Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-10-2021
Exécuté par yoann (administrateur) sur DESKTOP-H2DLONA (ASUSTeK COMPUTER INC. TUF GAMING FX504GM_FX80GM) (11-10-2021 08:10:44)
Exécuté depuis C:\Users\yoann\Desktop
Profils chargés: yoann
Platform: Microsoft Windows 10 Professionnel Version 21H1 19043.1237 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Facebook, Inc. -> Facebook, Inc.) C:\Users\yoann\AppData\Local\Programs\Messenger\Messenger.exe <5>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] D:\Users\yoann\Downloads\ZHPSuite.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Signal Messenger, LLC -> Open Whisper Systems) C:\Users\yoann\AppData\Local\Programs\signal-desktop\Signal.exe <5>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-09-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe --checkInstall
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\yoann\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-10-06] (Google LLC -> Google LLC)
Startup: C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Signal.lnk [2021-03-03]
ShortcutTarget: Signal.lnk -> C:\Users\yoann\AppData\Local\Programs\signal-desktop\Signal.exe (Signal Messenger, LLC -> Open Whisper Systems)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {061E25A1-B698-4F47-B28A-D45A7A8D6B4F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {410FB1FF-799F-4DE2-B631-2FB6D9B9965C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44951D88-7447-42F7-811F-614A686A8C32} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6E633925-BEFE-469B-98E2-5701C03C9EAD} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753974B5-5A94-4C79-B5CB-BFB4A945A987} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8987F4E6-4B32-444A-82AD-6AB614010AB3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CBBFF13-1E28-4CD1-8BE4-E3E38EC7E2DB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {94E7B0BF-7829-4B36-BBA7-734EB8B50211} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {97517B50-937A-423A-9747-870438C9E401} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {987FA7AD-541C-42A6-844A-53D7120FE902} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9D677427-FADD-4363-980A-7AF1A2B5C800} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {B4878962-320E-421D-A43A-801A22ABC724} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9835E99-BAFA-47F9-95BF-82B8BE8A8650} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {B9D37090-6179-47AB-B092-8469438A9DC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BF0822A3-A206-4C2B-ADD4-6A11B200FFFB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C1729909-B7CF-45DF-9A48-F77D55A44E2D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB87C6AD-CC2C-48CD-A859-1C3478C34B4B} - System32\Tasks\CCleanerSkipUAC - yoann => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CCBF97B5-9931-4DC5-98C4-E2223B8E615E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {D0DBFA75-26E6-49E6-9C88-8EE62D6B7F68} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {DE8AF8E0-A682-46BD-A763-67791C7A2F7C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E4D421D4-6ED5-4A3E-996D-B5C957D4AE56} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E7A1199A-AE25-4F05-8732-A9CC5E0C539A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF59F4A6-1D6B-43EB-8E11-D8E0B8BC263D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F62F590D-9E8E-4BF2-989E-D74D4F9D820E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5bce4a2e-d23b-47e1-b7d2-ede3ccf6ea55}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\yoann\Downloads
Edge Profile: C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-10]
FireFox:
========
FF DefaultProfile: tfw16otu.default
FF ProfilePath: C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default [2021-10-11]
FF Notifications: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://www.instagram.com
FF Extension: (Google Translator for Firefox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\translator@zoli.bod.xpi [2019-03-09]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-01]
FF Extension: (Dark Fox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2019-05-19]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default [2021-10-10]
CHR Extension: (Slides) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-09]
CHR Extension: (Docs) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-09]
CHR Extension: (Google Drive) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-09]
CHR Extension: (Sheets) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7801016 2021-10-07] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2545752 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3485784 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [1676696 2021-03-09] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-10-10] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 PcaSp50; C:\WINDOWS\System32\Drivers\PcaSp50.sys [45624 2009-08-24] (PRINTING COMMUNICATIONS ASSOC., INC. -> Printing Communications Assoc., Inc. (PCAUSA))
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39040 2019-12-13] (GZ Systems Limited -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-05-13] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2021-08-13] (NCH Software, Inc. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-11 08:10 - 2021-10-11 08:11 - 000023254 _____ C:\Users\yoann\Desktop\FRST.txt
2021-10-11 08:07 - 2021-10-11 08:07 - 000000865 _____ C:\Users\yoann\Desktop\ZHPSuite.lnk
