Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2021
Exécuté par Wrogks (administrateur) sur DESKTOP-ULASB3D (Micro-Star International Co., Ltd. MS-7B98) (01-08-2021 16:02:04)
Exécuté depuis C:\Users\marou\Desktop
Profils chargés: Wrogks
Platform: Windows 10 Home Version 20H2 19042.1110 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Electronic Arts, Inc. -> Electronic Arts) E:\EA Desktop\EA Desktop\EABackgroundService.exe
(Electronic Arts, Inc. -> Electronic Arts) F:\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.54.22004.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.54.22004.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1081_none_7e3d47227c694b34\TiWorker.exe
(NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [564152 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443296 2021-07-29] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [CCleaner Smart Cleaning] => E:\ccleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33251808 2021-07-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13725536 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\WINDOWS\system32\hpinkstsa011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\WINDOWS\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.107\Installer\chrmstp.exe [2021-07-21] (Google LLC -> Google LLC)
Startup: C:\Users\marou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk [2021-08-01]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3050A J611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN31L1CMFK05WK;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0516231F-D6D1-4C94-843E-DDFFD489083D} - System32\Tasks\BlueStacksHelper => E:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {06DE9112-AAD1-45D2-A15F-3A2AD8850E0C} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2345120 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {1CCEEB74-F79C-4322-A695-9719A6D84B41} - System32\Tasks\CCleanerSkipUAC => E:\ccleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {48BCD9F6-2336-4EF2-B666-3E846E128126} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {5FA4054A-346D-4AF3-B914-D252AF011B79} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {8704F155-53BF-46A5-8A50-0F6993F2F70D} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.5.44\WSCStub.exe [643584 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {BCA1801B-46C4-440A-885A-77171D34C7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-02] (Google LLC -> Google LLC)
Task: {C713671F-BB62-4A8E-A4F4-9AF06A00AC7B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-02] (Google LLC -> Google LLC)
Task: {DA774974-DAF1-4AAC-8068-0B23EC078688} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {E0F083EC-E420-4B1B-9C8D-ECC69DCE661C} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {E25ACFC0-DA26-472A-BAF8-1B0B83894328} - System32\Tasks\CCleaner Update => E:\ccleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d52380b5-bfd8-4592-9894-16b04918711d}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-31]
Edge Extension: (Outlook) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-04-03]
Edge Extension: (Word) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-04-03]
Edge Extension: (Excel) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-04-03]
Edge Extension: (PowerPoint) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-04-03]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default [2021-08-01]
CHR DownloadDir: G:\films
CHR Extension: (Slides) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-02]
CHR Extension: (Docs) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-02]
CHR Extension: (Google Drive) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-02]
CHR Extension: (YouTube) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-02]
CHR Extension: (Sheets) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-02]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2021-04-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-06-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-02]
CHR Extension: (Gmail) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-05-09] (BattlEye Innovations e.K. -> )
R2 EABackgroundService; E:\EA Desktop\EA Desktop\EABackgroundService.exe [9846680 2021-07-30] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-05-11] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1955680 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10787232 2021-07-29] (Logitech Inc -> Logitech, Inc.