuté depuis C:\Users\Utilisateur\Downloads\FRST64.exe
Profils chargés: Utilisateur
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1702 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.211.916.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <4>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23032.196.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23032.196.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.50\msedgewebview2.exe <6>
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (HortiMaX) [Fichier non signé] C:\Users\Utilisateur\AppData\Roaming\NTSystem\ntlhost.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <33>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (FingerPower Digital Technology Ltd. -> ) C:\Users\Utilisateur\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe
(services.exe ->) (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_670360bdb5a40a0d\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ee6fe91a35eb809c\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ee6fe91a35eb809c\RtkAudUService64.exe [3450728 2022-02-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088752 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-11-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37132752 2023-05-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-04-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-05-22] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Cheat Lab] => C:\Users\Utilisateur\AppData\Roaming\Cheat Lab\Cheat Lab 2.62.exe [148942848 2023-05-19] (Jia Hao) [Fichier non signé]
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Taskbarify] => C:\Users\Utilisateur\AppData\Local\Programs\Taskbarify\Taskbarify.exe (Pas de fichier)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Pas de fichier) <==== ATTENTION
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152216 2023-05-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2049020300-805394628-3670538318-1001\...\Run: [NTSystem] => C:\Users\Utilisateur\AppData\Roaming\NTSystem\ntlhost.exe [761934848 2023-05-22] (HortiMaX) [Fichier non signé] <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\113.0.5672.127\Installer\chrmstp.exe [2023-05-19] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0A709068-3938-4F25-BCAC-6E293CD5BA97} - System32\Tasks\ctfmon => C:\Windows\tracing\ctfmon.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {0A7F10DA-6B77-42DE-877D-1CF267A9C793} - System32\Tasks\NVIDIA Share => C:\Intel\Logs\NVIDIA Share.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {0D371E78-43BF-4CE6-AEF1-B978079BB3D5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D5F4454-9B0B-4CB5-B69C-519F120ED8B2} - System32\Tasks\sihosts => C:\Recovery\AutoApply\sihost.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {0ED6E819-B439-46ED-820B-DB3EA9AC6DF1} - System32\Tasks\RtkAudUService64R => C:\AI_RecycleBin\{FE632E8C-D85E-4EBC-940D-84930711836D}\0\Gamecaster\watermark\RtkAudUService64.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {1593FAFA-B107-428A-956A-F17039250ACE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17C5C5AE-098F-4AAD-9966-A975EB30A2A6} - System32\Tasks\GoogleUpdateTaskMachineUA{227B44A8-00A7-4F04-9E10-1EC530825AD4} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-14] (Google LLC -> Google LLC)
Task: {1F007CA9-D975-4CE2-97A5-4E075E4AD077} - System32\Tasks\RtkAudUService64 => C:\AI_RecycleBin\{FE632E8C-D85E-4EBC-940D-84930711836D}\0\Gamecaster\watermark\RtkAudUService64.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {25429C34-C113-4B05-951F-D8B355FE25E6} - System32\Tasks\conhost => C:\Windows\ServiceState\wmansvc\conhost.exe [1725952 2023-05-22] () [Fichier non signé] ->
Task: {2CFF43A7-F23B-4FBB-A130-08D07E35D9C3} - System32\Tasks\iCUEDevicePluginHost => "C:\Users\Default User\iCUEDevicePluginHost.exe" (Pas de fichier)
Task: {2EE07324-F110-406F-97D4-499178556FEC} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2F325A4B-7E80-4B6B-BC24-07729E115544} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38070340-E215-46B1-AE59-19F2E4F5D950} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {392E77AC-B276-43A0-A0D5-2DDE085798F7} - System32\Tasks\chrome => "C:\Riot Games\VALORANT\live\chrome.exe" (Pas de fichier)
Task: {3D307C80-F65A-4532-B812-EC51FD776E3D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B0C1DF4-7049-414C-A55F-B297F048030F} - System32\Tasks\SearchHostS => "C:\Program Files\7-Zip\Lang\SearchHost.exe" (Pas de fichier)
Task: {51B64079-ACB1-477D-9E68-A5F15A687583} - System32\Tasks\Pro_SwapperP => C:\Program Files\Kodi\addons\audioencoder.kodi.builtin.aac\Pro_Swapper.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {5202DDE9-F918-4F00-84EC-0404A1561232} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {58BE1AA9-17CE-4DF8-8F5E-FFF1B705755A} - System32\Tasks\GoogleUpdateTaskMachineQC => C:\Program Files\Google\Chrome\updater.exe [10345808 2023-05-22] (Notepad++ -> ) [Fichier non signé] <==== ATTENTION
Task: {5EDF8A15-2905-4406-B1AB-12FFDEAD6B7D} - System32\Tasks\ctfmonc => C:\Windows\tracing\ctfmon.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {684182F6-343B-4FAF-A641-5134BB4440F5} - System32\Tasks\Realtek => C:\Program Files\Realtek\Realtek High Definition Audio\Updater.exe [2149377 2023-05-22] (Realtek) [Fichier non signé]