2021-10-10 23:04 - 2021-10-10 23:04 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-10-10 22:07 - 2021-10-10 22:08 - 000000000 ____D C:\AdwCleaner
2021-10-10 22:07 - 2021-10-10 22:05 - 008553680 _____ (Malwarebytes) C:\Users\yoann\Desktop\adwcleaner_8.3.0.exe
2021-10-10 21:02 - 2021-10-10 21:02 - 000000875 _____ C:\Users\yoann\Desktop\ZHPCleaner.lnk
2021-10-10 18:44 - 2021-10-10 18:44 - 000000000 ____D C:\Users\yoann\Desktop\FRST-OlderVersion
2021-10-10 15:05 - 2021-10-10 15:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-10 00:56 - 2021-10-10 23:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-10 00:22 - 2021-10-10 00:22 - 000001382 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-10-08 16:26 - 2021-10-10 22:08 - 000000000 ____D C:\Users\yoann\AppData\Roaming\WhatsApp
2021-10-08 16:26 - 2021-10-08 16:26 - 000002203 _____ C:\Users\yoann\Desktop\WhatsApp.lnk
2021-10-08 16:26 - 2021-10-08 16:26 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-10-08 16:26 - 2021-10-08 16:26 - 000000000 ____D C:\Users\yoann\AppData\Local\WhatsApp
2021-10-07 23:29 - 2021-10-07 23:29 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.11
2021-10-07 23:24 - 2021-10-07 23:24 - 000000000 ____D C:\Users\yoann\Desktop\OpenOffice 4.1.11 (fr) Installation Files
2021-10-07 23:21 - 2021-10-10 23:04 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-10-06 22:08 - 2021-10-06 23:26 - 000368802 _____ C:\Users\yoann\Desktop\DESKTOP-H2DLONA.txt
2021-10-06 22:08 - 2021-10-06 22:08 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
2021-10-06 22:08 - 2021-10-06 22:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2021-10-06 22:08 - 2021-10-06 22:08 - 000000000 ____D C:\Program Files\Speccy
2021-09-24 18:11 - 2021-09-24 18:11 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-09-24 18:11 - 2021-09-24 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-09-24 18:11 - 2021-09-24 18:11 - 000000000 ____D C:\Program Files\iTunes
2021-09-23 16:27 - 2021-09-16 07:28 - 001858672 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001858672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001474688 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001438832 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001438832 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001212544 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001097832 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001097832 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 000951920 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 000951920 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 001520760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 001171064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000716920 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000676472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000645240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000577144 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000564344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 008854144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 002112120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 001595512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 000919160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 000706168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-09-23 16:27 - 2021-09-16 07:24 - 000447096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-09-23 16:27 - 2021-09-16 07:23 - 007920760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 005681280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 004987512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 002925688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 000849016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-09-23 16:27 - 2021-09-16 07:21 - 006216336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-09-23 16:27 - 2021-09-14 07:39 - 000083133 _____ C:\WINDOWS\system32\nvinfo.pb
2021-09-23 15:00 - 2021-10-10 06:56 - 000000000 ____D C:\Users\yoann\Desktop\Nouveau dossier (2)
2021-09-22 10:57 - 2021-09-24 18:46 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-17 16:50 - 2021-09-17 16:50 - 000000249 _____ C:\Users\yoann\Desktop\discord_backup_codes.txt
2021-09-15 00:18 - 2021-09-15 00:18 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-15 00:18 - 2021-09-15 00:18 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-15 00:18 - 2021-09-15 00:18 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-15 00:18 - 2021-09-15 00:18 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-15 00:18 - 2021-09-15 00:18 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-15 00:18 - 2021-09-15 00:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-15 00:18 - 2021-09-15 00:18 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-15 00:18 - 2021-09-15 00:18 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-15 00:18 - 2021-09-15 00:18 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-15 00:10 - 2021-09-15 00:10 - 000000000 ___HD C:\$WinREAgent
2021-09-02 18:30 - 2021-09-02 18:30 - 000000000 ____D C:\Users\yoann\AppData\Local\CrashBandicoot4
2021-09-02 18:19 - 2021-09-02 18:19 - 000000479 _____ C:\Users\Public\Desktop\Crash Bandicoot 4.lnk
2021-09-02 18:19 - 2021-09-02 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Bandicoot 4
2021-08-22 23:48 - 2021-08-23 16:59 - 000000000 ____D C:\ProgramData\Voicemod
2021-08-22 23:48 - 2021-08-22 23:50 - 000000000 ____D C:\Users\yoann\AppData\Local\Voicemod