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe [343336 2021-05-31] (NortonLifeLock Inc. -> Broadcom)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe [1055048 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Origin Client Service; F:\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10322376 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.21.1.151\Definitions\BASHDefs\20210730.011\BHDrvx64.sys [1995864 2021-03-22] (Symantec Corporation -> Broadcom)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\ccSetx64.sys [192248 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-01-22] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-04-02] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.21.1.151\Definitions\IPSDefs\20210730.061\IDSvia64.sys [1488976 2021-04-06] (Symantec Corporation -> Broadcom)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-07-29] (Logitech Inc -> Logitech)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-25] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-25] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-25] (Logitech Inc -> Logitech)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\nsvst.sys [54848 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [48672 2015-09-25] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSP64.SYS [890464 2021-05-31] (Symantec Corporation -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSPX64.SYS [50272 2021-05-31] (Symantec Corporation -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SYMEFASI64.SYS [2062424 2021-05-31] (Symantec Corporation -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SymELAM.sys [25080 2021-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [99912 2021-04-02] (Symantec Corporation -> Symantec Corporation)
S3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.21.1.151\SymPlatform\SymEvnt.sys [712432 2021-07-13] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\Ironx64.SYS [316488 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\symnets.sys [575328 2021-05-31] (Symantec Corporation -> Symantec Corporation)
S3 usbbus; C:\WINDOWS\System32\drivers\lgx64bus.sys [17920 2014-11-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbDiag; C:\WINDOWS\System32\drivers\lgx64diag.sys [28160 2014-11-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbGps; C:\WINDOWS\System32\drivers\lgx64gps.sys [27136 2014-11-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8182600 2021-05-20] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\wpCtrlDrv.sys [1013792 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-01 16:02 - 2021-08-01 16:02 - 000019631 _____ C:\Users\marou\Desktop\FRST.txt
2021-08-01 16:01 - 2021-08-01 16:02 - 000000000 ____D C:\FRST
2021-08-01 16:00 - 2021-08-01 16:00 - 000002543 _____ C:\Users\marou\Desktop\AdwCleaner[C11].txt
2021-08-01 15:59 - 2021-07-07 18:37 - 008553680 _____ (Malwarebytes) C:\Users\marou\Desktop\adwcleaner_8.3.0.exe
2021-08-01 15:56 - 2021-08-01 15:56 - 000006736 _____ C:\Users\marou\Desktop\ZHPCleaner (S).txt
2021-08-01 15:50 - 2021-08-01 15:50 - 000000882 _____ C:\Users\marou\Desktop\ZHPCleaner.lnk
2021-08-01 15:43 - 2021-08-01 15:43 - 002300416 _____ (Farbar) C:\Users\marou\Desktop\FRST64.exe
2021-08-01 15:41 - 2021-08-01 15:41 - 000000872 _____ C:\Users\marou\Desktop\ZHPSuite.lnk
2021-08-01 09:47 - 2021-08-01 09:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-07-31 17:13 - 2021-08-01 15:44 - 000368862 _____ C:\Users\marou\Desktop\ZHPDiag.txt
2021-07-31 08:44 - 2021-08-01 15:56 - 000000000 ____D C:\Users\marou\AppData\Roaming\ZHP
2021-07-31 08:44 - 2021-08-01 15:46 - 000000000 ____D C:\Users\marou\AppData\Local\ZHP
2021-07-31 08:33 - 2021-07-31 08:33 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Team17
2021-07-30 14:20 - 2021-07-30 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-07-30 14:20 - 2021-07-30 14:20 - 000000000 ____D C:\Program Files\LGHUB
2021-07-29 20:01 - 2021-07-29 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riven - The Sequel to Myst [GOG.com]
2021-07-29 19:59 - 2021-07-29 20:01 - 000000000 ____D C:\ProgramData\GOG.com
2021-07-29 19:59 - 2021-07-29 20:01 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2021-07-29 19:59 - 2021-07-29 19:59 - 000000000 ____D C:\Users\marou\AppData\Local\GOG.com
2021-07-29 19:59 - 2021-07-29 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2021-07-29 19:41 - 2021-07-29 19:41 - 000000000 ____D C:\Users\marou\AppData\Local\DOSBox
2021-07-28 22:27 - 2021-07-28 22:27 - 000000000 ____D C:\Users\marou\AppData\Roaming\ScummVM
2021-07-25 21:05 - 2021-07-25 21:05 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Blizzard Entertainment
2021-07-25 21:05 - 2021-07-25 21:05 - 000000000 ____D C:\Users\marou\AppData\Local\Blizzard
2021-07-18 19:23 - 2021-07-18 19:23 - 000000000 ____D C:\ProgramData\Steam
2021-07-18 19:21 - 2021-07-28 20:17 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-07-18 19:21 - 2021-07-18 19:21 - 000000000 ____D C:\Users\marou\AppData\Local\UWebKit
2021-07-18 19:19 - 2021-07-18 19:19 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Cyan Worlds
2021-07-18 18:47 - 2021-07-18 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2021-07-18 10:58 - 2021-07-18 10:58 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-18 10:58 - 2021-07-18 10:58 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-18 10:58 - 2021-07-18 10:58 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-09 07:51 - 2021-07-09 07:51 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-09 07:51 - 2021-07-09 07:51 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-09 07:51 - 2021-07-09 07:51 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-09 07:51 - 2021-07-09 07:51 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-09 07:51 - 2021-07-09 07:51 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-09 07:51 - 2021-07-09 07:51 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-08 20:35 - 2021-07-16 10:04 - 000000000 ____D C:\Users\marou\Desktop\chant
