Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-08-2022
Exécuté par theod (administrateur) sur DESKTOP-4728SS4 (HP OMEN by HP Desktop PC 880-p0xx) (04-08-2022 11:51:06)
Exécuté depuis C:\Users\theod\Desktop
Profils chargés: theod
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1826 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fs_ui_32.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\ui\fsmainui.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(cmd.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\http\1655284563\nif2_ols_ca.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\BridgeCommunication.exe
(explorer.exe ->) (F-Secure Corporation -> Darty Corporation) C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe
(explorer.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fs_ui_32.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(explorer.exe ->) (Razer USA Ltd. -> ) C:\Windows\System32\RZSurroundHelper.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files\Razer\RzAppEngine\rzappengine.exe <5>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fshoster32.exe <3>
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fsorsp64.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fsulprothoster.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_7ea79942c83947c1\x64\OmenCap\OmenCap.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Innova Co S.a r.l. -> Innova Co S.a r.l.) [Fichier non signé] C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_48e9f4d4e0a42fa1\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(services.exe ->) (Razer USA Ltd. -> Razer) C:\Program Files (x86)\Razer\RzUpdateEngineService\RzUpdateEngineService.exe
(services.exe ->) (Razer USA Ltd. -> Razer) C:\Windows\System32\RZSurroundService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [RZSurroundHelper] => C:\WINDOWS\system32\RZSurroundHelper.exe [384240 2019-11-11] (Razer USA Ltd. -> )
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [57954808 2018-02-03] (Hammer & Chisel Inc. -> Discord Inc.)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [1660760 2017-06-26] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4230544 2022-07-26] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-05-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32706000 2022-07-20] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [Discord] => C:\Users\theod\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [RzAppEngine] => C:\Program Files\Razer\RzAppEngine\rzappengine.exe [1640880 2019-08-30] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\theod\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2022-04-02] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [ut] => "C:\Users\theod\AppData\Local\Temp\utt12B2.tmp.exe" /MINIMIZED (Pas de fichier) <==== ATTENTION
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [FSKeyAutoStart] => C:\Program Files (x86)\Darty\Darty Mot de Passe\fskey.exe [7063424 2020-12-08] (F-Secure Corporation -> Darty Corporation)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [com.blitz.app] => C:\Users\theod\AppData\Local\Programs\Blitz\Blitz.exe --autostart (Pas de fichier)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\Run: [Bloom] => C:\Users\theod\AppData\Roaming\Bloom\Bloom.exe --Ii7SIeN (Pas de fichier)
HKU\S-1-5-21-1093625419-156746002-613597915-1001\...\RunOnce: [Application Restart #1] => C:\Program Files\Razer\RzAppEngine\rzappengine.exe [1640880 2019-08-30] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\windows\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7D2B3E1D-D096-4594-9D8F-A6667F12E0AC}] -> C:\Program Files\Razer\RzAppEngine\1.14.0.0\Installer\chrmstp.exe [2020-11-04] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-21] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01B84191-9149-499D-8C61-B0C1BB704CB6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe [1452600 2019-09-08] (Adobe Inc. -> Adobe)
Task: {063B4C33-FE6C-4E1C-8C83-BD47C1A7C745} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0DFF278C-13D2-40B0-BA92-02B28AA5A837} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {14EE3FE6-9B6F-43DB-9C7A-9241FDA56251} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540888 2022-04-02] (Overwolf Ltd -> Overwolf LTD)
Task: {1A9EBE29-7705-4A7E-BDD3-FA432C47DC13} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1CE1868A-FA61-4D1D-B88F-C5133277DDD6} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459680 2017-07-28] (HP Inc. -> )
Task: {272A9323-B8EC-4798-BA4E-26E9208875FF} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (Pas de fichier)
Task: {29EEDB57-B542-425C-BF87-607AE1A48E8D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2AB6D2CD-4439-489F-903C-57A27721E27C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {37AE604C-3D30-4979-9B03-C71ABD2759FC} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {46ED2464-B827-4554-B4F9-7B97C8D0E684} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {4990B267-116A-4004-B76C-6D1B4106E8A9} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe (Pas de fichier)