2021-08-22 23:48 - 2021-08-22 23:48 - 000000944 _____ C:\Users\Public\Desktop\Voicemod.lnk
2021-08-22 23:48 - 2021-08-22 23:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-08-22 23:48 - 2021-08-22 23:48 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-08-22 23:48 - 2021-05-13 12:37 - 000048136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmdrv.sys
2021-08-22 18:28 - 2021-08-22 18:28 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - yoann
2021-08-13 18:25 - 2021-08-13 18:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-13 18:25 - 2021-08-13 18:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-13 18:24 - 2021-08-13 18:24 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\ProgramData\NCH Software
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-08-13 00:42 - 2021-08-13 00:42 - 000055976 _____ C:\WINDOWS\system32\Drivers\voxaldriverx64.sys
2021-08-13 00:42 - 2021-08-13 00:42 - 000001327 _____ C:\Users\Public\Desktop\Suite NCH.lnk
2021-08-13 00:42 - 2021-08-13 00:42 - 000001195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxal Modificateur de voix.lnk
2021-08-13 00:42 - 2021-08-13 00:42 - 000001183 _____ C:\Users\Public\Desktop\Voxal Modificateur de voix.lnk
2021-08-13 00:41 - 2021-08-22 23:39 - 000000000 ____D C:\Users\yoann\AppData\Roaming\NCH Software
2021-07-25 07:16 - 2021-07-25 07:16 - 000000000 ____D C:\ProgramData\Apple Inc
2021-07-25 07:16 - 2021-07-25 07:16 - 000000000 ____D C:\Program Files\iPod
2021-07-25 07:08 - 2021-07-25 07:08 - 000000000 ____D C:\Users\yoann\AppData\Local\Apple Inc
2021-07-22 23:07 - 2021-09-15 18:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-22 18:07 - 2021-07-22 18:07 - 000002403 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk
2021-07-22 18:07 - 2021-07-22 18:07 - 000002395 _____ C:\Users\yoann\Desktop\Signal.lnk
2021-07-16 23:26 - 2021-07-16 23:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-14 18:24 - 2021-07-14 18:24 - 003277976 _____ (Nicolas Coolman) C:\Users\yoann\Desktop\ZHPDiag.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-11 08:12 - 2021-03-03 22:16 - 000000000 ____D C:\Users\yoann\AppData\Local\Messenger
2021-10-11 08:11 - 2020-05-04 14:55 - 000000000 ____D C:\FRST
2021-10-11 08:09 - 2020-07-19 20:06 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-11 08:09 - 2019-12-07 18:50 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2021-10-11 08:09 - 2019-12-07 18:50 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2021-10-11 08:09 - 2019-12-07 13:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-11 08:09 - 2019-05-23 19:52 - 000000000 ____D C:\Users\yoann\AppData\Roaming\ZHP
2021-10-11 08:07 - 2021-03-03 22:16 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Messenger
2021-10-11 08:07 - 2020-05-04 10:48 - 000000000 ____D C:\Users\yoann\AppData\Local\ZHP
2021-10-11 08:05 - 2019-03-09 13:07 - 000000000 ____D C:\Users\yoann\AppData\LocalLow\Mozilla
2021-10-11 08:05 - 2019-03-09 12:41 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-11 08:04 - 2021-03-03 13:15 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Signal
2021-10-11 08:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-11 08:04 - 2019-03-09 13:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-11 08:03 - 2019-03-09 13:32 - 000000000 ____D C:\Program Files\CCleaner
2021-10-11 08:03 - 2019-03-09 12:23 - 000000000 __SHD C:\Users\yoann\IntelGraphicsProfiles
2021-10-10 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-10 23:03 - 2020-11-29 22:46 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Molotov
2021-10-10 23:03 - 2020-07-19 20:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-10 23:03 - 2020-07-19 20:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-10 23:03 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-10 23:03 - 2019-12-07 13:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-10 23:03 - 2019-03-09 12:23 - 000000000 ____D C:\Intel
2021-10-10 23:02 - 2021-05-30 18:09 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls
2021-10-10 22:55 - 2019-09-10 14:30 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Discord
2021-10-10 22:54 - 2020-07-19 20:12 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9F7F6425-22B8-43D4-8681-C71C8C0909A8}
2021-10-10 22:51 - 2021-05-30 18:11 - 000000000 ____D C:\Users\yoann\AppData\Local\Discord
2021-10-10 22:28 - 2020-07-19 20:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-10 22:08 - 2019-06-05 16:21 - 000000000 ____D C:\ProgramData\ASUS
2021-10-10 22:08 - 2019-06-05 16:18 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-10-10 21:11 - 2019-03-09 12:29 - 000000000 ____D C:\Users\yoann\AppData\Local\D3DSCache
2021-10-10 20:55 - 2019-03-09 13:55 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-10 20:45 - 2019-03-09 12:21 - 000000000 ___RD C:\Users\yoann\OneDrive
2021-10-10 18:44 - 2020-05-04 14:53 - 002310144 _____ (Farbar) C:\Users\yoann\Desktop\FRST64.exe
2021-10-10 15:26 - 2021-07-07 23:24 - 000000000 ____D C:\Users\yoann\AppData\Roaming\vlc
2021-10-10 15:05 - 2019-03-09 13:07 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-10 15:04 - 2020-07-19 20:03 - 000463976 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-10 15:03 - 2020-10-04 17:15 - 000000000 ____D C:\Users\yoann\AppData\Local\ESET
2021-10-10 09:58 - 2020-07-19 20:12 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-10 09:58 - 2020-07-19 20:12 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-10 01:24 - 2020-04-12 14:40 - 000000000 ____D C:\Users\yoann\AppData\Local\Battle.net