Task: {6B401AF6-CEB0-4EB3-A923-81835FA737F4} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-19] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {72635115-C9E3-4474-902B-098B0F055583} - System32\Tasks\WMIRegistrationService => C:\Users\Utilisateur\Mes documents\WMIRegistrationService.exe [0 0000-00-00] () [Accès refusé]
Task: {733FA22C-E7D0-46A3-98F3-5030763199B7} - System32\Tasks\NVIDIA ShareN => C:\Intel\Logs\NVIDIA Share.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {7411B2BD-75B8-42F2-83BE-C92F3D21C3E1} - System32\Tasks\conhostc => C:\Windows\ServiceState\wmansvc\conhost.exe [1725952 2023-05-22] () [Fichier non signé] ->
Task: {75BF345F-AE97-4FBD-BE47-AC313508F27A} - System32\Tasks\SearchHost => "C:\Program Files\7-Zip\Lang\SearchHost.exe" (Pas de fichier)
Task: {75C3FA81-F03F-4C63-B830-CB18CC0109C0} - System32\Tasks\nvsphelper64n => C:\Program Files (x86)\Temp\nvsphelper64.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {7A164189-6E31-4BB5-AB70-D39B1B74E976} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7C87E338-A084-4B95-B18A-A357AF0EE7A4} - System32\Tasks\Spotify => C:\ESD\Spotify.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {7D05570D-485B-4250-BBEE-CC9EC79E152F} - System32\Tasks\sihost => C:\Recovery\AutoApply\sihost.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {822D8F04-E0A0-44C6-AE73-8B92DBCED19E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {865E7ED1-5724-4E71-9569-1359BC0092FC} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
Task: {95615980-7FAD-4E8E-9715-129AFDDC7B70} - System32\Tasks\WidgetService => C:\Recovery\AutoApply\CustomizationFiles\WidgetService.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {B2647E59-A128-4B0C-B85A-040B1FE6F802} - System32\Tasks\FoxitPDFReaderUpdateService => "C:\Riot Games\VALORANT\live\Engine\FoxitPDFReaderUpdateService.exe" (Pas de fichier)
Task: {B5810BF4-7E75-4D71-8896-7DE66978CF20} - System32\Tasks\SpotifyS => C:\ESD\Spotify.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {B8B674DF-CFAD-4246-824D-C4DF488F9658} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [257408 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {BAF8ECD6-2EF8-411C-A2F2-D70CC3633950} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [392264 2022-09-30] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {BEEE37BF-0797-4D76-B5FD-49572D49D7F6} - System32\Tasks\FoxitPDFReaderUpdateServiceF => "C:\Riot Games\VALORANT\live\Engine\FoxitPDFReaderUpdateService.exe" (Pas de fichier)
Task: {C40DF791-4EB8-48A0-8EE4-CB2A07B2891A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C541CE33-A7BB-493A-8583-0BDFBDAC8B8A} - System32\Tasks\nvsphelper64 => C:\Program Files (x86)\Temp\nvsphelper64.exe [1725952 2023-05-22] () [Fichier non signé] <==== ATTENTION
Task: {CB292AD5-1CA5-42B2-A055-ABA566145340} - System32\Tasks\chromec => "C:\Riot Games\VALORANT\live\chrome.exe" (Pas de fichier)
Task: {D306D780-BAFB-41C6-B49F-7D6FEB560606} - System32\Tasks\WMIRegistrationServiceW => C:\Users\Utilisateur\Mes documents\WMIRegistrationService.exe [0 0000-00-00] () [Accès refusé]
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {E468C4E7-2638-4641-9B84-88582B1CBE20} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7F56087-B54E-4B4F-97E1-9E124D974597} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F120EBBF-7D6B-4398-A57F-4C8B0D2565D1} - System32\Tasks\Pro_Swapper => C:\Program Files\Kodi\addons\audioencoder.kodi.builtin.aac\Pro_Swapper.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {F5DDA0CD-909B-4383-8BFA-5488B08EE97F} - System32\Tasks\GoogleUpdateTaskMachineCore{D584B214-3193-4D87-9DBF-7C018B5D671B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-14] (Google LLC -> Google LLC)
Task: {F8C8B9FA-73B0-4022-A5DF-9579976D57B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F9DD1846-A238-4C0B-9A5B-792E0912B9CC} - System32\Tasks\WidgetServiceW => C:\Recovery\AutoApply\CustomizationFiles\WidgetService.exe [1725952 2023-05-22] () [Fichier non signé]
Task: {FBB46285-A152-46DE-A8F0-BD8574DEEB05} - System32\Tasks\iCUEDevicePluginHosti => "C:\Users\Default User\iCUEDevicePluginHost.exe" (Pas de fichier)
Task: {FE5B0856-32CD-4AB4-948D-B687D9D0F4AC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1d340cff-cab1-495a-9e1d-302c5ea952d9}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-23]
Edge Extension: (Edge relevant text changes) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-22]

FireFox:
========
FF DefaultProfile: l4af656h.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\l4af656h.default [2023-05-22]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\iy199c3d.default-release [2023-05-22]
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2023-05-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-18]
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-11]
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-05-23]
CHR Notifications: Profile 1 -> hxxps://mail.google.com; hxxps://web.snapchat.com; hxxps://www.tiktok.com
CHR Session Restore: Profile 1 -> est activé.
