Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Exécuté par Utilisateur (administrateur) sur DESKTOP-BSHNR3L (Gigabyte Technology Co., Ltd. H110M-S2V) (11-03-2021 16:34:50)
Exécuté depuis C:\Users\Utilisateur\Desktop
Profils chargés: Utilisateur
Platform: Windows 10 Pro Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Fortnite\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) D:\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Utilisateur\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Tencent Technology(Shenzhen) Company Limited -> ) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\TBSWebRenderer.exe <3>
(TSG INTERACTIVE SERVICES LIMITED -> Rational Intellectual Holdings Ltd.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [EpicGamesLauncher] => D:\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32952800 2021-03-10] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Chromium] => "c:\users\utilisateur\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-02-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Discord] => C:\ProgramData\Utilisateur\Discord\app-0.0.308\Discord.exe
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\RunOnce: [Application Restart #0] => C:\Users\Utilisateur\AppData\Local\chromium\Application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session --flag-switches-begin --flag-switches-end --origin-trial (l'élément de données a 121 caractères en plus).
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {c7369b9a-2bdb-11eb-aa12-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {c7369c02-2bdb-11eb-aa12-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {de316f50-4896-11eb-aa1c-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON ET-2600 Series 64MonitorBE: C:\Windows\system32\E_YLMBRXE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-28] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {11F19692-AD7D-485E-834C-229D4DAA6F39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {187C32F6-63E9-41A7-8B5D-A9DC09D240EC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-10] (Google Inc -> Google Inc.)
Task: {1A5EB682-4EB2-4410-A538-6517E2A70D99} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {230B9D42-CFC1-48DB-A60D-1844829B06C9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {35D0362B-93C1-4387-80B9-82C38681F905} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {5491971B-DDCB-4EB1-B834-EBF79E49E2EE} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
Task: {6701D04C-2177-4248-9DBE-AFDA2E7D829B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {70390FDC-E362-4A6A-AFBA-5E505BE30610} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7430F41D-1636-4DF7-B20C-0A9909296539} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {7EAB0F8A-E8C2-4BC6-9C2F-33FACDF38E5F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-10] (Google Inc -> Google Inc.)
Task: {83794C1E-A517-4362-9E3E-1476E1A6A4EA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [633824 2021-02-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {86751DAA-8903-43BC-A881-1DC5C910C375} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {8B823D9F-BCFA-480D-BB1C-96DF8814B584} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8FD5E70B-EB8A-4200-A62E-A8B57F67AFDD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {B7DA94EA-8888-4FA6-950E-B2E09E3B6154} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA544789-C825-4789-B18C-6E6BBB004866} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEC7F33E-060D-4DDD-92BF-BBF61E126AAC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDC9DF02-9AF6-4561-855F-DC6F70C5A723} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E30456D8-E767-4D5D-B791-F9FE89161317} - System32\Tasks\EPSON ET-2600 Series Update {2355DF53-D24D-4314-B7E6-0EFB1433A445} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRXE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {EA627C37-AB0D-4FF3-B144-9C6C8D24D6C6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {EBACE58E-11F7-4225-8D19-7675CEE65342} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {EDF85D80-A601-4C45-AB0C-9EBA0B82F76F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON ET-2600 Series Update {2355DF53-D24D-4314-B7E6-0EFB1433A445}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRXE.EXE:/EXE:{2355DF53-D24D-4314-B7E6-0EFB1433A445} /F:UpdateWORKGROUP\DESKTOP-BSHNR3L$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9248670-09ce-4c14-b487-5c60dfbe0a17}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 8p3zq00q.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\TomTom\HOME\Profiles\ygqt16b3.default [2019-03-31]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8p3zq00q.default [2020-01-26]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\gmez6diw.default-release-1595570694126 [2021-03-11]
FF Homepage: Mozilla\Firefox\Profiles\gmez6diw.default-release-1595570694126 -> hxxps://www.orange.fr/portail
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2021-03-08]
CHR Extension: (Slides) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-06]
CHR Extension: (Docs) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-06]
CHR Extension: (Google Drive) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-17]
CHR Extension: (YouTube) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-01-17]
CHR Extension: (Sheets) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-17]