2021-10-09 23:58 - 2019-12-07 13:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-09 23:56 - 2021-02-20 00:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-08 16:26 - 2019-03-09 14:10 - 000000000 ____D C:\Users\yoann\AppData\Local\SquirrelTemp
2021-10-07 23:29 - 2019-03-09 13:02 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2021-10-07 23:23 - 2020-04-16 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-10-07 23:23 - 2020-04-16 18:06 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-10-07 23:19 - 2020-07-30 22:19 - 000000837 _____ C:\Users\Public\Desktop\UCheck.lnk
2021-10-07 23:19 - 2019-03-09 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2021-10-07 23:19 - 2019-03-09 13:48 - 000000000 ____D C:\Program Files\UCheck
2021-10-06 10:32 - 2019-03-09 13:47 - 000000000 ____D C:\Users\yoann\AppData\Local\CrashDumps
2021-10-06 08:51 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-05 12:14 - 2021-07-03 21:04 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2021-10-05 12:14 - 2021-07-03 21:04 - 000002421 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-03 20:35 - 2019-03-09 19:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-03 20:32 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-02 17:01 - 2020-06-03 12:25 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-02 17:01 - 2020-06-03 12:25 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-02 00:30 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-01 20:57 - 2020-10-07 23:07 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 20:57 - 2020-10-07 23:07 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 00:19 - 2019-05-23 13:17 - 000000000 ____D C:\Users\yoann\AppData\Local\Spotify
2021-09-30 00:18 - 2019-05-23 12:17 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Spotify
2021-09-29 22:30 - 2019-10-26 11:50 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-28 18:06 - 2019-12-10 18:25 - 000001093 _____ C:\Users\yoann\Desktop\Doudou.txt
2021-09-28 17:32 - 2019-05-23 13:17 - 000001850 _____ C:\Users\yoann\Desktop\Spotify.lnk
2021-09-28 17:32 - 2019-05-23 13:17 - 000001836 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2021-09-28 17:31 - 2020-08-01 20:23 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-28 17:31 - 2019-11-06 18:37 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-09-28 09:17 - 2020-03-31 19:59 - 000000487 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2021-09-28 09:08 - 2020-04-12 14:33 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-09-24 11:50 - 2019-06-09 01:29 - 000000000 ____D C:\Users\yoann\AppData\Local\NVIDIA
2021-09-23 08:09 - 2019-09-10 14:30 - 000002231 _____ C:\Users\yoann\Desktop\Discord.lnk
2021-09-22 11:00 - 2020-07-19 19:46 - 000000000 ____D C:\Users\yoann
2021-09-16 21:52 - 2019-03-09 13:32 - 000000000 ____D C:\Users\yoann\AppData\Local\Adobe
2021-09-16 21:27 - 2020-07-19 20:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 21:26 - 2019-10-26 11:50 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2021-09-16 07:24 - 2021-04-18 19:43 - 000750200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-09-16 07:22 - 2020-07-09 22:17 - 007280840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-09-15 18:22 - 2019-03-15 23:00 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-09-15 01:46 - 2019-12-07 18:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-15 01:46 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-15 00:08 - 2019-03-09 12:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 00:05 - 2019-03-09 12:58 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 _____ (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-04-23 14:26 - 2020-04-23 14:26 - 000000017 _____ () C:\Users\yoann\AppData\Local\resmon.resmoncfg
2019-03-16 12:44 - 2019-03-16 12:50 - 000000069 _____ () C:\Users\yoann\AppData\Local\update_progress.txt
==================== SigCheckExt =========================
2020-11-21 19:17 - 2020-11-21 19:17 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft.directx.directinput.dll
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 _____ (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-05-04 14:53 - 2021-10-10 18:44 - 002310144 _____ (Farbar) C:\Users\yoann\Desktop\FRST64.exe
2021-07-14 18:24 - 2021-07-14 18:24 - 003277976 _____ (Nicolas Coolman) C:\Users\yoann\Desktop\ZHPDiag.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{5e0883a5-2716-11eb-93b7-806e6f6e6963}
{5e0883a6-2716-11eb-93b7-806e6f6e6963}
{5e0883a7-2716-11eb-93b7-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a5-2716-11eb-93b7-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a6-2716-11eb-93b7-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a7-2716-11eb-93b7-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {5714d8b7-c9d9-11ea-9395-049226000dc1}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {5714d8b4-c9d9-11ea-9395-049226000dc1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {5714d8b8-c9d9-11ea-9395-049226000dc1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par yoann (administrateur) sur DESKTOP-H2DLONA (ASUSTeK COMPUTER INC. TUF GAMING FX504GM_FX80GM) (11-10-2021 08:10:44)
Exécuté depuis C:\Users\yoann\Desktop
Profils chargés: yoann
