Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2021
Exécuté par clara (administrateur) sur LAPTOP-VVON6U17 (HP HP Pavilion Notebook) (25-04-2021 12:43:32)
Exécuté depuis C:\Users\clara\Documents
Profils chargés: clara
Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Users\clara\AppData\Local\Google\Chrome\Application\chrome.exe <16>
(Hager Controls S.A.S) [Fichier non signé] C:\Program Files\hager\domovea\Bin\Server\domovea_Service.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8853248 2016-03-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2016-01-29] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1308456 2018-06-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: ["C:\Program Files (x86)\D-Link\D-ViewCam\MainConsole.EXE"] => "C:\Program Files (x86)\D-Link\D-ViewCam\MainConsole.EXE" RunWithWindows
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\Run: [GoogleChromeAutoLaunch_1B1300D7ACEB0FB6E23732A0D521EC82] => "C:\Users\Mohammed\AppData\Local\chromium\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144760 2021-04-23] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Mohammed\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Mohammed\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\RunOnce: [Uninstall 19.070.0410.0007\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mohammed\AppData\Local\Microsoft\OneDrive\19.070.0410.0007\amd64"
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\RunOnce: [Uninstall 19.070.0410.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mohammed\AppData\Local\Microsoft\OneDrive\19.070.0410.0007"
HKU\S-1-5-21-429569208-803888368-3536052390-1001\...\MountPoints2: {6e018c40-e132-11e8-b92d-98e7f45a9774} - "F:\AUTORUN.EXE"
HKU\S-1-5-21-429569208-803888368-3536052390-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [809472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\Run: [Google Update] => C:\Users\clara\AppData\Local\Google\Update\1.3.36.82\GoogleUpdateCore.exe [217432 2021-04-21] (Google LLC -> Google LLC)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\Run: [Discord] => C:\Users\clara\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\Run: [com.squirrel.Teams.Teams] => C:\Users\clara\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-10-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2021-04-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-429569208-803888368-3536052390-1003\...\MountPoints2: {6e018c40-e132-11e8-b92d-98e7f45a9774} - "F:\AUTORUN.EXE"
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0859C498-AEDA-48B8-8804-75FF4B3B6D63} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {0CB32540-688C-4824-8D20-0E8BCA8E3D15} - \Firefox Default Browser Agent DA1119897236A979 -> Pas de fichier <==== ATTENTION
Task: {12C645DE-4A0B-46FE-8744-3247D69AFB53} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {1597457B-06A2-47C9-8F48-18F2B1017075} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E1626C0-158A-41E5-8703-39F07D746C10} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1F61346A-8B2A-4017-8EB8-1AE4B0213157} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3B05B6B4-30B6-4821-92C2-85F489257C0E} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3D45F709-F663-4930-BD43-B98548C8594F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {46891980-6282-4003-9864-9590387D4A75} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]
Task: {508EC2BD-608A-4CCA-B935-53BDB90D8242} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {547551CB-70C9-41B0-8332-B23E483B1CD3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5B466148-7993-4CD0-96E3-6567E62A2532} - System32\Tasks\EPSON DS-780N Update => C:\Program Files (x86)\epson\Epson Scan 2\Update\e_dtsksd.exe [690176 2018-04-03] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {5DC98E45-6E62-4FD5-9287-3B9D8600C59E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6654516D-DD4D-4B5A-8EFD-9146727157FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {6A255135-49B0-4047-A25A-F28F3A41EA0C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {6B844D5A-AEC7-4E23-A1E3-A5834F6FE5E0} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe
Task: {7CF62A43-C179-4851-BC4E-92C05DA73DE9} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {8011A214-68C8-4E4E-BFB6-C85B7DE64188} - \HP\HP CoolSense\HP CoolSense Start at Logon -> Pas de fichier <==== ATTENTION
Task: {80D4A604-9D5F-47B3-B459-1699C59C069A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-429569208-803888368-3536052390-1003UA => C:\Users\clara\AppData\Local\Google\Update\GoogleUpdate.exe [155432 2019-11-07] (Google Inc -> Google LLC)
Task: {8A01BEA6-335E-4111-9333-5FE95B891D6B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {90C4177C-E5DD-4BEF-99F5-CA46F00E33C0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4002744 2021-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {91833E4F-1396-450E-83D7-8BE955ABC442} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248792 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {9502C267-51DE-44C4-8C03-6F194FDD712A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-429569208-803888368-3536052390-1003Core => C:\Users\clara\AppData\Local\Google\Update\GoogleUpdate.exe [155432 2019-11-07] (Google Inc -> Google LLC)
Task: {A003FEF6-D109-42C3-8B7E-32EC12856C4A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4002744 2021-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1CD72F8-2400-41CB-8986-0EDD88A9E41B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114056 2021-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A6F2CB2C-7A66-43E5-A401-65EE696FBC4D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {BC82FBE9-78DF-48E8-B35C-C49496EC1DC8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BCFA7A87-5102-4C2C-B6B1-FBBA7317F599} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BDA7B705-1804-4645-AC0B-459722488273} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {C66A4C35-4CF8-448D-BFFD-881018C4D61B} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> )
Task: {CEBE990E-4784-4A87-B776-B99EB34A38BE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CEF1733C-1046-40D6-ADC0-0A9F92FE04ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {D7A9B4F5-622B-4863-B747-4964680E4D8B} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {D83E8942-27F1-4C48-B659-2B1E2C4B0210} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DC58BBAE-EDFC-4D32-A5F2-2F63B5EBCEDE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0ED75BB-D073-44FA-A760-4459766BC420} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {E3FC4120-5881-4FD3-92E4-FBF2E5B776B7} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E4DD9FAE-E892-4AAA-8381-C129A033F849} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114056 2021-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7F03284-BA80-45AF-B0AE-F19019EA68D3} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {EC5A84B0-8640-4ED1-8778-B91B8D4B9D7D} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {ECE25C17-AB16-49DE-9F03-F1068E35197B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\BingPopup\BingPopup.exe
Task: {EE0679FB-C529-4BBA-958A-D11040841E53} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F66E2FF7-EF00-471D-AE3D-C224B7E201E8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {FC036F87-7335-4C39-ABD6-C487D1910681} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{188e700e-b9c3-46b0-9e02-04f295ab0ad0}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{eb6b8d50-8340-41fa-8619-1630306657b0}: [DhcpNameServer] 8.8.8.8

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\clara\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-25]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Pas de fichier]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default [2021-04-25]
CHR Extension: (Slides) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-26]
CHR Extension: (Docs) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-26]
CHR Extension: (Google Drive) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-26]
CHR Extension: (Custom) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\colgdlijdieibnaccfdcdbpdffofkfeb [2021-04-22]
CHR Extension: (Easy Video Downloader) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\eaicplkoeceoelookkiaeekhodehdhde [2021-03-12]
CHR Extension: (vGet Cast (DLNA Controller)) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekdjofnchpbfmnfbedalmbdlhbabiapi [2021-01-19]