Task: {4F0FF152-3404-4E04-8512-E9A44021B352} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {54F85A01-F7CA-4B45-947A-57ACDF7BE156} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {56CC6533-9A4E-44BA-B8CE-B9593B23F161} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5C3C7DC3-49CD-40E1-949B-180331CDF092} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {63B3FD0E-E26A-4D8F-B002-2BD383C1E900} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6695D739-B45D-4928-994A-26B49508FFD8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {66CB7B53-F7F5-459B-AE99-7DF47155D216} - System32\Tasks\OMEN Command Center BackGround Process => C:\Program Files\HP\OMEN Ally\HPOMENBG.exe (Pas de fichier)
Task: {74D11317-5694-4508-AE2D-51E00A70C75B} - System32\Tasks\Scheduled scanning task => C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fsscan.exe [287896 2021-12-02] (F-Secure Corporation -> F-Secure Corporation)
Task: {79226EE4-3ED4-4C5F-BE74-2ED06A27F7BA} - System32\Tasks\GoogleUpdateTaskMachineQC => C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Chrome\updater.exe (Pas de fichier) <==== ATTENTION
Task: {8411384F-E9CC-40D3-A84E-CD342A9618F0} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fs_hotfix.exe [291992 2021-12-02] (F-Secure Corporation -> F-Secure Corporation)
Task: {842E16A7-4EC8-4CB0-8C7B-59B40DF84AD3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228776 2017-06-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {9633E92C-40F9-4F0A-AB45-2040F21081E3} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {A77D01D9-BC9F-461C-9916-B64E450351A5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-29] (Google Inc -> Google Inc.)
Task: {A893711B-D19F-4CBC-8687-7367C6B0976D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [412744 2022-07-27] (HP Inc. -> HP Inc.)
Task: {AE23E782-130D-4EBD-9D92-2F37ECFC5BA1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B95A57B7-C228-439D-A83D-9B12FD0E30A1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9B3D1BB-B478-4B1D-8B05-816AA99CBB5E} - System32\Tasks\sternnesssternness => C:\Program Files (x86)\vinyls\vinyls.exe lsan (Pas de fichier)
Task: {BAA31739-DC01-4A7D-AA56-82858328881C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {C131911B-8BB4-4525-9B9C-C356BA3A2494} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116648 2022-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3471233-180B-4821-83DD-974A8FE2DBB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB5DEBAF-EDA8-49CF-A118-E102E03957A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-29] (Google Inc -> Google Inc.)
Task: {D3115A97-8834-41C7-867C-2D5CC9B55B7C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D9ED698F-86A2-4299-94CD-0C30E6809E3E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116648 2022-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE344694-D92F-4AB2-A46A-19AABA6EA2C8} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d6db052a65516d" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\RTKCPL" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\Scheduled scanning task" /ENABLE
Task: {E5A38A9A-E422-496C-B6ED-92731BD43BCA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {E6E8CF49-E556-412E-874E-71C9BBB063D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-07-27] (HP Inc. -> HP Inc.)
Task: {F7E43A2A-227A-4656-8EDF-6826650747D0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB201457-71AA-4C5B-B396-7ABCC1A2D71E} - System32\Tasks\chrome tools => cmd /c powershell -WindowStyle Hidden -E "JAB2ACAAPQAgACIAMAAiADsACgAkAGwAdgAgAD0AIAAiADQAIgA7AAoAJABkACAAPQAgACIAcgBvAG8AYgBsAGkAbQB5AG8AbwBrAGkALgBjAG8AbQAiADsACgAkAGUAcAAgAD0AIAAiAFcAeQBJADEATgBqAFkANABNAHoAWQAwAE0ARABrADEATQB6AGcAMgBPAFQAUQAxAE0AegBrAGkATABEAEUAMgBOAFQAQQB6AE8ARABjAHoATgBUAFoAZAAiAD (l'élément de données a 4515 caractères en plus). <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Scheduled scanning task.job => C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fsscan.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{2a607818-ca5c-42a4-9b2b-9d733fa6b4d3}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{70b496c5-6759-40c7-a828-a1a65db2a30e}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{fc16ed88-1e0e-46d2-a84b-473aa856c935}: [DhcpNameServer] 8.8.8.8 8.8.4.4
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\theod\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-03]
Edge DownloadDir: Default -> C:\Users\theod\Downloads
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Protection de la navigation par F-Secure) - C:\Users\theod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpikpibllpjmpnchjajlibnmmomnnhnm [2022-07-05]
Edge HKLM\...\Edge\Extension: [cpikpibllpjmpnchjajlibnmmomnnhnm]
Edge HKLM-x32\...\Edge\Extension: [cpikpibllpjmpnchjajlibnmmomnnhnm]