CHR Extension: (Yahoo Homepage) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjgkhmocaaicjdbafhgoncfbopkfcng [2021-01-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-17]
CHR Extension: (Chrome Media Router) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-17]
CHR HKLM\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKLM\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
CHR HKU\S-1-5-21-182731202-3484933056-1877925650-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKU\S-1-5-21-182731202-3484933056-1877925650-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
CHR HKLM-x32\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-21] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-05-17] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-04-18] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-25] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3480152 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 QMEmulatorService; D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [198736 2020-08-15] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aow_drv; D:\Program Files\TxGameAssistant\UI\3.21.1282.100\aow_drv_x64_ev.sys [916544 2020-08-18] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 e2esoft_ivcamaudio_simple; C:\WINDOWS\system32\drivers\iVCamAud.sys [254432 2020-09-30] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 gdrv; C:\Windows\gdrv.sys [26192 2017-11-10] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iVCam; C:\WINDOWS\system32\DRIVERS\iVCam.sys [1089512 2020-04-04] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl1ef0eb1f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0A2E0D6D-AC0D-47BF-B4F1-55C3D5559D9B}\MpKslDrv.sys [90360 2021-03-10] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [812208 2020-09-26] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 UniSafe; C:\WINDOWS\system32\drivers\UniSafe.sys [581912 2020-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-03] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49544 2021-03-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420088 2021-03-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-11 16:34 - 2021-03-11 16:35 - 000023461 _____ C:\Users\Utilisateur\Desktop\FRST.txt
2021-03-11 16:33 - 2021-03-11 16:33 - 002301440 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2021-03-10 12:23 - 2021-03-10 12:24 - 000068404 _____ C:\Users\Utilisateur\Downloads\Bulletin_2021_02_088(1).pdf
2021-03-10 12:16 - 2021-03-10 12:16 - 000068404 _____ C:\Users\Utilisateur\Downloads\Bulletin_2021_02_088.pdf
2021-03-10 09:42 - 2021-03-10 09:42 - 000061417 _____ C:\Users\Utilisateur\Downloads\4077033-T184418523-A101515492-VFT038164211.pdf
2021-03-08 17:49 - 2021-03-08 17:49 - 000000000 ____D C:\Users\Utilisateur\Winamax
2021-03-08 17:23 - 2021-03-08 17:23 - 008463216 _____ (Malwarebytes) C:\Users\Utilisateur\Desktop\adwcleaner_8.1.exe
2021-03-08 17:23 - 2021-03-08 17:23 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Tencent
2021-02-24 15:16 - 2021-02-24 15:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-24 14:49 - 2021-03-08 17:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-02-20 20:06 - 2021-02-20 20:06 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PMU Poker
2021-02-09 20:37 - 2021-02-09 20:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-09 20:37 - 2021-02-09 20:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 20:37 - 2021-02-09 20:37 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-09 20:37 - 2021-02-09 20:37 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-09 20:37 - 2021-02-09 20:37 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-11 16:35 - 2019-10-30 13:21 - 000000000 ___DC C:\FRST
2021-03-11 16:32 - 2019-01-30 14:13 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-11 16:31 - 2017-11-23 17:04 - 000000000 ____D C:\Users\Utilisateur\AppData\LocalLow\Mozilla
2021-03-11 16:30 - 2020-10-01 23:46 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\PokerStars.FR
2021-03-11 16:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-11 16:06 - 2020-11-07 22:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-11 12:25 - 2017-11-10 13:03 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-11 09:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-11 09:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-10 21:19 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-10 19:25 - 2020-02-11 20:54 - 000000000 ____D C:\Program Files (x86)\Origin
2021-03-10 13:33 - 2017-11-10 15:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 13:32 - 2017-11-10 15:17 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-08 17:49 - 2020-11-07 22:09 - 000000000 ____D C:\Users\Utilisateur
2021-03-08 17:42 - 2020-01-31 11:10 - 000000000 ____D C:\Program Files\CCleaner
2021-03-08 17:41 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-08 17:35 - 2020-11-07 22:12 - 001684792 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-08 17:35 - 2019-12-07 15:50 - 000756212 _____ C:\WINDOWS\system32\perfh00C.dat
2021-03-08 17:35 - 2019-12-07 15:50 - 000142516 _____ C:\WINDOWS\system32\perfc00C.dat