CHR Extension: (wanteeed) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2020-11-21]
CHR Extension: (Sheets) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-15]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-04-12]
CHR Extension: (Screen Recorder - Enregistreur d'écran) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniebljpgcogalllopnjokppmgbhaden [2021-04-03]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-04-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\clara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]
CHR Profile: C:\Users\clara\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-22]

Opera:
=======
OPR Profile: C:\Users\clara\AppData\Roaming\Opera Software\Opera Stable [2021-04-25]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\clara\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-24]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 AppServicea; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
S2 AppServiceb; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
S2 AppServicec; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
S2 AppServiced; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
S2 AppServicef; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
S2 AppServiceg; C:\WINDOWS\system32\V69R76UTI2.tmp [6144 2021-04-25] (Microsoft Corporation) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788392 2021-04-07] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-25] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-25] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030080 2021-04-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 domovea_Service; C:\Program Files\hager\domovea\Bin\Server\domovea_Service.exe [28672 2016-07-05] (Hager Controls S.A.S) [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2018-04-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-22] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2545752 2021-04-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3485784 2021-04-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 GamesAppIntegrationService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe" [X]
S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X]
S2 HP Comm Recover; "c:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
S2 HPTouchpointAnalyticsService; "C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-22] (Malwarebytes Inc -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-04-25] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-04-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-04-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-04-25] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [40464 2009-02-08] (CACE TECHNOLOGIES, LLC -> CACE Technologies)
R1 rsSP; C:\WINDOWS\System32\DRIVERS\rsSP.sys [52016 2019-08-05] (Reason Software Company Inc. -> Windows (R) Win 7 DDK provider)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-25 12:43 - 2021-04-25 12:44 - 000032136 ____C C:\Users\clara\Documents\FRST.txt
2021-04-25 12:39 - 2021-04-25 12:39 - 001388448 _____ C:\Users\Public\VOIP.dat
2021-04-25 12:39 - 2021-04-25 12:39 - 001388448 _____ C:\Users\Public\ASR.dat
2021-04-25 12:39 - 2021-04-25 12:39 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-04-25 12:39 - 2021-04-25 12:39 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-04-25 12:39 - 2021-04-25 12:39 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-04-25 12:39 - 2021-04-25 12:39 - 000000000 ___DC C:\Users\clara\AppData\LocalLow\IGDump
2021-04-25 12:38 - 2021-04-25 12:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2021-04-25 12:36 - 2021-04-25 12:36 - 000001731 ____C C:\Users\clara\Desktop\malwarebytes quarantaine.txt
2021-04-25 12:33 - 2021-04-25 12:33 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-04-25 12:32 - 2021-04-25 12:32 - 011049936 _____ (McAfee, LLC) C:\Users\clara\Downloads\MCPR.exe
2021-04-24 14:55 - 2012-12-18 20:16 - 004230326 ____C C:\Users\clara\Downloads\ESkin-nATURAL+Default-M.package
2021-04-24 14:55 - 2012-12-18 20:16 - 004174693 ____C C:\Users\clara\Downloads\ESkin-nATURAL+Default-F.package