2021-07-07 16:34 - 2021-07-07 16:34 - 000000000 ____D C:\Program Files\Common Files\logishrd
2021-07-07 09:29 - 2021-07-07 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Video v5 for Premiere
2021-07-07 08:15 - 2021-07-07 08:15 - 000000000 ____D C:\Users\marou\Documents\Neat Video v5 for Premiere
2021-06-27 22:59 - 2021-06-27 22:59 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Redbeet Interactive
2021-06-26 08:59 - 2021-08-01 14:54 - 000000000 ____D C:\Users\marou\AppData\Roaming\vlc
2021-06-10 12:36 - 2021-06-10 12:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-10 12:36 - 2021-06-10 12:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-10 12:36 - 2021-06-10 12:36 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-10 12:36 - 2021-06-10 12:36 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-10 12:36 - 2021-06-10 12:36 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-10 12:36 - 2021-06-10 12:36 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-10 11:13 - 2021-06-10 11:13 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Temp
2021-06-10 08:46 - 2021-06-10 08:46 - 000015817 _____ C:\Users\marou\AppData\Local\recently-used.xbel
2021-06-07 16:23 - 2021-06-07 16:23 - 000000000 ____D C:\Users\marou\Creative Cloud Files
2021-06-06 18:36 - 2021-06-06 18:36 - 000000000 ____D C:\Users\marou\Documents\Adobe
2021-06-06 18:36 - 2021-06-06 18:36 - 000000000 ____D C:\Users\marou\AppData\Local\Adobe
2021-06-06 08:16 - 2021-08-01 13:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2021-06-06 08:16 - 2021-06-06 09:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2021-06-06 08:16 - 2021-06-06 08:16 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2021-05-31 16:06 - 2021-05-31 16:08 - 000000000 ____D C:\Users\marou\AppData\Local\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000057 _____ C:\ProgramData\Ament.ini
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\Program Files\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\Program Files (x86)\HP
2021-05-31 16:06 - 2012-10-17 04:31 - 000741480 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMa011.dll
2021-05-24 17:07 - 2021-05-24 18:01 - 000000000 ____D C:\Users\marou\AppData\Local\KnockoutCity
2021-05-24 17:00 - 2021-05-24 17:00 - 000000000 ____D C:\Users\marou\AppData\Local\EADesktop
2021-05-24 16:47 - 2021-06-17 20:08 - 000000000 ____D C:\Program Files\EA Games
2021-05-24 16:47 - 2021-05-24 17:01 - 000000000 ____D C:\ProgramData\EA Desktop
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\Electronic Arts
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\EAConnect_microsoft
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\cache
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2021-05-24 15:57 - 2021-05-24 15:58 - 000000000 ____D C:\Users\marou\Documents\Call of Duty Modern Warfare
2021-05-24 15:57 - 2021-05-24 15:57 - 000000000 ____D C:\Users\marou\ansel
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Roaming\FLT
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Local\DaysGone
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Local\BendGame
2021-05-22 19:21 - 2021-05-23 07:19 - 000000000 ____D C:\Users\marou\AppData\Local\ART
2021-05-21 10:43 - 2021-06-11 10:44 - 000000000 ____D C:\Users\marou\.dbus-keyrings
2021-05-21 10:43 - 2021-05-21 10:45 - 000000000 ____D C:\Users\marou\AppData\Local\darktable
2021-05-21 10:43 - 2021-05-21 10:43 - 000000000 ____D C:\Users\marou\AppData\Roaming\NVIDIA
2021-05-14 21:36 - 2021-05-14 21:36 - 000000000 ____D C:\Users\marou\Documents\Respawn
2021-05-12 20:14 - 2021-05-12 20:14 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 20:14 - 2021-05-12 20:14 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 20:13 - 2021-05-12 20:13 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 20:13 - 2021-05-12 20:13 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 20:13 - 2021-05-12 20:13 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-12 08:53 - 2021-05-22 19:42 - 000000000 ____D C:\Users\marou\Desktop\wetransfer-3e35ba
2021-05-11 16:55 - 2021-05-11 16:55 - 000000000 ____D C:\Users\marou\AppData\Local\drmingw
2021-05-10 19:19 - 2021-05-31 16:06 - 000000000 ____D C:\ProgramData\HP
2021-05-09 19:29 - 2021-05-09 19:29 - 000000000 ___SH C:\Users\Public\Shared Files
2021-05-09 19:23 - 2021-05-09 19:23 - 000000000 ____D C:\Users\marou\AppData\Local\FortniteGame
2021-05-09 19:23 - 2021-05-09 19:23 - 000000000 ____D C:\Users\marou\AppData\Local\CrashReportClient
2021-05-06 17:30 - 2021-05-06 17:30 - 000000000 ____D C:\Users\marou\AppData\Local\Rocket League
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-01 16:03 - 2021-04-02 10:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-01 16:02 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-08-01 16:01 - 2021-04-02 10:23 - 000000000 ____D C:\Users\marou\AppData\Roaming\LGHUB
2021-08-01 16:01 - 2021-04-02 10:23 - 000000000 ____D C:\Users\marou\AppData\Local\LGHUB