2021-03-08 17:29 - 2020-11-07 22:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-08 17:29 - 2020-11-07 22:07 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-08 17:29 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-08 17:23 - 2017-11-23 17:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-08 16:31 - 2020-06-16 18:04 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-08 16:24 - 2018-02-26 21:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-03-07 18:25 - 2020-11-07 22:13 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-07 18:24 - 2020-11-30 14:23 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b54aba239287
2021-03-07 18:24 - 2020-11-07 22:13 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-03 18:38 - 2020-09-01 10:07 - 000000000 ____D C:\Users\Utilisateur\Desktop\EDDY
2021-02-28 21:29 - 2017-11-10 16:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 15:16 - 2020-01-26 13:52 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-23 17:53 - 2020-11-07 22:13 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-182731202-3484933056-1877925650-1001
2021-02-23 17:53 - 2020-11-07 22:09 - 000002419 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-23 17:53 - 2017-11-10 12:57 - 000000000 ___RD C:\Users\Utilisateur\OneDrive
2021-02-21 20:37 - 2017-11-26 20:47 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps
2021-02-20 20:06 - 2021-01-24 22:18 - 000001383 _____ C:\Users\Utilisateur\Desktop\PMU Poker.lnk
2021-02-20 20:06 - 2019-03-20 13:22 - 000001407 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\PMU Poker.lnk
2021-02-20 20:06 - 2017-11-23 18:57 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2021-02-20 18:16 - 2020-09-30 20:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-16 13:28 - 2020-08-10 22:33 - 000001882 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Betclic Poker.fr.lnk
2021-02-16 13:28 - 2020-06-05 07:50 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Betclic Poker.fr
2021-02-12 22:09 - 2020-11-07 22:07 - 000306616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 22:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-11 18:00 - 2020-11-07 22:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
==================== Fichiers à la racine de certains dossiers ========
2020-01-31 12:09 - 2020-01-31 12:09 - 003333504 _____ (Nicolas Coolman) C:\Users\Utilisateur\ZHPCleaner.exe
2017-11-23 17:31 - 2017-11-23 17:38 - 000000115 _____ () C:\Users\Utilisateur\AppData\Roaming\LogFile.txt
2019-02-22 22:10 - 2019-02-22 22:10 - 000006144 _____ () C:\Users\Utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Utilisateur (administrateur) sur DESKTOP-BSHNR3L (Gigabyte Technology Co., Ltd. H110M-S2V) (11-03-2021 16:34:50)
Exécuté depuis C:\Users\Utilisateur\Desktop
Profils chargés: Utilisateur
Platform: Windows 10 Pro Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Fortnite\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) D:\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Utilisateur\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Tencent Technology(Shenzhen) Company Limited -> ) D:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\Program Files\TxGameAssistant\AppMarket\TBSWebRenderer.exe <3>
(TSG INTERACTIVE SERVICES LIMITED -> Rational Intellectual Holdings Ltd.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [EpicGamesLauncher] => D:\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32952800 2021-03-10] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Chromium] => "c:\users\utilisateur\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-02-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\Run: [Discord] => C:\ProgramData\Utilisateur\Discord\app-0.0.308\Discord.exe
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\RunOnce: [Application Restart #0] => C:\Users\Utilisateur\AppData\Local\chromium\Application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session --flag-switches-begin --flag-switches-end --origin-trial (l'élément de données a 121 caractères en plus).
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {c7369b9a-2bdb-11eb-aa12-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {c7369c02-2bdb-11eb-aa12-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-182731202-3484933056-1877925650-1001\...\MountPoints2: {de316f50-4896-11eb-aa1c-e0d55e05f377} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON ET-2600 Series 64MonitorBE: C:\Windows\system32\E_YLMBRXE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-28] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {11F19692-AD7D-485E-834C-229D4DAA6F39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {187C32F6-63E9-41A7-8B5D-A9DC09D240EC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-10] (Google Inc -> Google Inc.)
Task: {1A5EB682-4EB2-4410-A538-6517E2A70D99} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {230B9D42-CFC1-48DB-A60D-1844829B06C9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {35D0362B-93C1-4387-80B9-82C38681F905} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {5491971B-DDCB-4EB1-B834-EBF79E49E2EE} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
Task: {6701D04C-2177-4248-9DBE-AFDA2E7D829B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {70390FDC-E362-4A6A-AFBA-5E505BE30610} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7430F41D-1636-4DF7-B20C-0A9909296539} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {7EAB0F8A-E8C2-4BC6-9C2F-33FACDF38E5F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-10] (Google Inc -> Google Inc.)