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-05-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23]
CHR Extension: (Online Security) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-05-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-18]
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-05-23]
CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-05-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-05-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-28]
CHR Extension: (Toby for Chrome) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hddnkoipeenegfoeaoibdmnaalmgkpip [2023-05-23]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-05-23]
CHR Extension: (Online Security) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-05-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-19]
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKU\S-1-5-21-2049020300-805394628-3670538318-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-03-11] (BattlEye Innovations e.K. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-12-18] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-19] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [147824 2022-06-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [856472 2023-05-21] (McAfee, LLC -> McAfee, LLC)
R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Fichier non signé]
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [127360 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16552248 2023-01-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-05-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [749136 2022-09-01] (Oracle Corporation -> Oracle Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11023152 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12184416 2023-05-21] (KRAFTON, Inc. -> KRAFTON, Inc)
R2 GigabyteUpdateService; C:\Windows\system32\GigabyteUpdateService.exe [869032 2023-05-23] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 KingoSoftService; C:\Users\Utilisateur\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe "C:\Users\Utilisateur\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe"
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-08-06] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-08-06] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2022-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2022-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-05-23] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [103064 2013-05-02] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
S3 DroidCamVideo; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R0 fse; C:\Windows\System32\drivers\fse.sys [218464 2023-02-26] (Microsoft Windows -> Microsoft Corporation)
S3 Gamecaster_Dummy; C:\Windows\system32\drivers\gcastspk.sys [36048 2021-07-20] (SplitmediaLabs Limited -> SplitmediaLabs Limited)
R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [45248 2022-11-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys [210600 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 MpKslb8eef3fc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{56B570BB-9068-4B15-AE7F-B4D941976CAB}\MpKslDrv.sys [212264 2023-05-23] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-11-09] (Nvidia Corporation -> NVIDIA Corporation)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [203672 2013-05-02] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [242624 2022-09-01] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [252528 2022-09-01] (Oracle Corporation -> Oracle Corporation)
R1 VBoxSup; C:\Windows\system32\DRIVERS\VBoxSup.sys [1081560 2022-09-01] (Oracle Corporation -> Oracle Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22676992 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-02-02] (Microsoft Windows -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
S3 WOVAD; C:\Windows\System32\drivers\womic.sys [51192 2022-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 xhunter1; C:\Windows\xhunter1.sys [1447240 2023-05-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
U3 aswbdisk; pas de ImagePath
S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-23 18:42 - 2023-05-23 18:43 - 000037986 _____ C:\Users\Utilisateur\Downloads\FRST.txt
2023-05-23 18:42 - 2023-05-23 18:42 - 000000000 ____D C:\FRST
2023-05-23 18:41 - 2023-05-23 18:41 - 002382848 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64.exe
2023-05-23 18:37 - 2023-05-23 18:37 - 000000000 ____D C:\Windows\Microsoft Antimalware
2023-05-23 17:59 - 2023-05-23 17:59 - 000771570 _____ C:\Windows\system32\perfh00C.dat
2023-05-23 17:59 - 2023-05-23 17:59 - 000148698 _____ C:\Windows\system32\perfc00C.dat
2023-05-23 17:54 - 2023-05-23 17:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\OneDrive
2023-05-22 21:25 - 2023-05-22 21:25 - 003348036 _____ C:\Users\Utilisateur\Downloads\HxDSetup (1).zip
2023-05-22 20:56 - 2023-05-22 20:56 - 000001222 _____ C:\Users\Utilisateur\Downloads\Massai_To_Goku_Black.json
2023-05-22 20:50 - 2023-05-22 20:50 - 044551854 _____ C:\Users\Utilisateur\Downloads\Midnight.rar