Platform: Microsoft Windows 10 Professionnel Version 21H1 19043.1237 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Facebook, Inc. -> Facebook, Inc.) C:\Users\yoann\AppData\Local\Programs\Messenger\Messenger.exe <5>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] D:\Users\yoann\Downloads\ZHPSuite.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Signal Messenger, LLC -> Open Whisper Systems) C:\Users\yoann\AppData\Local\Programs\signal-desktop\Signal.exe <5>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-09-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe --checkInstall
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\yoann\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-10-06] (Google LLC -> Google LLC)
Startup: C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Signal.lnk [2021-03-03]
ShortcutTarget: Signal.lnk -> C:\Users\yoann\AppData\Local\Programs\signal-desktop\Signal.exe (Signal Messenger, LLC -> Open Whisper Systems)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {061E25A1-B698-4F47-B28A-D45A7A8D6B4F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {410FB1FF-799F-4DE2-B631-2FB6D9B9965C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44951D88-7447-42F7-811F-614A686A8C32} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6E633925-BEFE-469B-98E2-5701C03C9EAD} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753974B5-5A94-4C79-B5CB-BFB4A945A987} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8987F4E6-4B32-444A-82AD-6AB614010AB3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CBBFF13-1E28-4CD1-8BE4-E3E38EC7E2DB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {94E7B0BF-7829-4B36-BBA7-734EB8B50211} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {97517B50-937A-423A-9747-870438C9E401} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {987FA7AD-541C-42A6-844A-53D7120FE902} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9D677427-FADD-4363-980A-7AF1A2B5C800} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {B4878962-320E-421D-A43A-801A22ABC724} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9835E99-BAFA-47F9-95BF-82B8BE8A8650} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {B9D37090-6179-47AB-B092-8469438A9DC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BF0822A3-A206-4C2B-ADD4-6A11B200FFFB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C1729909-B7CF-45DF-9A48-F77D55A44E2D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB87C6AD-CC2C-48CD-A859-1C3478C34B4B} - System32\Tasks\CCleanerSkipUAC - yoann => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CCBF97B5-9931-4DC5-98C4-E2223B8E615E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {D0DBFA75-26E6-49E6-9C88-8EE62D6B7F68} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {DE8AF8E0-A682-46BD-A763-67791C7A2F7C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E4D421D4-6ED5-4A3E-996D-B5C957D4AE56} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E7A1199A-AE25-4F05-8732-A9CC5E0C539A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF59F4A6-1D6B-43EB-8E11-D8E0B8BC263D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F62F590D-9E8E-4BF2-989E-D74D4F9D820E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5bce4a2e-d23b-47e1-b7d2-ede3ccf6ea55}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\yoann\Downloads
Edge Profile: C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-10]
FireFox:
========
FF DefaultProfile: tfw16otu.default
FF ProfilePath: C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default [2021-10-11]
FF Notifications: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://www.instagram.com
FF Extension: (Google Translator for Firefox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\translator@zoli.bod.xpi [2019-03-09]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-01]
FF Extension: (Dark Fox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2019-05-19]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default [2021-10-10]
CHR Extension: (Slides) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-09]
CHR Extension: (Docs) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-09]
CHR Extension: (Google Drive) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-09]
CHR Extension: (Sheets) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7801016 2021-10-07] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2545752 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3485784 2021-04-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [1676696 2021-03-09] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_df6745aaa4048565\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210344 2021-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-10-10] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 PcaSp50; C:\WINDOWS\System32\Drivers\PcaSp50.sys [45624 2009-08-24] (PRINTING COMMUNICATIONS ASSOC., INC. -> Printing Communications Assoc., Inc. (PCAUSA))
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39040 2019-12-13] (GZ Systems Limited -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-05-13] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2021-08-13] (NCH Software, Inc. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-03] (Microsoft Windows -> Microsoft Corporation)
S3 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-11 08:10 - 2021-10-11 08:11 - 000023254 _____ C:\Users\yoann\Desktop\FRST.txt
2021-10-11 08:07 - 2021-10-11 08:07 - 000000865 _____ C:\Users\yoann\Desktop\ZHPSuite.lnk
2021-10-10 23:04 - 2021-10-10 23:04 - 000210344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-10-10 22:07 - 2021-10-10 22:08 - 000000000 ____D C:\AdwCleaner
2021-10-10 22:07 - 2021-10-10 22:05 - 008553680 _____ (Malwarebytes) C:\Users\yoann\Desktop\adwcleaner_8.3.0.exe
