Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Flavien (administrateur) sur DESKTOP-7AHQ3CD (Micro-Star International Co., Ltd. MS-7B33) (06-09-2022 23:16:45)
Exécuté depuis D:\Telechargement
Profils chargés: Flavien
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.652 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe
(D:\MSI Afterburner\MSIAfterburner.exe ->) (Alexey Nicolaychuk -> ) D:\RivaTuner Statistics Server\RTSS.exe
(D:\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) D:\RivaTuner Statistics Server\EncoderServer.exe
(D:\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) D:\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(explorer.exe ->) (BUREL VINCENT -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.63.31001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.63.31001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2>
(services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Xerox Corporation -> Xerox Corporation) C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe
(sihost.exe ->) (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj\TranslucentTB.exe
(sihost.exe ->) (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.10.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) D:\MSI Afterburner\MSIAfterburner.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2021-12-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [KeePass 2 PreLoad] => D:\keepass\KeePass Password Safe 2\KeePass.exe [3160256 2021-05-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [CL-25-9CA01F12-ECC1-4C8E-9778-16BD76FCF893] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\CL-25-9CA01F12-ECC1-4C8E-9778-16BD76FCF893\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-25-9CA01F12-ECC1-4C8E-9778-16BD76F (l'élément de données a 7 caractères en plus). (Pas de fichier)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2198392 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2198392 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2198392 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [Battle.net] => D:\Battle.net\Battle.net.exe [1087376 2022-01-20] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [Discord] => C:\Users\Flavien\AppData\Local\Discord\Update.exe [1512096 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-09-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [RestMinder] => C:\Users\Flavien\AppData\Local\Programs\RestMinder\RestMinder.exe [199232 2021-09-06] (Globalhop Ltd -> ) <==== ATTENTION
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\Run: [GoogleChromeAutoLaunch_23B0C3D7B7CD5065673B4C7801EF4489] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2860320 2022-09-02] (Google LLC -> Google LLC)
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\...\MountPoints2: {250df268-1ddf-11ec-be07-309c23ecbac1} - "F:\setup.exe"
HKU\S-1-5-21-827813772-3804352953-2642816151-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [176128 2022-04-28] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1004\...\Run: [BA41E4E2DF9A5ABCD49E2CEAF30D491A08E0717C._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8 [3795384 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1004\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2198392 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1004\...\Run: [Steam] => D:\Steam 3\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-827813772-3804352953-2642816151-1004\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-08-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-827813772-3804352953-2642816151-1004\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-09-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-827813772-3804352953-2642816151-1006\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2198392 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-06] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BarreDeRecherche.bat [2021-08-23] () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MSI Afterburner.lnk [2021-10-03]
ShortcutTarget: MSI Afterburner.lnk -> D:\MSI Afterburner\MSIAfterburner.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Splashtop Wired XDisplay Agent.lnk [2022-02-08]
ShortcutTarget: Splashtop Wired XDisplay Agent.lnk -> C:\Program Files (x86)\Splashtop\Splashtop Wired XDisplay\Agent\SWXDAgent.exe (Splashtop Inc. -> Splashtop Inc.)