2023-05-22 20:48 - 2023-05-22 20:48 - 011335192 _____ ( ) C:\Users\Utilisateur\Downloads\Galaxy Swapper v2 - Linkvertise Downloader_Fd-XC71.exe
2023-05-22 20:48 - 2023-05-22 20:48 - 005194841 _____ (Wslt#7904) C:\Users\Utilisateur\Downloads\Galaxy Swapper v2.exe
2023-05-22 20:24 - 2023-05-22 20:25 - 000001124 _____ C:\Users\Public\Desktop\Skin Swapper.lnk
2023-05-22 20:17 - 2023-05-22 20:17 - 000000290 __RSH C:\ProgramData\ntuser.pol
2023-05-22 19:56 - 2023-05-22 20:08 - 000000994 _____ C:\Users\Utilisateur\Documents\List.txt
2023-05-22 19:55 - 2023-05-22 19:55 - 000000381 _____ C:\Users\Utilisateur\Documents\Activer editeur de strategie de groupe locale.bat
2023-05-22 19:39 - 2023-05-22 19:39 - 000027048 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_171556534998851.dll
2023-05-22 18:30 - 2023-05-22 18:30 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Gh
2023-05-22 18:26 - 2023-05-22 18:26 - 000003332 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineQC
2023-05-22 18:26 - 2023-05-22 18:26 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\NTSystem
2023-05-22 18:16 - 2023-05-23 17:33 - 000000000 ____D C:\ProgramData\OracleGamecaster-ver8.6.2.3
2023-05-22 18:16 - 2023-05-22 18:16 - 008051712 _____ (AMD) C:\Users\Utilisateur\AppData\Roaming\9FxBbJ4S.exe
2023-05-22 18:16 - 2023-05-22 18:16 - 000684984 _____ (Mozilla Foundation) C:\Users\Utilisateur\AppData\LocalLow\freebl3.dll
2023-05-22 18:16 - 2023-05-22 18:16 - 000627128 _____ (Mozilla Foundation) C:\Users\Utilisateur\AppData\LocalLow\mozglue.dll
2023-05-22 18:16 - 2023-05-22 18:16 - 000254392 _____ (Mozilla Foundation) C:\Users\Utilisateur\AppData\LocalLow\softokn3.dll
2023-05-22 18:07 - 2023-05-22 18:07 - 000000000 _____ C:\ProgramData\settings.ini
2023-05-22 18:05 - 2023-05-20 00:30 - 036952296 _____ (Alexander Roshalov) C:\Users\Utilisateur\Desktop\MultiHack Launcher.exe
2023-05-22 18:02 - 2023-05-22 18:02 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\SystemCache
2023-05-22 17:57 - 2023-05-22 17:58 - 000000000 ___HD C:\Users\Utilisateur\AppData\Local\4f9db7ea1362200b115846e3a01f6cbd
2023-05-22 17:54 - 2023-05-22 20:39 - 000000000 ____D C:\Program Files\Galaxy Swapper 2
2023-05-22 17:43 - 2023-05-22 17:43 - 002149376 ____S (Realtek) C:\Users\Utilisateur\AppData\Roaming\conhost_f.exe
2023-05-22 17:43 - 2023-05-22 17:43 - 001725952 ____S () C:\Users\Utilisateur\Documents\WMIRegistrationService.exe
2023-05-22 17:43 - 2023-05-22 17:43 - 001725952 ____S () C:\Users\Utilisateur\AppData\Roaming\f_fontreviewmonitordllrefsvc.exe
2023-05-22 17:43 - 2023-05-22 17:43 - 000003728 _____ C:\Windows\system32\Tasks\RtkAudUService64R
2023-05-22 17:43 - 2023-05-22 17:43 - 000003684 _____ C:\Windows\system32\Tasks\FoxitPDFReaderUpdateServiceF
2023-05-22 17:43 - 2023-05-22 17:43 - 000003670 _____ C:\Windows\system32\Tasks\Pro_SwapperP
2023-05-22 17:43 - 2023-05-22 17:43 - 000003664 _____ C:\Windows\system32\Tasks\WMIRegistrationServiceW
2023-05-22 17:43 - 2023-05-22 17:43 - 000003642 _____ C:\Windows\system32\Tasks\WidgetServiceW
2023-05-22 17:43 - 2023-05-22 17:43 - 000003632 _____ C:\Windows\system32\Tasks\iCUEDevicePluginHosti
2023-05-22 17:43 - 2023-05-22 17:43 - 000003610 _____ C:\Windows\system32\Tasks\nvsphelper64n
2023-05-22 17:43 - 2023-05-22 17:43 - 000003602 _____ C:\Windows\system32\Tasks\SearchHostS
2023-05-22 17:43 - 2023-05-22 17:43 - 000003600 _____ C:\Windows\system32\Tasks\conhostc
2023-05-22 17:43 - 2023-05-22 17:43 - 000003588 _____ C:\Windows\system32\Tasks\chromec
2023-05-22 17:43 - 2023-05-22 17:43 - 000003582 _____ C:\Windows\system32\Tasks\NVIDIA ShareN
2023-05-22 17:43 - 2023-05-22 17:43 - 000003574 _____ C:\Windows\system32\Tasks\sihosts
2023-05-22 17:43 - 2023-05-22 17:43 - 000003568 _____ C:\Windows\system32\Tasks\ctfmonc
2023-05-22 17:43 - 2023-05-22 17:43 - 000003550 _____ C:\Windows\system32\Tasks\SpotifyS
2023-05-22 17:43 - 2023-05-22 17:43 - 000003470 _____ C:\Windows\system32\Tasks\RtkAudUService64
2023-05-22 17:43 - 2023-05-22 17:43 - 000003426 _____ C:\Windows\system32\Tasks\FoxitPDFReaderUpdateService
2023-05-22 17:43 - 2023-05-22 17:43 - 000003410 _____ C:\Windows\system32\Tasks\Pro_Swapper
2023-05-22 17:43 - 2023-05-22 17:43 - 000003406 _____ C:\Windows\system32\Tasks\WMIRegistrationService
2023-05-22 17:43 - 2023-05-22 17:43 - 000003382 _____ C:\Windows\system32\Tasks\WidgetService
2023-05-22 17:43 - 2023-05-22 17:43 - 000003372 _____ C:\Windows\system32\Tasks\iCUEDevicePluginHost
2023-05-22 17:43 - 2023-05-22 17:43 - 000003352 _____ C:\Windows\system32\Tasks\nvsphelper64
2023-05-22 17:43 - 2023-05-22 17:43 - 000003344 _____ C:\Windows\system32\Tasks\SearchHost
2023-05-22 17:43 - 2023-05-22 17:43 - 000003344 _____ C:\Windows\system32\Tasks\Realtek
2023-05-22 17:43 - 2023-05-22 17:43 - 000003340 _____ C:\Windows\system32\Tasks\conhost
2023-05-22 17:43 - 2023-05-22 17:43 - 000003328 _____ C:\Windows\system32\Tasks\chrome
2023-05-22 17:43 - 2023-05-22 17:43 - 000003324 _____ C:\Windows\system32\Tasks\NVIDIA Share