FireFox:
========
FF DefaultProfile: 9laljpt0.default
FF ProfilePath: C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\9laljpt0.default [2019-09-03]
FF Extension: (cacaoweb) - C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\9laljpt0.default\Extensions\cacaoweb@cacaoweb.org [2019-12-22] [] [non signé]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\9laljpt0.default\Extensions\sp@avast.com.xpi [2019-02-16]
FF Extension: (Avast Online Security) - C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\9laljpt0.default\Extensions\wrc@avast.com.xpi [2018-06-22]
FF ProfilePath: C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\g1jykpf5.default-release [2022-08-03]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\g1jykpf5.default-release\Extensions\sp@avast.com.xpi [2022-03-04]
FF Extension: (Avast Online Security) - C:\Users\theod\AppData\Roaming\Mozilla\Firefox\Profiles\g1jykpf5.default-release\Extensions\wrc@avast.com.xpi [2020-04-17] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.6.2.278\npplugin4game.dll [2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default [2022-08-04]
CHR DownloadDir: C:\Users\theod\Downloads
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.commentcamarche.net
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
CHR DefaultSearchKeyword: Default -> google.com_
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-07-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-28]
CHR Extension: (Protection de la navigation par F-Secure) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2022-07-05]
CHR Extension: (Instant Gaming) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2022-01-03]
CHR Extension: (Coupert FR - Codes Promo et Cashback) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2022-08-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theod\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-06]
CHR Extension: (Bundle) - C:\Users\theod\AppData\Local\chrome_tab [2022-07-11]
CHR Profile: C:\Users\theod\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-15]
CHR Profile: C:\Users\theod\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-15]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