2021-08-01 16:01 - 2021-04-02 10:02 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-01 16:01 - 2021-04-02 09:49 - 000266872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-01 16:01 - 2021-04-02 09:49 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-01 16:01 - 2021-04-02 09:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-01 16:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-01 16:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-01 16:00 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-01 15:59 - 2021-04-02 20:11 - 000000000 ____D C:\Users\marou\AppData\Roaming\discord
2021-08-01 15:59 - 2021-04-02 10:15 - 000000000 ____D C:\Users\marou\AppData\Local\Battle.net
2021-08-01 15:13 - 2021-04-02 20:11 - 000000000 ____D C:\Users\marou\AppData\Local\Discord
2021-08-01 13:43 - 2021-04-02 09:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-31 18:13 - 2021-04-02 11:01 - 000000000 ____D C:\Users\marou\AppData\Roaming\audacity
2021-07-31 17:27 - 2021-04-03 07:15 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-31 17:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-31 17:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-31 09:59 - 2021-04-02 10:03 - 000000000 ____D C:\Users\marou\AppData\Local\D3DSCache
2021-07-31 09:55 - 2021-04-02 10:02 - 000000000 ____D C:\Users\marou\AppData\Local\PlaceholderTileLogoFolder
2021-07-31 09:55 - 2021-04-02 09:59 - 000000000 ____D C:\Users\marou\AppData\Local\Packages
2021-07-31 06:56 - 2021-04-03 07:47 - 001752512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000250296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000195000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000159672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000038344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-07-30 14:20 - 2021-04-03 07:14 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-30 14:20 - 2021-04-03 07:14 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-29 19:21 - 2021-04-02 20:01 - 000003908 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-28 23:03 - 2021-04-02 10:13 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Norton
2021-07-21 06:42 - 2021-04-02 10:05 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-18 15:05 - 2021-04-02 09:55 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-18 15:05 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-18 15:05 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-18 10:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-18 10:55 - 2021-04-02 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-18 10:54 - 2021-04-02 19:47 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-18 00:03 - 2021-04-13 18:56 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-07-16 08:19 - 2021-04-02 10:05 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-16 08:19 - 2021-04-02 10:05 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
==================== Fichiers à la racine de certains dossiers ========
2021-06-10 08:46 - 2021-06-10 08:46 - 000015817 _____ () C:\Users\marou\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2021-04-03 07:47 - 2021-07-31 06:56 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-08-01 15:43 - 2021-08-01 15:43 - 002300416 _____ (Farbar) C:\Users\marou\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{70ce26a9-0a71-11eb-8b31-806e6f6e6963}
{3cb9ee97-18e2-11e5-82b9-d1593910898e}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {3cb9ee97-18e2-11e5-82b9-d1593910898e}
description CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {70ce26a9-0a71-11eb-8b31-806e6f6e6963}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {3cb9ee9c-18e2-11e5-82b9-d1593910898e}
device ramdisk=[C:]\Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\Winre.wim,{3cb9ee9d-18e2-11e5-82b9-d1593910898e}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\Winre.wim,{3cb9ee9d-18e2-11e5-82b9-d1593910898e}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {513e43b6-41f0-11e9-99a8-9af6f05b2d1a}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{513e43b7-41f0-11e9-99a8-9af6f05b2d1a}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{513e43b7-41f0-11e9-99a8-9af6f05b2d1a}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {fe24963e-0092-11eb-9f17-d3295c986a47}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {fe24963e-0092-11eb-9f17-d3295c986a47}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fe24963f-0092-11eb-9f17-d3295c986a47}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fe24963f-0092-11eb-9f17-d3295c986a47}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {fe24963e-0092-11eb-9f17-d3295c986a47}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {3cb9ee9d-18e2-11e5-82b9-d1593910898e}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {fe24963f-0092-11eb-9f17-d3295c986a47}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Wrogks (administrateur) sur DESKTOP-ULASB3D (Micro-Star International Co., Ltd. MS-7B98) (01-08-2021 16:02:04)
Exécuté depuis C:\Users\marou\Desktop
Profils chargés: Wrogks
Platform: Windows 10 Home Version 20H2 19042.1110 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Electronic Arts, Inc. -> Electronic Arts) E:\EA Desktop\EA Desktop\EABackgroundService.exe
(Electronic Arts, Inc. -> Electronic Arts) F:\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.54.22004.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.54.22004.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1081_none_7e3d47227c694b34\TiWorker.exe