2023-05-22 17:43 - 2023-05-22 17:43 - 000003316 _____ C:\Windows\system32\Tasks\sihost
2023-05-22 17:43 - 2023-05-22 17:43 - 000003310 _____ C:\Windows\system32\Tasks\ctfmon
2023-05-22 17:43 - 2023-05-22 17:43 - 000003290 _____ C:\Windows\system32\Tasks\Spotify
2023-05-22 17:43 - 2023-05-22 17:43 - 000000767 _____ C:\Users\Utilisateur\Documents\0eed26da2c1b54
2023-05-22 17:43 - 2023-05-22 17:43 - 000000262 _____ C:\Users\Default\da2a3b9e09b70e
2023-05-22 17:43 - 2023-05-22 17:43 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Pro_Swapper
2023-05-22 17:43 - 2023-05-22 17:43 - 000000000 ____D C:\Program Files\Realtek
2023-05-22 17:38 - 2023-05-22 17:39 - 000000000 ____D C:\Program Files (x86)\NarrowPinkHoliday
2023-05-22 17:34 - 2023-05-22 17:34 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2023-05-22 17:34 - 2023-05-22 17:34 - 000000000 ____D C:\Program Files (x86)\Glossy Steel Solution
2023-05-22 17:34 - 2023-05-22 17:34 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2023-05-22 17:33 - 2023-05-22 17:33 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\7zip
2023-05-21 21:24 - 2023-05-21 21:24 - 000000000 ___HD C:\$WinREAgent
2023-05-21 21:19 - 2023-05-21 21:21 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Galaxy-Swapper-v2-InGame-Config
2023-05-21 21:19 - 2023-05-21 21:19 - 000000000 ____D C:\Program Files\dotnet
2023-05-21 21:18 - 2023-05-22 18:29 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\ReasonLabs
2023-05-21 21:17 - 2023-05-21 21:17 - 000000000 ____D C:\ProgramData\McAfee
2023-05-21 21:17 - 2023-05-21 21:17 - 000000000 ____D C:\Program Files\McAfee
2023-05-21 20:51 - 2023-05-22 20:25 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Galaxy-Swapper-V2
2023-05-21 20:50 - 2023-05-21 20:50 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\galaxy-swapper-v2-updater
2023-05-21 20:44 - 2023-05-21 20:44 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Skin_Swapper_©__2019
2023-05-21 20:43 - 2023-05-22 20:24 - 000001136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skin Swapper.lnk
2023-05-21 20:43 - 2023-05-22 20:24 - 000000000 ____D C:\Program Files (x86)\Skin Swapper
2023-05-21 18:31 - 2023-05-21 18:31 - 000000375 _____ C:\Users\Utilisateur\Desktop\Fall Guys.url
2023-05-21 18:10 - 2023-05-21 18:28 - 000000000 ____D C:\Program Files\Common Files\PUBG
2023-05-21 18:10 - 2023-05-21 18:10 - 001447240 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2023-05-21 18:10 - 2023-05-21 18:10 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\WELLBIA
2023-05-21 18:10 - 2023-05-21 18:10 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\TslGame
2023-05-21 18:10 - 2023-05-21 18:10 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\BattlEye
2023-05-21 18:10 - 2023-05-21 18:10 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com
2023-05-21 18:03 - 2023-05-23 17:46 - 000000000 ____D C:\Program Files\7-Zip
2023-05-21 18:00 - 2023-05-21 18:00 - 000000000 ____D C:\Users\Utilisateur\Downloads\21-05-2023_oUPr3kjs04BqB2h
2023-05-21 17:48 - 2023-05-21 17:48 - 000000000 ____D C:\Users\Utilisateur\Downloads\Saturn v2.1.0
2023-05-21 17:28 - 2023-05-21 17:28 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Opera Software
2023-05-21 17:28 - 2023-05-21 17:28 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Opera Software
2023-05-21 17:27 - 2023-05-22 18:16 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\cheat-lab-262-nativefier-9f30c3
2023-05-21 17:27 - 2023-05-21 17:27 - 000001031 _____ C:\Users\Utilisateur\Desktop\Cheat Lab.lnk
2023-05-21 17:27 - 2023-05-21 17:27 - 000001017 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cheat Lab.lnk
2023-05-21 17:27 - 2023-05-21 17:27 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Cheat Lab
2023-05-21 17:26 - 2023-05-21 17:26 - 000171758 _____ C:\Users\Utilisateur\Downloads\apex-pro-tkl-v2_Akira (1).zip
2023-05-20 19:46 - 2023-05-20 19:46 - 000171758 _____ C:\Users\Utilisateur\Downloads\apex-pro-tkl-v2_Akira.zip
2023-05-20 19:30 - 2023-05-20 19:30 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2023-05-20 19:27 - 2013-05-02 06:23 - 000203672 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2023-05-20 19:27 - 2013-05-02 06:23 - 000103064 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2023-05-20 19:26 - 2023-05-20 19:26 - 000000000 ____D C:\Program Files\SAMSUNG
2023-05-20 19:25 - 2023-05-20 19:25 - 000000000 ____D C:\ProgramData\Samsung
2023-05-20 19:21 - 2023-05-20 19:21 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Kingosoft
2023-05-20 19:21 - 2023-05-20 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
2023-05-20 19:20 - 2023-05-20 19:20 - 019128680 _____ (Kingosoft Technology Ltd. ) C:\Users\Utilisateur\Downloads\android_root.exe
2023-05-19 21:37 - 2023-05-19 21:37 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-05-19 21:19 - 2023-05-19 21:19 - 001628848 _____ (Dragon Boss Solutions LLC ) C:\Users\Utilisateur\Downloads\Setup.exe
2023-05-19 21:13 - 2023-05-19 21:13 - 000001334 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu Maintenance Tool.lnk