2021-10-10 21:02 - 2021-10-10 21:02 - 000000875 _____ C:\Users\yoann\Desktop\ZHPCleaner.lnk
2021-10-10 18:44 - 2021-10-10 18:44 - 000000000 ____D C:\Users\yoann\Desktop\FRST-OlderVersion
2021-10-10 15:05 - 2021-10-10 15:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-10 00:56 - 2021-10-10 23:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-10-10 00:22 - 2021-10-10 00:22 - 000001382 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-10-08 16:26 - 2021-10-10 22:08 - 000000000 ____D C:\Users\yoann\AppData\Roaming\WhatsApp
2021-10-08 16:26 - 2021-10-08 16:26 - 000002203 _____ C:\Users\yoann\Desktop\WhatsApp.lnk
2021-10-08 16:26 - 2021-10-08 16:26 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-10-08 16:26 - 2021-10-08 16:26 - 000000000 ____D C:\Users\yoann\AppData\Local\WhatsApp
2021-10-07 23:29 - 2021-10-07 23:29 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.11
2021-10-07 23:24 - 2021-10-07 23:24 - 000000000 ____D C:\Users\yoann\Desktop\OpenOffice 4.1.11 (fr) Installation Files
2021-10-07 23:21 - 2021-10-10 23:04 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-10-06 22:08 - 2021-10-06 23:26 - 000368802 _____ C:\Users\yoann\Desktop\DESKTOP-H2DLONA.txt
2021-10-06 22:08 - 2021-10-06 22:08 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
2021-10-06 22:08 - 2021-10-06 22:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2021-10-06 22:08 - 2021-10-06 22:08 - 000000000 ____D C:\Program Files\Speccy
2021-09-24 18:11 - 2021-09-24 18:11 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-09-24 18:11 - 2021-09-24 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-09-24 18:11 - 2021-09-24 18:11 - 000000000 ____D C:\Program Files\iTunes
2021-09-23 16:27 - 2021-09-16 07:28 - 001858672 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001858672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001474688 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001438832 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001438832 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-09-23 16:27 - 2021-09-16 07:28 - 001212544 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001097832 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 001097832 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 000951920 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-09-23 16:27 - 2021-09-16 07:28 - 000951920 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 001520760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 001171064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000716920 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000676472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000645240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000577144 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-09-23 16:27 - 2021-09-16 07:25 - 000564344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 008854144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 002112120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 001595512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 000919160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-09-23 16:27 - 2021-09-16 07:24 - 000706168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-09-23 16:27 - 2021-09-16 07:24 - 000447096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-09-23 16:27 - 2021-09-16 07:23 - 007920760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 005681280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 004987512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 002925688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-09-23 16:27 - 2021-09-16 07:23 - 000849016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-09-23 16:27 - 2021-09-16 07:21 - 006216336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-09-23 16:27 - 2021-09-14 07:39 - 000083133 _____ C:\WINDOWS\system32\nvinfo.pb
2021-09-23 15:00 - 2021-10-10 06:56 - 000000000 ____D C:\Users\yoann\Desktop\Nouveau dossier (2)
2021-09-22 10:57 - 2021-09-24 18:46 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-17 16:50 - 2021-09-17 16:50 - 000000249 _____ C:\Users\yoann\Desktop\discord_backup_codes.txt
2021-09-15 00:18 - 2021-09-15 00:18 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-15 00:18 - 2021-09-15 00:18 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-15 00:18 - 2021-09-15 00:18 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-15 00:18 - 2021-09-15 00:18 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-15 00:18 - 2021-09-15 00:18 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-15 00:18 - 2021-09-15 00:18 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-15 00:18 - 2021-09-15 00:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-15 00:18 - 2021-09-15 00:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-15 00:18 - 2021-09-15 00:18 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-15 00:18 - 2021-09-15 00:18 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-15 00:18 - 2021-09-15 00:18 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-15 00:18 - 2021-09-15 00:18 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-15 00:10 - 2021-09-15 00:10 - 000000000 ___HD C:\$WinREAgent
2021-09-02 18:30 - 2021-09-02 18:30 - 000000000 ____D C:\Users\yoann\AppData\Local\CrashBandicoot4
2021-09-02 18:19 - 2021-09-02 18:19 - 000000479 _____ C:\Users\Public\Desktop\Crash Bandicoot 4.lnk