"AverageAceforceFG" => service a été déverrouillé. <==== ATTENTION
"IBuddyService" => service a été déverrouillé. <==== ATTENTION

R2 4game-service; C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe [1686008 2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-04-21] (BattlEye Innovations e.K. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [134624 2017-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-21] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3638888 2018-05-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-07-24] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 fshoster; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fshoster32.exe [234648 2021-12-02] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\fshoster32.exe [234648 2021-12-02] (F-Secure Corporation -> F-Secure Corporation)
S2 fsulhoster; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fshoster64.exe [419096 2022-07-19] (F-Secure Corporation -> F-Secure Corporation)
S2 fsulnethoster; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fshoster64.exe [419096 2022-07-19] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fsorsp64.exe [107208 2022-07-19] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fsulprothoster.exe [419096 2022-07-19] (F-Secure Corporation -> F-Secure Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2019-12-19] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\AppHelperCap.exe [770544 2022-06-21] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\DiagsCap.exe [769040 2022-06-21] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-07-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\NetworkCap.exe [762376 2022-06-21] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_7ea79942c83947c1\x64\OmenCap\OmenCap.exe [698760 2022-02-14] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\SysInfoCap.exe [769040 2022-06-21] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe [489696 2022-05-26] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540888 2022-04-02] (Overwolf Ltd -> Overwolf LTD)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [66872 2018-02-03] (Even Balance, Inc. -> )
R2 Razer Update Service; C:\Program Files (x86)\Razer\RzUpdateEngineService\RzUpdateEngineService.exe [408912 2020-04-02] (Razer USA Ltd. -> Razer)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2458576 2022-07-20] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzSndSrv; C:\WINDOWS\system32\RZSurroundService.exe [353520 2019-11-11] (Razer USA Ltd. -> Razer)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AverageAceforceFG; C:\Program Files (x86)\AverageAceforceFG\AverageAceforceFG.exe -service [X]
S2 IBuddyService; C:\Program Files (x86)\IBuddy\IBuddyService.exe -service [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_48e9f4d4e0a42fa1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_48e9f4d4e0a42fa1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 CM_VENDER_CMD; C:\Program Files\Common Files\Logitech\G430Install\CMVC64.sys [17104 2014-07-31] (C-MEDIA ELECTRONICS INC. -> Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-05-26] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-05-26] (Disc Soft Ltd -> Disc Soft Ltd)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1658217289\fsulgk.sys [439792 2022-07-19] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation)
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [16864 2022-07-01] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R2 fsnif2; C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\nif2\1657005618\nif2s64.sys [179184 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23952 2018-06-27] (HP Inc. -> HP Inc.)
S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45168 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2020-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [62352 2021-12-21] (Realtek Semiconductor Corp. -> Realtek)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 sRZVAD; C:\WINDOWS\System32\drivers\RZSurround.sys [172208 2019-11-11] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-06-19] (Windscribe Limited -> The OpenVPN Project)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_8a927fc43d8a7838\x64\ViGEmBus.sys [91432 2020-04-21] (HP Inc. -> Benjamin Hoeglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-08-04 11:51 - 2022-08-04 11:51 - 000045018 ____C C:\Users\theod\Desktop\FRST.txt
2022-08-04 11:50 - 2022-08-04 11:51 - 000000000 ____D C:\FRST
2022-08-04 11:43 - 2022-08-04 11:42 - 002370048 ____C (Farbar) C:\Users\theod\Desktop\FRST64.exe
2022-08-04 11:42 - 2022-08-04 11:42 - 002370048 _____ (Farbar) C:\Users\theod\Downloads\FRST64.exe
2022-08-02 22:27 - 2022-08-02 22:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-07-29 11:23 - 2022-07-29 11:35 - 000131072 _____ C:\Users\theod\Downloads\Pokemon Version Eclat Pourpre V-1-4-2.sav
2022-07-29 11:20 - 2022-07-29 11:20 - 016777216 _____ C:\Users\theod\Downloads\Pokemon Version Eclat Pourpre V-1-4-2.gba
2022-07-29 11:20 - 2022-07-29 11:20 - 001108336 _____ C:\Users\theod\Downloads\VisualBoyAdvance_172_fr.zip
2022-07-28 23:55 - 2022-07-28 23:55 - 000000000 ____D C:\Users\theod\AppData\Local\RomStation
2022-07-28 23:55 - 2022-07-28 23:55 - 000000000 ____D C:\Users\theod\AppData\Local\JxBrowser
2022-07-20 11:06 - 2022-07-20 11:06 - 000000000 ___HD C:\$SysReset
2022-07-20 10:28 - 2022-07-20 10:28 - 000341407 _____ C:\Users\theod\Desktop\attestation_facture_REN2DKLMWC29.pdf
2022-07-20 10:28 - 2022-07-20 10:28 - 000083130 _____ C:\Users\theod\Desktop\attestation_REN2DKLMWC29.pdf
2022-07-20 10:27 - 2022-07-20 10:27 - 000030545 _____ C:\Users\theod\Downloads\ticket-PAYFIP0000000054948435.pdf
2022-07-15 00:31 - 2022-07-15 00:31 - 000000000 ____D C:\Users\theod\AppData\Local\GUI
2022-07-15 00:31 - 2022-07-15 00:31 - 000000000 ____D C:\ProgramData\TotalAV
2022-07-15 00:30 - 2022-07-15 00:30 - 057816512 _____ C:\Users\theod\Downloads\TotalAV_Setup.exe
2022-07-13 12:31 - 2022-07-13 12:31 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-13 12:31 - 2022-07-13 12:31 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-13 12:31 - 2022-07-13 12:31 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-13 12:31 - 2022-07-13 12:31 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-13 12:31 - 2022-07-13 12:31 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-13 12:30 - 2022-07-13 12:30 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-13 12:30 - 2022-07-13 12:30 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-13 12:30 - 2022-07-13 12:30 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-13 12:30 - 2022-07-13 12:30 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-13 12:24 - 2022-07-13 12:24 - 000000000 ___HD C:\$WinREAgent
2022-07-11 20:35 - 2022-07-11 20:35 - 000000000 ____D C:\Users\theod\AppData\Local\chrome_tab