2023-05-19 21:13 - 2023-05-19 21:13 - 000001222 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk
2023-05-19 21:13 - 2023-05-19 21:13 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\yuzu
2023-05-19 21:13 - 2023-05-19 21:13 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\yuzu
2023-05-19 21:12 - 2023-05-19 21:12 - 006820352 _____ C:\Users\Utilisateur\Downloads\yuzu_install.exe
2023-05-19 21:11 - 2023-05-19 21:11 - 000001172 _____ C:\Users\Utilisateur\Desktop\EmulationStation.lnk
2023-05-19 21:11 - 2023-05-19 21:11 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EmulationStation
2023-05-19 21:11 - 2023-05-19 21:11 - 000000000 ____D C:\Users\Utilisateur\.emulationstation
2023-05-19 21:11 - 2023-05-19 21:11 - 000000000 ____D C:\Program Files (x86)\EmulationStation
2023-05-19 21:10 - 2023-05-20 10:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-19 21:08 - 2023-05-19 21:11 - 020112900 _____ C:\Users\Utilisateur\Downloads\emulationstation_win32_latest.exe
2023-05-11 13:16 - 2023-05-11 13:17 - 003494232 _____ (Opera Software) C:\Users\Utilisateur\Downloads\OperaGXSetup.exe
2023-05-11 12:44 - 2023-05-11 12:44 - 000000000 ____D C:\Users\Utilisateur\Downloads\GalaxySwap09.16
2023-05-11 12:43 - 2023-05-11 12:43 - 145018849 _____ C:\Users\Utilisateur\Downloads\GalaxySwap09.16.zip
2023-04-30 16:26 - 2023-04-30 16:27 - 493248512 _____ C:\Users\Utilisateur\Downloads\iCUESetup_3.37.140_release.msi
2023-04-30 12:00 - 2023-04-30 12:00 - 000011345 _____ C:\Users\Utilisateur\Downloads\skin_switch_bleu (3).txt
2023-04-30 11:25 - 2023-04-30 11:25 - 000011345 _____ C:\Users\Utilisateur\Downloads\skin_switch_bleu (2).txt
2023-04-29 17:46 - 2023-04-29 17:46 - 000011345 _____ C:\Users\Utilisateur\Downloads\skin_switch_bleu (1).txt
2023-04-29 11:59 - 2023-04-29 11:59 - 000011345 _____ C:\Users\Utilisateur\Downloads\skin_switch_bleu.txt
2023-04-28 10:47 - 2023-04-28 10:47 - 000011066 _____ C:\Users\Utilisateur\Downloads\Travis.txt
2023-04-27 20:55 - 2023-04-27 20:55 - 000011287 _____ C:\Users\Utilisateur\Downloads\ikonik.txt
2023-04-27 19:58 - 2023-04-27 19:58 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Mael Horz
2023-04-27 19:57 - 2023-04-27 19:57 - 003348036 _____ C:\Users\Utilisateur\Downloads\HxDSetup.zip
2023-04-27 19:57 - 2023-04-27 19:57 - 000000781 _____ C:\Users\Public\Desktop\HxD.lnk
2023-04-27 19:57 - 2023-04-27 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor
2023-04-27 19:57 - 2023-04-27 19:57 - 000000000 ____D C:\Program Files\HxD
2023-04-25 20:38 - 2023-05-22 18:07 - 000000403 _____ C:\ProgramData\droidcam-settings
2023-04-25 20:31 - 2023-05-22 18:07 - 000000804 _____ C:\ProgramData\droidcam-client-options-v2
2023-04-25 20:02 - 2023-04-25 20:02 - 016408456 _____ C:\Users\Utilisateur\Downloads\DroidCam.Setup.6.5.2.exe
2023-04-25 20:02 - 2023-04-25 20:02 - 000001091 _____ C:\Users\Utilisateur\Desktop\DroidCamApp.lnk
2023-04-25 20:02 - 2023-04-25 20:02 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DroidCam
2023-04-25 20:02 - 2023-04-25 20:02 - 000000000 ____D C:\Program Files (x86)\DroidCam
2023-04-25 17:41 - 2023-04-25 17:41 - 001429375 _____ C:\Users\Utilisateur\Downloads\WOMicClientSetup5_2.exe
2023-04-25 17:41 - 2023-04-25 17:41 - 000001066 _____ C:\Users\Utilisateur\Desktop\WO Mic Client.lnk
2023-04-25 17:41 - 2023-04-25 17:41 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WO Mic Client
2023-04-25 17:41 - 2023-04-25 17:41 - 000000000 ____D C:\Program Files (x86)\WOMic
2023-04-25 16:58 - 2023-04-25 16:58 - 000000000 __SHD C:\AI_RecycleBin

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-23 18:52 - 2023-02-10 18:22 - 000000000 ____D C:\ESD
2023-05-23 18:52 - 2022-11-14 16:58 - 000000000 ___HD C:\Program Files (x86)\Temp
2023-05-23 18:52 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\tracing
2023-05-23 18:37 - 2022-12-21 13:40 - 000000000 ____D C:\Program Files (x86)\Steam
2023-05-23 18:37 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-23 18:24 - 2022-11-14 15:53 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2023-05-23 18:18 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2023-05-23 18:11 - 2022-11-14 17:39 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-23 17:59 - 2022-11-14 15:01 - 001713284 _____ C:\Windows\system32\PerfStringBackup.INI
2023-05-23 17:59 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2023-05-23 17:55 - 2022-12-18 09:22 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2023-05-23 17:52 - 2023-02-02 17:43 - 000000000 ____D C:\Program Files\TeamViewer
2023-05-23 17:52 - 2022-11-14 21:49 - 000882856 _____ C:\Windows\system32\wpbbin.exe
2023-05-23 17:52 - 2022-11-14 21:49 - 000869032 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteUpdateService.exe
2023-05-23 17:52 - 2022-11-14 21:49 - 000012288 ___SH C:\DumpStack.log.tmp
2023-05-23 17:52 - 2022-11-14 21:49 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-05-23 17:52 - 2022-11-14 18:01 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-23 17:52 - 2022-11-14 15:53 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteDownloadAssistant.exe