2021-04-24 14:44 - 2012-12-18 20:15 - 003290012 ____C C:\Users\clara\Downloads\ESkin-nATURAL+Default-CPU.package
2021-04-23 15:27 - 2021-04-25 12:39 - 027787264 _____ C:\WINDOWS\system32\config\SYSTEM
2021-04-23 14:43 - 2021-04-23 14:43 - 007371756 _____ C:\Users\clara\Downloads\1189799.zip
2021-04-23 10:39 - 2021-04-23 15:07 - 000000000 ___DC C:\Users\clara\Documents\Electronic Arts
2021-04-23 09:34 - 2021-04-23 09:34 - 000001394 _____ C:\Users\clara\Desktop\Origin - Raccourci.lnk
2021-04-23 02:54 - 2021-04-23 02:54 - 000000000 ____D C:\Users\clara\AppData\Local\MangaReader
2021-04-23 02:30 - 2021-04-23 02:30 - 000000000 ____D C:\Users\clara\AppData\Local\Adaware
2021-04-23 02:25 - 2021-04-23 02:25 - 000001482 _____ C:\Users\Public\Desktop\Les Sims 3.lnk
2021-04-23 01:48 - 2021-04-24 14:14 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-04-23 01:48 - 2021-04-23 09:34 - 000000000 ____D C:\Program Files (x86)\Origin
2021-04-23 01:45 - 2021-04-25 01:16 - 000000000 ____D C:\Users\clara\AppData\Roaming\Origin
2021-04-23 01:45 - 2021-04-24 14:14 - 000000000 ____D C:\Users\clara\AppData\Local\Origin
2021-04-23 01:19 - 2021-04-23 01:19 - 000001919 ____C C:\Users\clara\Desktop\Among Us - Raccourci.lnk
2021-04-23 01:18 - 2021-04-23 01:18 - 000002141 ____C C:\Users\clara\Desktop\hakuneko - Raccourci.lnk
2021-04-23 01:18 - 2021-04-23 01:18 - 000001485 ____C C:\Users\clara\Desktop\DeSmuME_0.9.11_x64 - Raccourci.lnk
2021-04-22 22:47 - 2021-04-22 22:47 - 008534696 _____ (Malwarebytes) C:\Users\clara\Desktop\adwcleaner_8.2.exe
2021-04-22 22:39 - 2021-04-25 12:39 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\V69R76UTI2.tmp
2021-04-22 22:39 - 2021-04-22 22:39 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-04-22 21:15 - 2021-04-22 21:15 - 002298368 _____ (Farbar) C:\Users\clara\Documents\FRST64.exe
2021-04-22 21:14 - 2021-04-25 12:43 - 000000000 ____D C:\FRST
2021-04-22 20:38 - 2021-04-22 20:38 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-22 20:38 - 2021-04-22 20:38 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-22 20:38 - 2021-04-22 20:38 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-04-22 20:38 - 2021-04-22 20:38 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-04-22 20:38 - 2021-04-22 20:38 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-04-22 20:38 - 2021-04-22 20:38 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-04-22 20:37 - 2021-04-22 20:37 - 000000000 ____D C:\Program Files\Malwarebytes
2021-04-22 20:31 - 2021-04-23 15:28 - 027787264 _____ C:\WINDOWS\system32\C_32770.NLS
2021-04-22 18:55 - 2021-04-22 18:55 - 000000000 ____D C:\Users\clara\AppData\Local\mbam
2021-04-22 17:07 - 2021-04-22 17:07 - 000000000 ___DC C:\Users\clara\AppData\LocalLow\BitTorrent
2021-04-22 16:26 - 2021-04-22 21:49 - 000000000 ____D C:\Users\clara\AppData\Roaming\SysInfoTool
2021-04-22 15:27 - 2021-04-22 15:27 - 000000841 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2021-04-22 15:27 - 2021-04-22 15:27 - 000000000 ____D C:\Users\clara\AppData\Roaming\Disc-Soft
2021-04-22 15:27 - 2021-04-22 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2021-04-22 15:26 - 2021-04-22 15:27 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2021-04-22 15:26 - 2021-04-22 15:26 - 000000000 ____D C:\ProgramData\Disc-Soft
2021-04-21 00:10 - 2021-04-23 11:16 - 000000045 _____ C:\LoadOption.ini
2021-04-21 00:10 - 2021-04-23 10:39 - 000000047 _____ C:\launchermanifest.pid
2021-04-21 00:09 - 2021-04-21 00:09 - 000000877 ____C C:\Users\clara\Desktop\zz images - Raccourci.lnk
2021-04-21 00:09 - 2021-04-21 00:09 - 000000848 ____C C:\Users\clara\Desktop\Mangas - Raccourci.lnk
2021-04-21 00:03 - 2021-04-24 23:10 - 000000000 ___DC C:\Users\clara\Documents\docs
2021-04-20 17:13 - 2021-04-20 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-04-20 17:13 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-04-16 22:54 - 2021-04-16 22:54 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-16 22:54 - 2021-04-16 22:54 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-16 22:54 - 2021-04-16 22:54 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-06 03:36 - 2021-04-06 03:38 - 000000000 ____D C:\Users\clara\AppData\Roaming\obs-studio