(NortonLifeLock Inc. -> Broadcom) C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [564152 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443296 2021-07-29] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [CCleaner Smart Cleaning] => E:\ccleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33251808 2021-07-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-13950593-665534600-791042197-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13725536 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\WINDOWS\system32\hpinkstsa011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\WINDOWS\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.107\Installer\chrmstp.exe [2021-07-21] (Google LLC -> Google LLC)
Startup: C:\Users\marou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk [2021-08-01]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3050A J611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN31L1CMFK05WK;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0516231F-D6D1-4C94-843E-DDFFD489083D} - System32\Tasks\BlueStacksHelper => E:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {06DE9112-AAD1-45D2-A15F-3A2AD8850E0C} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2345120 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {1CCEEB74-F79C-4322-A695-9719A6D84B41} - System32\Tasks\CCleanerSkipUAC => E:\ccleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {48BCD9F6-2336-4EF2-B666-3E846E128126} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {5FA4054A-346D-4AF3-B914-D252AF011B79} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {8704F155-53BF-46A5-8A50-0F6993F2F70D} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.21.5.44\WSCStub.exe [643584 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {BCA1801B-46C4-440A-885A-77171D34C7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-02] (Google LLC -> Google LLC)
Task: {C713671F-BB62-4A8E-A4F4-9AF06A00AC7B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-02] (Google LLC -> Google LLC)
Task: {DA774974-DAF1-4AAC-8068-0B23EC078688} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {E0F083EC-E420-4B1B-9C8D-ECC69DCE661C} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.21.5.44\SymErr.exe [115696 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {E25ACFC0-DA26-472A-BAF8-1B0B83894328} - System32\Tasks\CCleaner Update => E:\ccleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d52380b5-bfd8-4592-9894-16b04918711d}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-31]
Edge Extension: (Outlook) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-04-03]
Edge Extension: (Word) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-04-03]
Edge Extension: (Excel) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-04-03]
Edge Extension: (PowerPoint) - C:\Users\marou\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-04-03]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> E:\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default [2021-08-01]
CHR DownloadDir: G:\films
CHR Extension: (Slides) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-02]
CHR Extension: (Docs) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-02]
CHR Extension: (Google Drive) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-02]
CHR Extension: (YouTube) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-02]
CHR Extension: (Sheets) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-02]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2021-04-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-06-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-02]
CHR Extension: (Gmail) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\marou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-05-09] (BattlEye Innovations e.K. -> )
R2 EABackgroundService; E:\EA Desktop\EA Desktop\EABackgroundService.exe [9846680 2021-07-30] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-05-11] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1955680 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10787232 2021-07-29] (Logitech Inc -> Logitech, Inc.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.21.5.44\NortonSecurity.exe [343336 2021-05-31] (NortonLifeLock Inc. -> Broadcom)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.21.5.44\nsWscSvc.exe [1055048 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Origin Client Service; F:\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10322376 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5be8de9f3373beaf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.21.1.151\Definitions\BASHDefs\20210730.011\BHDrvx64.sys [1995864 2021-03-22] (Symantec Corporation -> Broadcom)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\ccSetx64.sys [192248 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516168 2021-01-22] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153672 2021-04-02] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.21.1.151\Definitions\IPSDefs\20210730.061\IDSvia64.sys [1488976 2021-04-06] (Symantec Corporation -> Broadcom)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-07-29] (Logitech Inc -> Logitech)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-01-24] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-25] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-25] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-25] (Logitech Inc -> Logitech)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\nsvst.sys [54848 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [48672 2015-09-25] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSP64.SYS [890464 2021-05-31] (Symantec Corporation -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SRTSPX64.SYS [50272 2021-05-31] (Symantec Corporation -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SYMEFASI64.SYS [2062424 2021-05-31] (Symantec Corporation -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\SymELAM.sys [25080 2021-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [99912 2021-04-02] (Symantec Corporation -> Symantec Corporation)
S3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.21.1.151\SymPlatform\SymEvnt.sys [712432 2021-07-13] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\Ironx64.SYS [316488 2021-05-31] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\symnets.sys [575328 2021-05-31] (Symantec Corporation -> Symantec Corporation)
S3 usbbus; C:\WINDOWS\System32\drivers\lgx64bus.sys [17920 2014-11-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbDiag; C:\WINDOWS\System32\drivers\lgx64diag.sys [28160 2014-11-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbGps; C:\WINDOWS\System32\drivers\lgx64gps.sys [27136 2014-11-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8182600 2021-05-20] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1615050.02C\wpCtrlDrv.sys [1013792 2021-05-31] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-01 16:02 - 2021-08-01 16:02 - 000019631 _____ C:\Users\marou\Desktop\FRST.txt
2021-08-01 16:01 - 2021-08-01 16:02 - 000000000 ____D C:\FRST
2021-08-01 16:00 - 2021-08-01 16:00 - 000002543 _____ C:\Users\marou\Desktop\AdwCleaner[C11].txt
2021-08-01 15:59 - 2021-07-07 18:37 - 008553680 _____ (Malwarebytes) C:\Users\marou\Desktop\adwcleaner_8.3.0.exe
2021-08-01 15:56 - 2021-08-01 15:56 - 000006736 _____ C:\Users\marou\Desktop\ZHPCleaner (S).txt
2021-08-01 15:50 - 2021-08-01 15:50 - 000000882 _____ C:\Users\marou\Desktop\ZHPCleaner.lnk
2021-08-01 15:43 - 2021-08-01 15:43 - 002300416 _____ (Farbar) C:\Users\marou\Desktop\FRST64.exe
2021-08-01 15:41 - 2021-08-01 15:41 - 000000872 _____ C:\Users\marou\Desktop\ZHPSuite.lnk
2021-08-01 09:47 - 2021-08-01 09:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-07-31 17:13 - 2021-08-01 15:44 - 000368862 _____ C:\Users\marou\Desktop\ZHPDiag.txt
2021-07-31 08:44 - 2021-08-01 15:56 - 000000000 ____D C:\Users\marou\AppData\Roaming\ZHP
2021-07-31 08:44 - 2021-08-01 15:46 - 000000000 ____D C:\Users\marou\AppData\Local\ZHP
2021-07-31 08:33 - 2021-07-31 08:33 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Team17
2021-07-30 14:20 - 2021-07-30 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-07-30 14:20 - 2021-07-30 14:20 - 000000000 ____D C:\Program Files\LGHUB
2021-07-29 20:01 - 2021-07-29 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riven - The Sequel to Myst [GOG.com]
2021-07-29 19:59 - 2021-07-29 20:01 - 000000000 ____D C:\ProgramData\GOG.com
2021-07-29 19:59 - 2021-07-29 20:01 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2021-07-29 19:59 - 2021-07-29 19:59 - 000000000 ____D C:\Users\marou\AppData\Local\GOG.com
2021-07-29 19:59 - 2021-07-29 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2021-07-29 19:41 - 2021-07-29 19:41 - 000000000 ____D C:\Users\marou\AppData\Local\DOSBox
2021-07-28 22:27 - 2021-07-28 22:27 - 000000000 ____D C:\Users\marou\AppData\Roaming\ScummVM
2021-07-25 21:05 - 2021-07-25 21:05 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Blizzard Entertainment
2021-07-25 21:05 - 2021-07-25 21:05 - 000000000 ____D C:\Users\marou\AppData\Local\Blizzard
2021-07-18 19:23 - 2021-07-18 19:23 - 000000000 ____D C:\ProgramData\Steam
2021-07-18 19:21 - 2021-07-28 20:17 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-07-18 19:21 - 2021-07-18 19:21 - 000000000 ____D C:\Users\marou\AppData\Local\UWebKit
2021-07-18 19:19 - 2021-07-18 19:19 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Cyan Worlds
2021-07-18 18:47 - 2021-07-18 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2021-07-18 10:58 - 2021-07-18 10:58 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-18 10:58 - 2021-07-18 10:58 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-18 10:58 - 2021-07-18 10:58 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-18 10:58 - 2021-07-18 10:58 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-09 07:51 - 2021-07-09 07:51 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-09 07:51 - 2021-07-09 07:51 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-09 07:51 - 2021-07-09 07:51 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-09 07:51 - 2021-07-09 07:51 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-09 07:51 - 2021-07-09 07:51 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-09 07:51 - 2021-07-09 07:51 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-09 07:51 - 2021-07-09 07:51 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-08 20:35 - 2021-07-16 10:04 - 000000000 ____D C:\Users\marou\Desktop\chant