2021-09-02 18:19 - 2021-09-02 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Bandicoot 4
2021-08-22 23:48 - 2021-08-23 16:59 - 000000000 ____D C:\ProgramData\Voicemod
2021-08-22 23:48 - 2021-08-22 23:50 - 000000000 ____D C:\Users\yoann\AppData\Local\Voicemod
2021-08-22 23:48 - 2021-08-22 23:48 - 000000944 _____ C:\Users\Public\Desktop\Voicemod.lnk
2021-08-22 23:48 - 2021-08-22 23:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-08-22 23:48 - 2021-08-22 23:48 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-08-22 23:48 - 2021-05-13 12:37 - 000048136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmdrv.sys
2021-08-22 18:28 - 2021-08-22 18:28 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - yoann
2021-08-13 18:25 - 2021-08-13 18:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-13 18:25 - 2021-08-13 18:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-13 18:24 - 2021-08-13 18:24 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\ProgramData\NCH Software
2021-08-13 00:42 - 2021-08-22 23:38 - 000000000 ____D C:\Program Files (x86)\NCH Software
2021-08-13 00:42 - 2021-08-13 00:42 - 000055976 _____ C:\WINDOWS\system32\Drivers\voxaldriverx64.sys
2021-08-13 00:42 - 2021-08-13 00:42 - 000001327 _____ C:\Users\Public\Desktop\Suite NCH.lnk
2021-08-13 00:42 - 2021-08-13 00:42 - 000001195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxal Modificateur de voix.lnk
2021-08-13 00:42 - 2021-08-13 00:42 - 000001183 _____ C:\Users\Public\Desktop\Voxal Modificateur de voix.lnk
2021-08-13 00:41 - 2021-08-22 23:39 - 000000000 ____D C:\Users\yoann\AppData\Roaming\NCH Software
2021-07-25 07:16 - 2021-07-25 07:16 - 000000000 ____D C:\ProgramData\Apple Inc
2021-07-25 07:16 - 2021-07-25 07:16 - 000000000 ____D C:\Program Files\iPod
2021-07-25 07:08 - 2021-07-25 07:08 - 000000000 ____D C:\Users\yoann\AppData\Local\Apple Inc
2021-07-22 23:07 - 2021-09-15 18:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-22 18:07 - 2021-07-22 18:07 - 000002403 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk
2021-07-22 18:07 - 2021-07-22 18:07 - 000002395 _____ C:\Users\yoann\Desktop\Signal.lnk
2021-07-16 23:26 - 2021-07-16 23:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-16 23:26 - 2021-07-16 23:26 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-14 18:24 - 2021-07-14 18:24 - 003277976 _____ (Nicolas Coolman) C:\Users\yoann\Desktop\ZHPDiag.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-11 08:12 - 2021-03-03 22:16 - 000000000 ____D C:\Users\yoann\AppData\Local\Messenger
2021-10-11 08:11 - 2020-05-04 14:55 - 000000000 ____D C:\FRST
2021-10-11 08:09 - 2020-07-19 20:06 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-11 08:09 - 2019-12-07 18:50 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2021-10-11 08:09 - 2019-12-07 18:50 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2021-10-11 08:09 - 2019-12-07 13:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-11 08:09 - 2019-05-23 19:52 - 000000000 ____D C:\Users\yoann\AppData\Roaming\ZHP
2021-10-11 08:07 - 2021-03-03 22:16 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Messenger
2021-10-11 08:07 - 2020-05-04 10:48 - 000000000 ____D C:\Users\yoann\AppData\Local\ZHP
2021-10-11 08:05 - 2019-03-09 13:07 - 000000000 ____D C:\Users\yoann\AppData\LocalLow\Mozilla
2021-10-11 08:05 - 2019-03-09 12:41 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-11 08:04 - 2021-03-03 13:15 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Signal
2021-10-11 08:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-11 08:04 - 2019-03-09 13:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-11 08:03 - 2019-03-09 13:32 - 000000000 ____D C:\Program Files\CCleaner
2021-10-11 08:03 - 2019-03-09 12:23 - 000000000 __SHD C:\Users\yoann\IntelGraphicsProfiles
2021-10-10 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-10 23:03 - 2020-11-29 22:46 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Molotov
2021-10-10 23:03 - 2020-07-19 20:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-10 23:03 - 2020-07-19 20:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-10 23:03 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-10 23:03 - 2019-12-07 13:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-10 23:03 - 2019-03-09 12:23 - 000000000 ____D C:\Intel
2021-10-10 23:02 - 2021-05-30 18:09 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls
2021-10-10 22:55 - 2019-09-10 14:30 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Discord
2021-10-10 22:54 - 2020-07-19 20:12 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9F7F6425-22B8-43D4-8681-C71C8C0909A8}
2021-10-10 22:51 - 2021-05-30 18:11 - 000000000 ____D C:\Users\yoann\AppData\Local\Discord
2021-10-10 22:28 - 2020-07-19 20:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-10 22:08 - 2019-06-05 16:21 - 000000000 ____D C:\ProgramData\ASUS
2021-10-10 22:08 - 2019-06-05 16:18 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-10-10 21:11 - 2019-03-09 12:29 - 000000000 ____D C:\Users\yoann\AppData\Local\D3DSCache
2021-10-10 20:55 - 2019-03-09 13:55 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-10 20:45 - 2019-03-09 12:21 - 000000000 ___RD C:\Users\yoann\OneDrive
2021-10-10 18:44 - 2020-05-04 14:53 - 002310144 _____ (Farbar) C:\Users\yoann\Desktop\FRST64.exe
2021-10-10 15:26 - 2021-07-07 23:24 - 000000000 ____D C:\Users\yoann\AppData\Roaming\vlc
2021-10-10 15:05 - 2019-03-09 13:07 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-10 15:04 - 2020-07-19 20:03 - 000463976 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-10 15:03 - 2020-10-04 17:15 - 000000000 ____D C:\Users\yoann\AppData\Local\ESET