Startup: C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.exe - Raccourci.lnk [2021-08-09]
ShortcutTarget: ctfmon.exe - Raccourci.lnk -> C:\Windows\System32\ctfmon.exe (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Latency.bat [2018-09-23] () [Fichier non signé]
Startup: C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\rbxfpsunlocker.exe [2021-12-19] () [Fichier non signé]
Startup: C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\settings [2022-01-30] () [Fichier non signé]
Startup: C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK [2021-08-27]
ShortcutTarget: Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (BUREL VINCENT -> VB-AUDIO Software)
Startup: C:\Users\François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.exe - Raccourci.lnk [2021-08-09]
ShortcutTarget: ctfmon.exe - Raccourci.lnk -> C:\Windows\System32\ctfmon.exe (Microsoft Windows -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04AFBC87-4773-466A-A94F-BF47D3360A00} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {065475F1-CF76-4DD6-B0BD-9A671FC62503} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-827813772-3804352953-2642816151-1004 => C:\Users\Flavien\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {0BB4590E-9428-481E-B5A9-34B77E87D21D} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - User Logon => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [403312 2021-11-24] (Xerox Corporation -> Xerox Corporation)
Task: {1238B8AA-7E01-4701-BC3B-23143E4F52AC} - System32\Tasks\Opera GX scheduled Autoupdate 1624732265 => C:\Users\Flavien\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {148DAE5F-997B-423E-A251-DC8866CCEB93} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1640694049 => C:\Users\Flavien\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Flavien\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {1946DFFB-6AF2-431E-996C-6F4DA63E2A93} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AA07C82-079F-4E3C-A21A-FCBA692470F5} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2B4FA8A3-D025-4653-A1F5-7E736D5B8CA4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3067AB05-C539-4BAE-BFB3-71A115316CF0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {389A7465-A03B-4A58-9AF6-2F6B5A7D343B} - System32\Tasks\GoogleUpdateTaskMachineCore{9B931BEC-33BB-4F3D-BA09-52DC3A7CA8FA} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-01] (Google LLC -> Google LLC)
Task: {407A4838-1ED4-4158-A243-EA9A26106D1C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {42496121-CC56-4D2F-96BC-31350E6EE1F1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (Pas de fichier)
Task: {4371B2FB-A7EE-4F55-8041-1A604241A85A} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2022-03-15] (Bluestack Systems, Inc -> BlueStack Systems, Inc.)
Task: {5672C098-22ED-4058-91F7-746D2B2FABE3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {56D94620-8E97-4069-BADD-B016C98FD2BF} - System32\Tasks\Opera GX scheduled Autoupdate 1638104643 => C:\Users\Flavien\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {5AC2A729-2BBF-4297-9E87-B4DBA20929F1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69BEA8CA-14AF-4BA5-A0B4-CDD02ABF316E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EF6B9E0-33CD-4436-92CE-4A68E6DAD449} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1626088311 => C:\Users\Flavien\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Flavien\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {71FE70F9-337A-4370-B3A9-B23D2D80AEB2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-01] (Google LLC -> Google LLC)
Task: {751CBCF5-A013-4125-8793-BCE4D5E3B488} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {7AC7D454-B7F7-4BE4-BA10-BEF1E213BFEF} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (Pas de fichier)
Task: {8175191D-3996-4305-8D40-6475F07D955D} - System32\Tasks\MSIAfterburner => D:\MSI Afterburner\MSIAfterburner.exe [804408 2021-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {8CE6F463-558B-454B-A765-62EE19CBDA01} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8E8C5534-BBE3-4210-8A77-A404F42B1D11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-01] (Google LLC -> Google LLC)
Task: {8FA6B8ED-EBDF-4999-89DB-70CE4AA6879D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {97A1A06C-6CE6-4B99-8D3A-C82F1A175926} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9879A714-CC17-4034-9F06-990C96B6218F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A39BBF64-EF6D-4719-9428-23544347E7AE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AD5A9A3F-998D-4315-B867-1A02EA01E00C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD1BE1A9-BD73-44CF-A738-20906069DFF0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8BCF705-31F0-4E39-81FC-BBBF8F06067B} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - New or Changed => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [403312 2021-11-24] (Xerox Corporation -> Xerox Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D8C1A641-A770-4214-88F6-B46595FD34D7} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-827813772-3804352953-2642816151-1003 => C:\Users\Flavien\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {DC51250B-556D-46F9-9B4D-9D3470DCB0B3} - System32\Tasks\Nettoyage Ram => D:\Logiciel\Ram\EmptyStandbyList.exe [139424 2022-05-03] (Wen Jia Liu -> )