2021-07-07 16:34 - 2021-07-07 16:34 - 000000000 ____D C:\Program Files\Common Files\logishrd
2021-07-07 09:29 - 2021-07-07 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Video v5 for Premiere
2021-07-07 08:15 - 2021-07-07 08:15 - 000000000 ____D C:\Users\marou\Documents\Neat Video v5 for Premiere
2021-06-27 22:59 - 2021-06-27 22:59 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Redbeet Interactive
2021-06-26 08:59 - 2021-08-01 14:54 - 000000000 ____D C:\Users\marou\AppData\Roaming\vlc
2021-06-10 12:36 - 2021-06-10 12:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-10 12:36 - 2021-06-10 12:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-10 12:36 - 2021-06-10 12:36 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-10 12:36 - 2021-06-10 12:36 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-10 12:36 - 2021-06-10 12:36 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-10 12:36 - 2021-06-10 12:36 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-10 12:36 - 2021-06-10 12:36 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-10 11:13 - 2021-06-10 11:13 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Temp
2021-06-10 08:46 - 2021-06-10 08:46 - 000015817 _____ C:\Users\marou\AppData\Local\recently-used.xbel
2021-06-07 16:23 - 2021-06-07 16:23 - 000000000 ____D C:\Users\marou\Creative Cloud Files
2021-06-06 18:36 - 2021-06-06 18:36 - 000000000 ____D C:\Users\marou\Documents\Adobe
2021-06-06 18:36 - 2021-06-06 18:36 - 000000000 ____D C:\Users\marou\AppData\Local\Adobe
2021-06-06 08:16 - 2021-08-01 13:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2021-06-06 08:16 - 2021-06-06 09:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2021-06-06 08:16 - 2021-06-06 08:16 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2021-05-31 16:06 - 2021-05-31 16:08 - 000000000 ____D C:\Users\marou\AppData\Local\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000057 _____ C:\ProgramData\Ament.ini
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\Program Files\HP
2021-05-31 16:06 - 2021-05-31 16:06 - 000000000 ____D C:\Program Files (x86)\HP
2021-05-31 16:06 - 2012-10-17 04:31 - 000741480 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMa011.dll
2021-05-24 17:07 - 2021-05-24 18:01 - 000000000 ____D C:\Users\marou\AppData\Local\KnockoutCity
2021-05-24 17:00 - 2021-05-24 17:00 - 000000000 ____D C:\Users\marou\AppData\Local\EADesktop
2021-05-24 16:47 - 2021-06-17 20:08 - 000000000 ____D C:\Program Files\EA Games
2021-05-24 16:47 - 2021-05-24 17:01 - 000000000 ____D C:\ProgramData\EA Desktop
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\Electronic Arts
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\EAConnect_microsoft
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\Users\marou\AppData\Local\cache
2021-05-24 16:47 - 2021-05-24 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2021-05-24 15:57 - 2021-05-24 15:58 - 000000000 ____D C:\Users\marou\Documents\Call of Duty Modern Warfare
2021-05-24 15:57 - 2021-05-24 15:57 - 000000000 ____D C:\Users\marou\ansel
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Roaming\FLT
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Local\DaysGone
2021-05-23 08:33 - 2021-05-23 08:33 - 000000000 ____D C:\Users\marou\AppData\Local\BendGame
2021-05-22 19:21 - 2021-05-23 07:19 - 000000000 ____D C:\Users\marou\AppData\Local\ART
2021-05-21 10:43 - 2021-06-11 10:44 - 000000000 ____D C:\Users\marou\.dbus-keyrings
2021-05-21 10:43 - 2021-05-21 10:45 - 000000000 ____D C:\Users\marou\AppData\Local\darktable
2021-05-21 10:43 - 2021-05-21 10:43 - 000000000 ____D C:\Users\marou\AppData\Roaming\NVIDIA
2021-05-14 21:36 - 2021-05-14 21:36 - 000000000 ____D C:\Users\marou\Documents\Respawn
2021-05-12 20:14 - 2021-05-12 20:14 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 20:14 - 2021-05-12 20:14 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 20:13 - 2021-05-12 20:13 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 20:13 - 2021-05-12 20:13 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 20:13 - 2021-05-12 20:13 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-12 08:53 - 2021-05-22 19:42 - 000000000 ____D C:\Users\marou\Desktop\wetransfer-3e35ba
2021-05-11 16:55 - 2021-05-11 16:55 - 000000000 ____D C:\Users\marou\AppData\Local\drmingw
2021-05-10 19:19 - 2021-05-31 16:06 - 000000000 ____D C:\ProgramData\HP
2021-05-09 19:29 - 2021-05-09 19:29 - 000000000 ___SH C:\Users\Public\Shared Files
2021-05-09 19:23 - 2021-05-09 19:23 - 000000000 ____D C:\Users\marou\AppData\Local\FortniteGame
2021-05-09 19:23 - 2021-05-09 19:23 - 000000000 ____D C:\Users\marou\AppData\Local\CrashReportClient
2021-05-06 17:30 - 2021-05-06 17:30 - 000000000 ____D C:\Users\marou\AppData\Local\Rocket League
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-01 16:03 - 2021-04-02 10:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-01 16:02 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-08-01 16:01 - 2021-04-02 10:23 - 000000000 ____D C:\Users\marou\AppData\Roaming\LGHUB
2021-08-01 16:01 - 2021-04-02 10:23 - 000000000 ____D C:\Users\marou\AppData\Local\LGHUB