2023-05-23 17:52 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState
2023-05-23 17:49 - 2022-05-07 07:17 - 000524288 _____ C:\Windows\system32\config\BBI
2023-05-23 17:36 - 2022-11-14 15:52 - 000000000 ____D C:\Users\Utilisateur
2023-05-23 17:31 - 2022-11-28 17:58 - 000001623 _____ C:\Windows\system32\config\VSMIDK
2023-05-23 17:31 - 2022-11-14 21:49 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-05-22 21:25 - 2022-12-18 13:34 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Mechvibes
2023-05-22 20:42 - 2023-01-19 12:41 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-05-22 20:15 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2023-05-22 20:13 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-22 20:13 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2023-05-22 20:11 - 2023-03-11 12:49 - 000000000 ____D C:\ProgramData\Avast Software
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\security
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-05-22 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2023-05-22 20:11 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2023-05-22 20:09 - 2022-05-07 07:20 - 000565248 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000552960 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000446464 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000147439 _____ C:\Windows\system32\gpedit.msc
2023-05-22 20:09 - 2022-05-07 07:20 - 000120458 _____ C:\Windows\system32\secpol.msc
2023-05-22 20:09 - 2022-05-07 07:20 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\auditpolmsg.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll
2023-05-22 20:09 - 2022-05-07 07:20 - 000043566 _____ C:\Windows\system32\rsop.msc
2023-05-22 20:05 - 2023-04-09 20:40 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics
2023-05-22 19:56 - 2022-11-14 15:54 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2049020300-805394628-3670538318-1001
2023-05-22 19:56 - 2022-11-14 15:54 - 000003390 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2049020300-805394628-3670538318-1001
2023-05-22 19:56 - 2022-11-14 15:54 - 000002435 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-22 19:56 - 2022-05-07 07:20 - 000225280 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll
2023-05-22 19:56 - 2022-05-07 07:20 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2023-05-22 19:56 - 2022-05-07 07:20 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2023-05-22 19:47 - 2023-01-05 21:02 - 000000000 ____D C:\Users\Utilisateur\.VirtualBox
2023-05-22 19:01 - 2023-01-05 21:04 - 000000000 ____D C:\Users\Utilisateur\VirtualBox VMs
2023-05-22 19:00 - 2023-01-05 21:02 - 000000000 ____D C:\ProgramData\VirtualBox
2023-05-22 18:59 - 2022-12-21 13:44 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-05-22 18:58 - 2022-12-20 22:27 - 000000000 ____D C:\ProgramData\install_clap
2023-05-22 18:58 - 2022-12-20 22:26 - 000000000 ___HD C:\ProgramData\CyberLink
2023-05-22 18:58 - 2022-11-14 16:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-05-22 18:58 - 2022-11-14 15:53 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2023-05-22 18:58 - 2022-11-14 14:57 - 000000000 ____D C:\ProgramData\Packages
2023-05-22 18:40 - 2022-12-18 15:16 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps
2023-05-22 18:14 - 2022-12-22 20:02 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\.minecraft
2023-05-22 18:07 - 2022-12-18 19:35 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCUE.lnk
2023-05-22 18:07 - 2022-12-18 09:07 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2023-05-22 18:07 - 2022-11-14 17:39 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-22 18:06 - 2022-12-18 09:13 - 000000000 ____D C:\ProgramData\Riot Games
2023-05-22 17:44 - 2022-11-14 17:39 - 000000000 ____D C:\Program Files\Google
2023-05-22 17:37 - 2022-05-07 07:17 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-05-22 17:27 - 2023-01-19 12:41 - 000003270 _____ C:\Windows\system32\Tasks\Overwolf Updater Task
2023-05-22 17:27 - 2022-11-28 17:54 - 000002512 _____ C:\Windows\system32\Tasks\SIV-VGA
2023-05-22 17:27 - 2022-11-28 17:54 - 000002506 _____ C:\Windows\system32\Tasks\SIV
2023-05-22 17:27 - 2022-11-14 21:50 - 000003618 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-22 17:27 - 2022-11-14 21:50 - 000003394 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-22 17:27 - 2022-11-14 18:01 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 18:01 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-05-22 17:27 - 2022-11-14 17:39 - 000003602 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{227B44A8-00A7-4F04-9E10-1EC530825AD4}
2023-05-22 17:27 - 2022-11-14 17:39 - 000003378 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{D584B214-3193-4D87-9DBF-7C018B5D671B}
2023-05-21 21:30 - 2022-11-14 14:58 - 003211776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-05-21 21:20 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-05-21 21:19 - 2022-11-14 16:55 - 000000000 ____D C:\ProgramData\Package Cache