Task: {83794C1E-A517-4362-9E3E-1476E1A6A4EA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [633824 2021-02-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {86751DAA-8903-43BC-A881-1DC5C910C375} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {8B823D9F-BCFA-480D-BB1C-96DF8814B584} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8FD5E70B-EB8A-4200-A62E-A8B57F67AFDD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {B7DA94EA-8888-4FA6-950E-B2E09E3B6154} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA544789-C825-4789-B18C-6E6BBB004866} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEC7F33E-060D-4DDD-92BF-BBF61E126AAC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDC9DF02-9AF6-4561-855F-DC6F70C5A723} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E30456D8-E767-4D5D-B791-F9FE89161317} - System32\Tasks\EPSON ET-2600 Series Update {2355DF53-D24D-4314-B7E6-0EFB1433A445} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRXE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {EA627C37-AB0D-4FF3-B144-9C6C8D24D6C6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {EBACE58E-11F7-4225-8D19-7675CEE65342} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {EDF85D80-A601-4C45-AB0C-9EBA0B82F76F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON ET-2600 Series Update {2355DF53-D24D-4314-B7E6-0EFB1433A445}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRXE.EXE:/EXE:{2355DF53-D24D-4314-B7E6-0EFB1433A445} /F:UpdateWORKGROUP\DESKTOP-BSHNR3L$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9248670-09ce-4c14-b487-5c60dfbe0a17}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 8p3zq00q.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\TomTom\HOME\Profiles\ygqt16b3.default [2019-03-31]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8p3zq00q.default [2020-01-26]
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\gmez6diw.default-release-1595570694126 [2021-03-11]
FF Homepage: Mozilla\Firefox\Profiles\gmez6diw.default-release-1595570694126 -> hxxps://www.orange.fr/portail
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2021-03-08]
CHR Extension: (Slides) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-06]
CHR Extension: (Docs) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-06]
CHR Extension: (Google Drive) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-17]
CHR Extension: (YouTube) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-01-17]
CHR Extension: (Sheets) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-17]
CHR Extension: (Yahoo Homepage) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbjgkhmocaaicjdbafhgoncfbopkfcng [2021-01-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-17]
CHR Extension: (Chrome Media Router) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-17]
CHR HKLM\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKLM\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
CHR HKU\S-1-5-21-182731202-3484933056-1877925650-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKU\S-1-5-21-182731202-3484933056-1877925650-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
CHR HKLM-x32\...\Chrome\Extension: [bnbbhgcfmdnamgfgjfgjdkcjbofkjihb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [jbjgkhmocaaicjdbafhgoncfbopkfcng]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-21] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-05-17] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-04-18] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-25] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3480152 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 QMEmulatorService; D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [198736 2020-08-15] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aow_drv; D:\Program Files\TxGameAssistant\UI\3.21.1282.100\aow_drv_x64_ev.sys [916544 2020-08-18] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 e2esoft_ivcamaudio_simple; C:\WINDOWS\system32\drivers\iVCamAud.sys [254432 2020-09-30] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 gdrv; C:\Windows\gdrv.sys [26192 2017-11-10] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iVCam; C:\WINDOWS\system32\DRIVERS\iVCam.sys [1089512 2020-04-04] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl1ef0eb1f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0A2E0D6D-AC0D-47BF-B4F1-55C3D5559D9B}\MpKslDrv.sys [90360 2021-03-10] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [812208 2020-09-26] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 UniSafe; C:\WINDOWS\system32\drivers\UniSafe.sys [581912 2020-09-27] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-03] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49544 2021-03-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420088 2021-03-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-11 16:34 - 2021-03-11 16:35 - 000023461 _____ C:\Users\Utilisateur\Desktop\FRST.txt
2021-03-11 16:33 - 2021-03-11 16:33 - 002301440 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2021-03-10 12:23 - 2021-03-10 12:24 - 000068404 _____ C:\Users\Utilisateur\Downloads\Bulletin_2021_02_088(1).pdf
2021-03-10 12:16 - 2021-03-10 12:16 - 000068404 _____ C:\Users\Utilisateur\Downloads\Bulletin_2021_02_088.pdf