2021-08-01 16:01 - 2021-04-02 10:02 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-01 16:01 - 2021-04-02 09:49 - 000266872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-01 16:01 - 2021-04-02 09:49 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-01 16:01 - 2021-04-02 09:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-01 16:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-01 16:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-01 16:00 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-01 15:59 - 2021-04-02 20:11 - 000000000 ____D C:\Users\marou\AppData\Roaming\discord
2021-08-01 15:59 - 2021-04-02 10:15 - 000000000 ____D C:\Users\marou\AppData\Local\Battle.net
2021-08-01 15:13 - 2021-04-02 20:11 - 000000000 ____D C:\Users\marou\AppData\Local\Discord
2021-08-01 13:43 - 2021-04-02 09:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-31 18:13 - 2021-04-02 11:01 - 000000000 ____D C:\Users\marou\AppData\Roaming\audacity
2021-07-31 17:27 - 2021-04-03 07:15 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-31 17:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-31 17:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-31 09:59 - 2021-04-02 10:03 - 000000000 ____D C:\Users\marou\AppData\Local\D3DSCache
2021-07-31 09:55 - 2021-04-02 10:02 - 000000000 ____D C:\Users\marou\AppData\Local\PlaceholderTileLogoFolder
2021-07-31 09:55 - 2021-04-02 09:59 - 000000000 ____D C:\Users\marou\AppData\Local\Packages
2021-07-31 06:56 - 2021-04-03 07:47 - 001752512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000250296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000195000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000159672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-07-31 06:56 - 2021-04-03 07:47 - 000038344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-07-30 14:20 - 2021-04-03 07:14 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-30 14:20 - 2021-04-03 07:14 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-29 19:21 - 2021-04-02 20:01 - 000003908 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-28 23:03 - 2021-04-02 10:13 - 000000000 ____D C:\Users\marou\AppData\LocalLow\Norton
2021-07-21 06:42 - 2021-04-02 10:05 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-18 15:05 - 2021-04-02 09:55 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-18 15:05 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-18 15:05 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-18 14:58 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-18 10:59 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-18 10:55 - 2021-04-02 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-18 10:54 - 2021-04-02 19:47 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-18 00:03 - 2021-04-13 18:56 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-07-16 08:19 - 2021-04-02 10:05 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-16 08:19 - 2021-04-02 10:05 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-09 09:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-09 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
==================== Fichiers à la racine de certains dossiers ========
2021-06-10 08:46 - 2021-06-10 08:46 - 000015817 _____ () C:\Users\marou\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2021-04-03 07:47 - 2021-07-31 06:56 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-08-01 15:43 - 2021-08-01 15:43 - 002300416 _____ (Farbar) C:\Users\marou\Desktop\FRST64.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{70ce26a9-0a71-11eb-8b31-806e6f6e6963}
{3cb9ee97-18e2-11e5-82b9-d1593910898e}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {3cb9ee97-18e2-11e5-82b9-d1593910898e}
description CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {70ce26a9-0a71-11eb-8b31-806e6f6e6963}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {3cb9ee9c-18e2-11e5-82b9-d1593910898e}
device ramdisk=[C:]\Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\Winre.wim,{3cb9ee9d-18e2-11e5-82b9-d1593910898e}
path \windows\system32\winload.efi
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\Winre.wim,{3cb9ee9d-18e2-11e5-82b9-d1593910898e}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {513e43b6-41f0-11e9-99a8-9af6f05b2d1a}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{513e43b7-41f0-11e9-99a8-9af6f05b2d1a}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{513e43b7-41f0-11e9-99a8-9af6f05b2d1a}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {fe24963e-0092-11eb-9f17-d3295c986a47}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {fe24963e-0092-11eb-9f17-d3295c986a47}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fe24963f-0092-11eb-9f17-d3295c986a47}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{fe24963f-0092-11eb-9f17-d3295c986a47}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {db5a2cb5-938f-11eb-984e-2cf05d26c6fd}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {fe24963e-0092-11eb-9f17-d3295c986a47}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {3cb9ee9d-18e2-11e5-82b9-d1593910898e}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\3cb9ee9c-18e2-11e5-82b9-d1593910898e\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {fe24963f-0092-11eb-9f17-d3295c986a47}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================