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-08-04 11:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-04 11:44 - 2019-09-01 16:06 - 000000000 ___DC C:\Users\theod\AppData\LocalLow\Mozilla
2022-08-04 11:42 - 2018-02-03 11:18 - 000000000 ____D C:\Program Files (x86)\Steam
2022-08-04 11:41 - 2018-02-03 11:12 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-04 11:41 - 2017-12-15 04:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-04 01:18 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-03 22:55 - 2019-10-26 13:54 - 000000000 ____D C:\Users\theod\AppData\Local\Battle.net
2022-08-03 22:55 - 2019-10-26 13:49 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-08-03 21:42 - 2020-12-25 23:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-03 21:42 - 2019-04-08 19:29 - 000000000 ____D C:\ProgramData\Riot Games
2022-08-03 09:38 - 2021-10-13 19:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-03 09:38 - 2019-09-01 16:06 - 000000972 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-03 00:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-31 23:23 - 2018-02-03 20:40 - 000000000 ___DC C:\Users\theod\AppData\Roaming\discord
2022-07-31 23:01 - 2020-04-22 14:02 - 000000000 ____D C:\Users\theod\AppData\Local\Discord
2022-07-30 11:17 - 2020-06-20 19:33 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-29 11:28 - 2020-12-30 13:33 - 001923838 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-29 11:28 - 2019-12-07 16:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-29 11:28 - 2019-12-07 16:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-29 11:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-28 15:58 - 2019-09-01 16:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-28 09:43 - 2020-12-25 23:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-28 09:43 - 2018-12-28 12:50 - 000000000 ____D C:\ProgramData\PACE
2022-07-26 10:20 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-07-26 10:19 - 2017-08-02 02:50 - 000000000 ____D C:\ProgramData\Package Cache
2022-07-25 11:28 - 2019-08-05 21:17 - 000000000 ___DC C:\Users\theod\AppData\Roaming\Origin
2022-07-25 11:28 - 2019-02-06 15:48 - 000000000 ____D C:\ProgramData\Origin
2022-07-25 11:23 - 2019-08-05 21:17 - 000000000 ___DC C:\Users\theod\AppData\Local\Origin
2022-07-25 10:08 - 2019-08-05 21:19 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-07-24 16:07 - 2018-02-03 11:56 - 000000000 ___DC C:\Users\theod\Desktop\Games
2022-07-23 09:06 - 2020-12-25 23:24 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-21 13:40 - 2017-08-02 02:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-07-20 22:10 - 2020-01-23 16:48 - 000000000 ____D C:\ProgramData\Rockstar Games
2022-07-20 22:10 - 2019-01-03 12:47 - 000000000 ____D C:\Program Files\Rockstar Games
2022-07-20 22:10 - 2019-01-03 12:47 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-07-20 20:56 - 2020-12-25 23:32 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-20 11:13 - 2018-07-13 20:37 - 000000000 ___DC C:\Users\theod\Desktop\Théo
2022-07-15 00:35 - 2018-03-11 21:33 - 000000000 ___DC C:\Users\theod\AppData\Local\Packages
2022-07-15 00:34 - 2018-05-12 18:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-07-15 00:23 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-07-14 22:08 - 2022-02-10 19:26 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-14 00:23 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-07-14 00:22 - 2020-12-25 23:25 - 000729776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-14 00:22 - 2017-12-15 05:00 - 000000000 ____D C:\ProgramData\Realtek
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-07-14 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-13 12:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-13 12:30 - 2020-12-25 23:25 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-12 12:11 - 2018-05-12 18:54 - 000000000 ___DC C:\Users\theod\AppData\Local\D3DSCache
2022-07-12 12:11 - 2018-02-03 11:55 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2022-07-12 11:23 - 2018-11-25 18:22 - 000000000 ___DC C:\Users\theod\AppData\Roaming\.minecraft
2022-07-12 11:23 - 2018-11-25 18:21 - 000000000 ____D C:\Program Files (x86)\Minecraft
2022-07-11 10:08 - 2020-12-25 23:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-07-08 10:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-07-08 10:32 - 2018-12-25 21:02 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2022-07-07 10:34 - 2022-01-24 15:28 - 000000000 ____D C:\Program Files\Cheat Engine 7.4
2022-07-05 18:21 - 2018-03-06 20:39 - 000000000 ___DC C:\Users\theod\AppData\Local\CrashDumps

==================== Fichiers à la racine de certains dossiers ========

2018-04-12 01:34 - 2018-04-12 01:34 - 000059904 _____ (Microsoft Corporation) C:\Program Files (x86)\PHzeJd.exe
2022-02-08 14:27 - 2022-02-08 14:27 - 000000032 _____ () C:\Users\theod\AppData\Roaming\.machineId
2018-04-12 01:34 - 2018-04-12 01:34 - 000059904 ____C (Microsoft Corporation) C:\Users\theod\AppData\Roaming\Mumqa.exe
2018-06-07 16:06 - 2018-07-01 01:26 - 000000165 ____C () C:\Users\theod\AppData\Roaming\WB.CFG
2018-07-13 20:40 - 2018-07-13 20:40 - 000000002 ____C () C:\Users\theod\AppData\Local\imw.ini
2021-02-14 21:45 - 2021-04-26 16:06 - 000016438 _____ () C:\Users\theod\AppData\Local\partner.bmp
2018-07-12 15:57 - 2021-05-22 11:17 - 000007605 ____C () C:\Users\theod\AppData\Local\resmon.resmoncfg
2018-07-12 15:47 - 2018-07-12 15:47 - 000000000 ____C () C:\Users\theod\AppData\Local\unp11937331.tmp
2018-07-12 16:02 - 2018-07-12 16:02 - 000000000 ____C () C:\Users\theod\AppData\Local\unp7642898.tmp

==================== FLock ==============================

2018-08-01 21:33 C:\Users\theod\AppData\Local\Config.Msi
2018-08-01 21:33 C:\Users\theod\AppData\Local\Runtime_WOW64

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================