2021-03-10 09:42 - 2021-03-10 09:42 - 000061417 _____ C:\Users\Utilisateur\Downloads\4077033-T184418523-A101515492-VFT038164211.pdf
2021-03-08 17:49 - 2021-03-08 17:49 - 000000000 ____D C:\Users\Utilisateur\Winamax
2021-03-08 17:23 - 2021-03-08 17:23 - 008463216 _____ (Malwarebytes) C:\Users\Utilisateur\Desktop\adwcleaner_8.1.exe
2021-03-08 17:23 - 2021-03-08 17:23 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Tencent
2021-02-24 15:16 - 2021-02-24 15:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-24 14:49 - 2021-03-08 17:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-02-20 20:06 - 2021-02-20 20:06 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PMU Poker
2021-02-09 20:37 - 2021-02-09 20:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-09 20:37 - 2021-02-09 20:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 20:37 - 2021-02-09 20:37 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-09 20:37 - 2021-02-09 20:37 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-09 20:37 - 2021-02-09 20:37 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-03-11 16:35 - 2019-10-30 13:21 - 000000000 ___DC C:\FRST
2021-03-11 16:32 - 2019-01-30 14:13 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-11 16:31 - 2017-11-23 17:04 - 000000000 ____D C:\Users\Utilisateur\AppData\LocalLow\Mozilla
2021-03-11 16:30 - 2020-10-01 23:46 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\PokerStars.FR
2021-03-11 16:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-11 16:06 - 2020-11-07 22:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-11 12:25 - 2017-11-10 13:03 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-11 09:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-11 09:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-10 21:19 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-10 19:25 - 2020-02-11 20:54 - 000000000 ____D C:\Program Files (x86)\Origin
2021-03-10 13:33 - 2017-11-10 15:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 13:32 - 2017-11-10 15:17 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-08 17:49 - 2020-11-07 22:09 - 000000000 ____D C:\Users\Utilisateur
2021-03-08 17:42 - 2020-01-31 11:10 - 000000000 ____D C:\Program Files\CCleaner
2021-03-08 17:41 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-08 17:35 - 2020-11-07 22:12 - 001684792 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-08 17:35 - 2019-12-07 15:50 - 000756212 _____ C:\WINDOWS\system32\perfh00C.dat
2021-03-08 17:35 - 2019-12-07 15:50 - 000142516 _____ C:\WINDOWS\system32\perfc00C.dat
2021-03-08 17:29 - 2020-11-07 22:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-08 17:29 - 2020-11-07 22:07 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-08 17:29 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-08 17:23 - 2017-11-23 17:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-08 16:31 - 2020-06-16 18:04 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-08 16:24 - 2018-02-26 21:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-03-07 18:25 - 2020-11-07 22:13 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-07 18:24 - 2020-11-30 14:23 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b54aba239287
2021-03-07 18:24 - 2020-11-07 22:13 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-03 18:38 - 2020-09-01 10:07 - 000000000 ____D C:\Users\Utilisateur\Desktop\EDDY
2021-02-28 21:29 - 2017-11-10 16:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 15:16 - 2020-01-26 13:52 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-23 17:53 - 2020-11-07 22:13 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-182731202-3484933056-1877925650-1001
2021-02-23 17:53 - 2020-11-07 22:09 - 000002419 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-23 17:53 - 2017-11-10 12:57 - 000000000 ___RD C:\Users\Utilisateur\OneDrive
2021-02-21 20:37 - 2017-11-26 20:47 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps
2021-02-20 20:06 - 2021-01-24 22:18 - 000001383 _____ C:\Users\Utilisateur\Desktop\PMU Poker.lnk
2021-02-20 20:06 - 2019-03-20 13:22 - 000001407 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\PMU Poker.lnk
2021-02-20 20:06 - 2017-11-23 18:57 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2021-02-20 18:16 - 2020-09-30 20:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-16 13:28 - 2020-08-10 22:33 - 000001882 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Betclic Poker.fr.lnk
2021-02-16 13:28 - 2020-06-05 07:50 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Betclic Poker.fr
2021-02-12 22:09 - 2020-11-07 22:07 - 000306616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 22:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-11 18:00 - 2020-11-07 22:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
==================== Fichiers à la racine de certains dossiers ========
2020-01-31 12:09 - 2020-01-31 12:09 - 003333504 _____ (Nicolas Coolman) C:\Users\Utilisateur\ZHPCleaner.exe
2017-11-23 17:31 - 2017-11-23 17:38 - 000000115 _____ () C:\Users\Utilisateur\AppData\Roaming\LogFile.txt
2019-02-22 22:10 - 2019-02-22 22:10 - 000006144 _____ () C:\Users\Utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================