2023-05-21 18:35 - 2023-01-19 12:42 - 000000000 ____D C:\ProgramData\BrightData
2023-05-21 18:28 - 2022-12-18 09:13 - 000000000 ____D C:\Program Files\Epic Games
2023-05-21 18:10 - 2022-12-18 09:07 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\UnrealEngine
2023-05-21 12:02 - 2023-03-27 17:40 - 000002329 _____ C:\Users\Utilisateur\Desktop\CurseForge.lnk
2023-05-21 12:02 - 2023-01-19 12:41 - 000002329 _____ C:\Users\Utilisateur\Desktop\Valorant Tracker.lnk
2023-05-21 12:02 - 2023-01-19 12:41 - 000002329 _____ C:\Users\Utilisateur\Desktop\BUFF.lnk
2023-05-21 12:02 - 2023-01-19 12:40 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Overwolf
2023-05-20 19:21 - 2023-01-31 18:07 - 000001100 _____ C:\Users\Public\Desktop\Kingo ROOT.lnk
2023-05-20 19:21 - 2023-01-31 18:07 - 000000000 ____D C:\Program Files (x86)\Kingo ROOT
2023-05-20 11:11 - 2022-11-14 21:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-20 11:11 - 2022-11-14 21:50 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-05-20 10:41 - 2022-12-18 09:14 - 000000000 ____D C:\Program Files\Riot Vanguard
2023-05-20 10:41 - 2022-11-14 17:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-19 21:37 - 2022-12-18 10:15 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\EasyAntiCheat
2023-05-19 21:13 - 2022-12-22 19:59 - 002794960 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000488912 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000247248 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000202192 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2023-05-19 21:13 - 2022-12-22 19:59 - 000079312 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2023-05-19 21:13 - 2022-12-22 19:59 - 000062968 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2023-05-19 21:11 - 2022-11-14 17:40 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-05-19 21:11 - 2022-11-14 17:40 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-05-19 21:08 - 2022-11-14 18:11 - 000000000 ____D C:\Windows\system32\MRT
2023-05-19 21:06 - 2022-11-14 18:11 - 159583304 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-05-11 21:57 - 2022-11-14 21:49 - 000494816 _____ C:\Windows\system32\FNTCACHE.DAT
2023-05-11 21:56 - 2022-05-07 12:23 - 000000000 ____D C:\Windows\SysWOW64\fr
2023-05-11 21:56 - 2022-05-07 12:23 - 000000000 ____D C:\Windows\system32\fr
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\UNP
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\PrintDialog
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Dism
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2023-05-11 21:56 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2023-05-11 20:52 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
2023-05-11 17:45 - 2022-11-14 15:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\PlaceholderTileLogoFolder
2023-05-11 12:40 - 2022-11-14 21:49 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-05-11 12:39 - 2022-11-14 17:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.4
2023-04-30 16:42 - 2022-05-07 12:31 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-04-30 16:42 - 2022-05-07 12:31 - 000023775 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2023-04-28 13:34 - 2023-01-27 22:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-04-25 16:58 - 2022-12-25 17:01 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Gamecaster
2023-04-25 16:58 - 2022-12-25 17:01 - 000000000 ____D C:\ProgramData\Gamecaster
2023-04-25 16:49 - 2023-01-04 17:42 - 000000000 ____D C:\Users\Utilisateur\Documents\Enregistrements audio
2023-04-24 13:14 - 2023-04-08 21:20 - 000001275 _____ C:\ProgramData\Microsoft\Windows\Start Menu\TMAC v6.lnk
2023-04-24 13:14 - 2022-12-18 19:05 - 002439120 _____ (A-Volute) C:\Windows\system32\9EarsSurroundSound.dll
2023-04-24 13:14 - 2022-12-18 09:25 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Install.data

==================== Fichiers à la racine de certains dossiers ========

2022-09-05 10:49 - 2022-09-05 10:49 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2022-09-05 10:49 - 2022-09-05 10:49 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2022-09-05 10:49 - 2022-09-05 10:49 - 000450024 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2022-09-05 10:49 - 2022-09-05 10:49 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2022-09-05 10:49 - 2022-09-05 10:49 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2022-09-05 10:49 - 2022-09-05 10:49 - 000080880 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2023-05-22 18:16 - 2023-05-22 18:16 - 008051712 _____ (AMD) C:\Users\Utilisateur\AppData\Roaming\9FxBbJ4S.exe
2023-05-22 17:43 - 2023-05-22 17:43 - 002149376 ____S (Realtek) C:\Users\Utilisateur\AppData\Roaming\conhost_f.exe
2023-05-22 17:43 - 2023-05-22 17:43 - 001725952 ____S () C:\Users\Utilisateur\AppData\Roaming\f_fontreviewmonitordllrefsvc.exe
2023-02-02 23:18 - 2023-02-02 23:18 - 000000017 _____ () C:\Users\Utilisateur\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================