2021-04-06 03:36 - 2021-04-06 03:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-04-06 03:35 - 2021-04-06 03:38 - 000000000 ____D C:\Program Files\obs-studio
2021-03-31 23:40 - 2021-03-31 23:40 - 000000000 ____D C:\Users\clara\ansel
2021-03-30 19:08 - 2021-03-30 19:08 - 000000000 ____D C:\Users\clara\AppData\Local\RomStation
2021-03-27 01:11 - 2021-04-22 18:12 - 000000000 ____D C:\WINDOWS\SysWOW64\directx

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-25 12:41 - 2017-04-06 23:07 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-25 12:39 - 2020-11-07 14:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-25 12:39 - 2020-11-07 14:45 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-25 12:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-04-25 12:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-25 12:39 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-04-25 12:39 - 2018-12-25 23:58 - 000000000 __SHD C:\Users\clara\IntelGraphicsProfiles
2021-04-25 12:19 - 2020-11-07 14:59 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{B70AC419-DF1D-40C2-8CC2-565E0F8CEEBA}
2021-04-25 01:16 - 2018-12-26 01:39 - 000000000 ____D C:\ProgramData\Origin
2021-04-24 21:31 - 2020-11-07 14:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-24 14:18 - 2020-11-07 14:53 - 001926118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-24 14:18 - 2019-12-07 16:49 - 000834610 _____ C:\WINDOWS\system32\perfh00C.dat
2021-04-24 14:18 - 2019-12-07 16:49 - 000168324 _____ C:\WINDOWS\system32\perfc00C.dat
2021-04-24 14:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-24 13:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-23 15:10 - 2016-09-21 19:49 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2021-04-23 14:02 - 2019-09-01 19:39 - 000000000 ___DC C:\Users\clara\AppData\Local\CrashDumps
2021-04-23 13:36 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-23 13:36 - 2019-12-07 11:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2021-04-23 13:34 - 2015-10-30 08:28 - 000000000 ____D C:\Users\Default.migrated
2021-04-23 11:58 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-23 11:57 - 2020-11-14 02:28 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-23 10:50 - 2018-12-26 05:15 - 000000000 ___DC C:\Users\clara\AppData\Local\D3DSCache
2021-04-23 02:47 - 2018-12-25 23:58 - 000000000 ___DC C:\Users\clara\AppData\Local\Packages
2021-04-23 02:44 - 2018-12-25 23:59 - 000000000 ___DC C:\Users\clara\AppData\Local\PlaceholderTileLogoFolder
2021-04-23 02:25 - 2018-12-26 02:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Sims 3
2021-04-23 01:37 - 2019-01-27 20:46 - 000000000 ___DC C:\Users\clara\AppData\Roaming\vlc
2021-04-22 22:38 - 2020-11-07 14:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\updane
2021-04-22 22:38 - 2020-11-07 14:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\{5EB3AA42-D6D1-D197-F7AD-322B33194BF9}
2021-04-22 22:38 - 2020-11-07 14:48 - 000000000 ____D C:\Users\clara
2021-04-22 22:38 - 2020-01-31 01:58 - 000000000 ___DC C:\Users\clara\AppData\LocalLow\Temp
2021-04-22 22:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-04-22 22:38 - 2017-04-28 22:44 - 000000000 ___DC C:\Users\Mohammed\AppData\LocalLow\Temp
2021-04-22 22:38 - 2015-10-30 09:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-04-22 21:49 - 2019-11-28 16:23 - 000000000 ____D C:\Users\clara\AppData\Local\WallpaperHd
2021-04-22 21:49 - 2019-03-07 02:47 - 000000000 ____D C:\Program Files (x86)\PosteRazor
2021-04-22 21:49 - 2016-12-06 23:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-04-22 21:48 - 2020-11-07 14:48 - 000000000 ____D C:\Users\Mohammed
2021-04-22 20:59 - 2020-11-07 14:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-04-22 20:59 - 2018-12-25 23:59 - 000000000 ___DC C:\Users\clara\AppData\Local\Hewlett-Packard
2021-04-22 20:59 - 2016-11-25 09:11 - 000000000 ___DC C:\Users\Mohammed\AppData\Local\HP
2021-04-22 20:59 - 2016-11-25 09:10 - 000000000 ___DC C:\Users\Mohammed\AppData\Local\Hewlett-Packard
2021-04-22 20:59 - 2016-09-21 20:23 - 000000000 ____D C:\ProgramData\HP
2021-04-22 20:59 - 2016-09-21 19:50 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2021-04-22 20:59 - 2016-04-01 05:02 - 000000000 __HDC C:\hp