Task: {E22D1656-5042-4D6D-94DA-4791C3B88F29} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E38A42B0-F4E9-4535-A022-C3CEB51932BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4891504-4ED0-4819-95B7-4FBE61CCB5BD} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - Periodic Refresh => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [403312 2021-11-24] (Xerox Corporation -> Xerox Corporation)
Task: {EB0C2B39-8849-4769-B64E-61D1ED425CE8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-827813772-3804352953-2642816151-1006 => C:\Users\Flavien\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {EC0146E1-58F2-40A0-B5B5-601DD9E2E396} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132.job => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Fichier hosts non détecté dans le dossier par défaut
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c00a44f-2403-42b0-b4f9-5b312ca36c35}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4a6fdaa8-d755-4603-93ba-dcb1b1fb0735}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f6b58af2-d263-4f33-b1ba-f561021d7bc6}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-02]
Edge Notifications: Default -> hxxps://www.instagram.com; hxxps://www.tiktok.com
Edge Extension: (Outlook) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-20]
Edge Extension: (Word) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-20]
Edge Extension: (Excel) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-20]
Edge Extension: (PowerPoint) - C:\Users\Flavien\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-20]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi => non trouvé(e)
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-09-03] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default [2022-09-06]
CHR Notifications: Default -> hxxps://advertismentzone.com; hxxps://betaengine.org; hxxps://mgbce.etiagdepar.space; hxxps://thecred.info; hxxps://www.reddit.com; hxxps://www.youtube.com; hxxps://www7.freddyoctavio.pro; hxxps://www77.nathanaeldan.pro; hxxps://www8.freddyoctavio.pro; hxxps://www88.nathanaeldan.pro
CHR Extension: (Google Traduction) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Speedtest by Ookla) - C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2022-03-24]
CHR Profile: C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-16]
CHR Profile: C:\Users\Flavien\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-06-25] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-09-03] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-09-02] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [588264 2021-11-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-09-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 EQU8_13; C:\ProgramData\EQU8\Diabotical\bin\anticheat.x64.equ8.exe [5537984 2022-01-05] (Int3 Software AB -> Int3 Software AB)
S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [6161552 2021-08-19] (Int3 Software AB -> Int3 Software AB)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\FileSyncHelper.exe [2384744 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [819040 2022-09-02] (McAfee, LLC -> McAfee, LLC)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [23856360 2022-01-08] (My.Com B.V. -> My.com B.V.)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.160.0808.0002\OneDriveUpdaterService.exe [2742632 2021-09-11] (Microsoft Corporation -> Microsoft Corporation)
R2 RunSwUSB; C:\Windows\runSW.exe [59056 2022-01-18] (Realtek Semiconductor Corp. -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14691624 2021-09-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7152880 2022-01-22] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-08-05] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XeroxPrintJobEventManagerService; C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe [506848 2021-11-24] (Xerox Corporation -> Xerox Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [8737992 2022-01-22] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_7ad37590e62d4afc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2021-12-31] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [320728 2022-03-15] (Bluestack Systems, Inc -> Bluestack System Inc.)
U5 CMService; D:\Program Files\PORTAL\CMService.exe [123392 2020-05-11] () [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 DUB-13X2; C:\WINDOWS\System32\drivers\DUB-13X2.sys [79368 2016-07-04] (WDKTestCert Alex,130940336584439605 -> ASIX Electronics Corp.)