2021-10-10 09:58 - 2020-07-19 20:12 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-10 09:58 - 2020-07-19 20:12 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-10 01:24 - 2020-04-12 14:40 - 000000000 ____D C:\Users\yoann\AppData\Local\Battle.net
2021-10-09 23:58 - 2019-12-07 13:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-09 23:56 - 2021-02-20 00:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-08 16:26 - 2019-03-09 14:10 - 000000000 ____D C:\Users\yoann\AppData\Local\SquirrelTemp
2021-10-07 23:29 - 2019-03-09 13:02 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2021-10-07 23:23 - 2020-04-16 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-10-07 23:23 - 2020-04-16 18:06 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-10-07 23:19 - 2020-07-30 22:19 - 000000837 _____ C:\Users\Public\Desktop\UCheck.lnk
2021-10-07 23:19 - 2019-03-09 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2021-10-07 23:19 - 2019-03-09 13:48 - 000000000 ____D C:\Program Files\UCheck
2021-10-06 10:32 - 2019-03-09 13:47 - 000000000 ____D C:\Users\yoann\AppData\Local\CrashDumps
2021-10-06 08:51 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-05 12:14 - 2021-07-03 21:04 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2021-10-05 12:14 - 2021-07-03 21:04 - 000002421 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-03 20:35 - 2019-03-09 19:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-03 20:32 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-02 17:01 - 2020-06-03 12:25 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-02 17:01 - 2020-06-03 12:25 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-02 00:30 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-01 20:57 - 2020-10-07 23:07 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 20:57 - 2020-10-07 23:07 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 00:19 - 2019-05-23 13:17 - 000000000 ____D C:\Users\yoann\AppData\Local\Spotify
2021-09-30 00:18 - 2019-05-23 12:17 - 000000000 ____D C:\Users\yoann\AppData\Roaming\Spotify
2021-09-29 22:30 - 2019-10-26 11:50 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-28 18:06 - 2019-12-10 18:25 - 000001093 _____ C:\Users\yoann\Desktop\Doudou.txt
2021-09-28 17:32 - 2019-05-23 13:17 - 000001850 _____ C:\Users\yoann\Desktop\Spotify.lnk
2021-09-28 17:32 - 2019-05-23 13:17 - 000001836 _____ C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2021-09-28 17:31 - 2020-08-01 20:23 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-28 17:31 - 2019-11-06 18:37 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-09-28 09:17 - 2020-03-31 19:59 - 000000487 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2021-09-28 09:08 - 2020-04-12 14:33 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-09-24 11:50 - 2019-06-09 01:29 - 000000000 ____D C:\Users\yoann\AppData\Local\NVIDIA
2021-09-23 08:09 - 2019-09-10 14:30 - 000002231 _____ C:\Users\yoann\Desktop\Discord.lnk
2021-09-22 11:00 - 2020-07-19 19:46 - 000000000 ____D C:\Users\yoann
2021-09-16 21:52 - 2019-03-09 13:32 - 000000000 ____D C:\Users\yoann\AppData\Local\Adobe
2021-09-16 21:27 - 2020-07-19 20:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-16 21:26 - 2019-10-26 11:50 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2021-09-16 07:24 - 2021-04-18 19:43 - 000750200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-09-16 07:22 - 2020-07-09 22:17 - 007280840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-09-15 18:22 - 2019-03-15 23:00 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-09-15 01:46 - 2019-12-07 18:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-15 01:46 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-15 01:46 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-15 00:08 - 2019-03-09 12:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 00:05 - 2019-03-09 12:58 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 _____ (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-04-23 14:26 - 2020-04-23 14:26 - 000000017 _____ () C:\Users\yoann\AppData\Local\resmon.resmoncfg
2019-03-16 12:44 - 2019-03-16 12:50 - 000000069 _____ () C:\Users\yoann\AppData\Local\update_progress.txt
==================== SigCheckExt =========================
2020-11-21 19:17 - 2020-11-21 19:17 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft.directx.directinput.dll
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 _____ (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-05-04 14:53 - 2021-10-10 18:44 - 002310144 _____ (Farbar) C:\Users\yoann\Desktop\FRST64.exe
2021-07-14 18:24 - 2021-07-14 18:24 - 003277976 _____ (Nicolas Coolman) C:\Users\yoann\Desktop\ZHPDiag.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{5e0883a5-2716-11eb-93b7-806e6f6e6963}
{5e0883a6-2716-11eb-93b7-806e6f6e6963}
{5e0883a7-2716-11eb-93b7-806e6f6e6963}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a5-2716-11eb-93b7-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a6-2716-11eb-93b7-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a7-2716-11eb-93b7-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {5714d8b7-c9d9-11ea-9395-049226000dc1}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {5714d8b4-c9d9-11ea-9395-049226000dc1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {5714d8b8-c9d9-11ea-9395-049226000dc1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================