2021-04-22 20:59 - 2016-04-01 04:17 - 000000000 ____D C:\Program Files\HP
2021-04-22 20:59 - 2016-04-01 04:17 - 000000000 ____D C:\Program Files (x86)\HP
2021-04-22 20:58 - 2018-12-25 23:58 - 000000000 ___DC C:\Users\clara\AppData\Roaming\Hewlett-Packard
2021-04-22 20:58 - 2016-11-25 09:11 - 000000000 ___DC C:\Users\Mohammed\AppData\Roaming\Hewlett-Packard
2021-04-22 20:55 - 2020-03-23 03:46 - 000000218 _____ C:\Users\clara\AppData\Local\recently-used.xbel
2021-04-22 20:34 - 2021-01-31 15:39 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-22 20:34 - 2020-06-30 17:42 - 000000000 ____D C:\Users\clara\AppData\Roaming\uTorrent
2021-04-22 20:34 - 2020-01-21 01:38 - 000000000 ____D C:\Users\clara\AppData\Roaming\XnView
2021-04-22 20:34 - 2019-12-01 16:51 - 000000000 ____D C:\Users\clara\AppData\Roaming\Azureus
2021-04-22 20:34 - 2019-11-28 16:23 - 000000000 ____D C:\Users\clara\AppData\Roaming\DAEMON Tools Lite
2021-04-22 20:31 - 2019-12-07 11:03 - 027787264 _____ C:\WINDOWS\system32\config\BCD00000000
2021-04-22 20:29 - 2020-09-30 08:39 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-22 20:29 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-04-22 20:13 - 2016-09-21 19:51 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-04-22 20:11 - 2019-09-01 19:32 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-22 17:25 - 2020-06-30 17:42 - 000000000 ____D C:\Users\clara\AppData\Local\BitTorrentHelper
2021-04-21 14:01 - 2017-04-06 23:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-21 14:00 - 2020-11-07 14:45 - 000546680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-21 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-21 01:05 - 2020-11-07 14:59 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-429569208-803888368-3536052390-1003UA
2021-04-21 01:05 - 2020-11-07 14:59 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-429569208-803888368-3536052390-1003Core
2021-04-20 17:13 - 2020-12-14 19:56 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2020-12-14 19:56 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-20 17:13 - 2017-04-06 23:07 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-04-20 17:13 - 2016-09-21 19:56 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-04-18 19:56 - 2016-04-01 04:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-04-16 22:58 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-16 22:53 - 2020-11-07 14:46 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-16 22:40 - 2017-01-29 17:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-16 22:20 - 2017-01-29 17:16 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-13 01:38 - 2020-11-07 14:59 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-429569208-803888368-3536052390-1003
2021-04-13 01:38 - 2020-11-07 14:48 - 000002408 ____C C:\Users\clara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-13 01:38 - 2018-12-25 23:59 - 000000000 ___RD C:\Users\clara\OneDrive
2021-04-12 23:51 - 2020-11-14 02:28 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-12 23:51 - 2020-11-14 02:28 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-08 13:22 - 2020-11-07 14:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-04-07 13:38 - 2020-12-14 19:56 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-04-06 01:12 - 2019-12-11 20:06 - 000000000 ____D C:\Users\clara\AppData\Roaming\Discord
2021-03-31 23:40 - 2020-12-14 19:56 - 000000000 ____D C:\Users\clara\AppData\Local\NVIDIA Corporation
2021-03-31 23:40 - 2019-04-20 17:50 - 000000000 ___DC C:\Users\clara\AppData\Local\NVIDIA
2021-03-30 19:08 - 2020-01-03 13:19 - 000000000 ____D C:\Users\clara\AppData\Local\JxBrowser

==================== Fichiers à la racine de certains dossiers ========

2021-04-25 12:39 - 2021-04-25 12:39 - 001388448 _____ () C:\Users\Public\ASR.dat
2021-04-25 12:39 - 2021-04-25 12:39 - 001388448 _____ () C:\Users\Public\VOIP.dat
2019-09-17 13:52 - 2019-09-17 13:52 - 000001192 ____C () C:\Users\clara\AppData\Roaming\AdobeWLCMR2Cache.dat
2019-09-21 00:55 - 2019-11-07 01:56 - 000000032 ____C () C:\Users\clara\AppData\Roaming\WB.CFG
2020-03-23 03:46 - 2021-04-22 20:55 - 000000218 _____ () C:\Users\clara\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================