S3 EQU8_HELPER_13; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_13.sys [38032 2022-01-05] (Int3 Software AB -> )
S3 EQU8_HELPER_36; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_36.sys [38032 2021-10-06] (Int3 Software AB -> )
R0 lci_proxywddm; C:\WINDOWS\System32\drivers\lci_proxywddm.sys [122576 2020-06-17] (Splashtop Inc. -> LuminonCore)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2022-03-23] (MyTestCertificate -> Oracle Corporation)
R3 MpKsl889cc2ef; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EB221B67-9441-42A9-BA35-3C6BBAE5AC12}\MpKslDrv.sys [141576 2022-09-06] (Microsoft Windows -> Microsoft Corporation)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [23093984 2022-01-08] (My.Com B.V. -> My.com B.V.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_400a42c66fb0e159\rt68cx21x64.sys [598976 2022-01-17] (Realtek Semiconductor Corp. -> Realtek)
R3 RTCore64; D:\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [69048 2021-12-20] (Famatech Corp. -> Famatech Corp.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2020-08-17] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2020-08-17] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-09-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-09-02] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2522256 2022-01-22] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 ALSysIO; \??\C:\Users\Flavien\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
U3 aswbdisk; pas de ImagePath
S3 GPUZ-v2; \??\C:\WINDOWS\TEMP\GPUZ-v2.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\Flavien\AppData\Local\Temp\tmp6171.tmp [X] <==== ATTENTION
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
S3 wtbt; \??\d:\steam 3\steamapps\common\super people playtest\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-06 23:15 - 2022-09-06 23:17 - 000000000 ____D C:\FRST
2022-09-03 19:09 - 2022-09-03 19:09 - 000027056 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_339393289736.dll
2022-09-03 14:21 - 2022-09-03 14:21 - 000002023 _____ C:\Users\Flavien\Desktop\StumbleGuys (1).lnk
2022-09-03 12:07 - 2022-09-03 12:07 - 000000000 ____D C:\WINDOWS\Panther
2022-09-02 20:58 - 2022-09-02 20:58 - 000000000 ____D C:\Users\Flavien\AppData\LocalLow\Mediatonic
2022-09-02 18:33 - 2022-09-02 18:33 - 000000365 _____ C:\Users\Flavien\Desktop\Fall Guys.url
2022-09-02 18:20 - 2022-08-18 16:47 - 001188672 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2022-08-09 10:03 - 2022-08-09 10:03 - 000000000 ____D C:\Users\Flavien\AppData\LocalLow\Unity

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-06 23:15 - 2020-10-01 18:14 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-06 23:13 - 2021-10-06 13:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-06 23:13 - 2021-09-14 19:07 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-06 23:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-09-06 23:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-06 23:13 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-06 23:13 - 2020-10-15 18:14 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-06 23:12 - 2021-10-06 14:44 - 000003106 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2022-09-06 23:12 - 2021-08-27 14:21 - 000042144 _____ C:\Users\Flavien\AppData\Roaming\VoiceMeeterBananaDefault.xml
2022-09-06 23:12 - 2021-06-05 14:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-06 23:12 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-06 22:55 - 2020-10-01 18:14 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-06 22:55 - 2020-10-01 18:14 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-06 22:08 - 2021-11-20 11:00 - 000001981 _____ C:\Users\Flavien\.lmmsrc.xml
2022-09-06 21:18 - 2021-10-06 13:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-06 17:56 - 2021-10-06 13:31 - 000904188 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-06 17:51 - 2021-01-04 23:02 - 000000000 ____D C:\Users\Flavien\AppData\Local\CrashDumps
2022-09-04 12:29 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-04 12:29 - 2020-10-02 16:50 - 000000000 ____D C:\Users\Flavien\AppData\Local\D3DSCache
2022-09-03 20:15 - 2021-10-06 13:13 - 000000000 ____D C:\Users\Flavien
2022-09-03 19:55 - 2020-05-19 15:53 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-09-03 19:22 - 2021-09-11 10:24 - 000000000 ____D C:\Program Files\Microsoft Office
2022-09-03 19:19 - 2021-08-01 20:54 - 000000446 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2022-09-03 15:00 - 2020-10-01 18:35 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\discord
2022-09-03 14:56 - 2021-10-10 14:46 - 000002237 _____ C:\Users\Flavien\Desktop\Discord.lnk
2022-09-03 14:56 - 2020-10-01 18:35 - 000000000 ____D C:\Users\Flavien\AppData\Local\Discord
2022-09-03 14:20 - 2022-03-23 21:36 - 000000000 ____D C:\ProgramData\BlueStacks_nxt
2022-09-03 14:20 - 2020-11-25 17:17 - 000000000 ____D C:\Users\Flavien\AppData\Local\NVIDIA
2022-09-03 14:09 - 2020-10-01 18:45 - 000000000 ____D C:\ProgramData\Package Cache
2022-09-03 13:21 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-03 13:21 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-03 13:21 - 2020-09-30 19:26 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-03 13:01 - 2020-10-02 18:28 - 000000000 ____D C:\Users\Flavien\AppData\Local\EpicGamesLauncher
2022-09-02 20:57 - 2020-10-02 22:02 - 000000000 ____D C:\Users\Flavien\AppData\Roaming\EasyAntiCheat
2022-09-02 20:55 - 2021-11-28 18:28 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2022-09-02 20:55 - 2021-08-04 20:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2022-09-02 20:55 - 2021-08-04 20:12 - 000000000 ____D C:\Program Files\Wondershare
2022-09-02 19:09 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-09-02 18:37 - 2020-09-30 19:58 - 000000000 ____D C:\Users\Flavien\AppData\Local\Packages
2022-09-02 18:24 - 2020-09-30 19:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-02 18:23 - 2020-09-30 19:58 - 000000000 ____D C:\ProgramData\Packages
2022-09-02 18:20 - 2021-07-31 23:54 - 000000000 ____D C:\Program Files (x86)\Realtek
2022-09-02 18:14 - 2022-01-21 17:52 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9B931BEC-33BB-4F3D-BA09-52DC3A7CA8FA}
2022-09-02 18:14 - 2021-10-10 11:19 - 000003596 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7baa4b85afd0b
2022-09-02 18:14 - 2021-10-06 13:27 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-02 18:14 - 2021-10-06 13:27 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-09 10:03 - 2020-11-05 19:22 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat

==================== Fichiers à la racine de certains dossiers ========

2022-01-26 21:18 - 2020-11-03 15:45 - 000162304 _____ () C:\Users\Flavien\START-GAME-VR.exe
2022-01-26 21:18 - 2020-05-19 07:56 - 000162304 _____ () C:\Users\Flavien\START-GAME.exe
2022-03-23 21:59 - 2022-03-23 21:59 - 000000068 _____ () C:\Users\Flavien\AppData\Roaming\changzhi_leidian.data
2022-03-23 21:59 - 2022-03-23 21:59 - 000000128 _____ () C:\Users\Flavien\AppData\Roaming\changzhi_leidianmac.data
2021-08-11 12:56 - 2021-08-11 12:56 - 000000260 _____ () C:\Users\Flavien\AppData\Roaming\MSystem
2021-08-27 14:21 - 2022-09-06 23:12 - 000042144 _____ () C:\Users\Flavien\AppData\Roaming\VoiceMeeterBananaDefault.xml
2020-10-01 19:19 - 2021-08-27 16:09 - 000006094 _____ () C:\Users\Flavien\AppData\Roaming\VoiceMeeterDefault.xml
2021-07-31 13:49 - 2021-10-02 14:40 - 002128896 _____ () C:\Users\Flavien\AppData\Local\file__0.localstorage
2022-01-22 17:03 - 2022-01-22 17:03 - 000016438 _____ () C:\Users\Flavien\AppData\Local\partner.bmp
2021-10-05 19:08 - 2022-05-03 19:11 - 000007605 _____ () C:\Users\Flavien\AppData\Local\resmon.resmoncfg
2021-12-22 20:04 - 2021-12-22 20:05 - 000000000 _____ () C:\Users\Flavien\AppData\Local\{26A41D9F-E9A8-4612-B4CE-69273BE00CE9}
2021-12-10 21:58 - 2021-12-10 21:58 - 000000000 _____ () C:\Users\Flavien\AppData\Local\{819BD5F3-FDAB-4CA9-BEF1-82F158BE00CB}
2021-03-15 19:30 - 2021-03-15 19:30 - 000000000 _____ () C:\Users\Flavien\AppData\Local\{C233C0FE-EA2F-4BE3-AB2C-FD4C89E5B02D}

==================== FCheck ================================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

FCheck: C:\WINDOWS\system32\eac_usermode_73475195455966.dll [2020-10-19] <==== ATTENTION (zéro octet Fichier/Dossier)

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================