Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Exécuté par timot (administrateur) sur MSI (Micro-Star International Co., Ltd. GL72M 7RDX) (15-01-2022 16:25:39)
Exécuté depuis C:\Users\timot\Desktop
Profils chargés: timot
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1415 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] [Fichier en cours d'utilisation] D:\SteamLibrary\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe
(Discord Inc. -> Discord Inc.) C:\Users\timot\AppData\Local\Discord\app-1.0.9003\Discord.exe <12>
(Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <32>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
(Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\SCM\MSIService.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\NVDisplay.Container.exe <2>
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2>
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2017-06-08] (Micro-Star International CO., LTD. -> ) [Fichier non signé]
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe" -background (Pas de fichier)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [WarThunderLauncher] => C:\Users\timot\AppData\Local\WarThunder\launcher.exe [6123272 2019-09-21] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Chromium] => "c:\users\timot\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [com.blitz.app] => C:\Users\timot\AppData\Local\Programs\Blitz\Blitz.exe --autostart (Pas de fichier)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Spotify] => C:\Users\timot\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [432320 2021-10-04] (Parsec Cloud, Inc. -> Parsec)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\MountPoints2: {c2ad0fdb-670a-11ec-8c34-28c63fae5055} - "E:\OnePlus_setup.exe" /s
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\MountPoints2: {f1901208-fa3a-11ea-8a6b-28c63fae5055} - "E:\OnePlus_setup.exe" /s
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2340F572-C356-44EF-90F6-BFECC6D7E44D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {291F6BC9-23BD-4C65-B58D-0EDD3E10CE06} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {293F7E5F-B26F-4660-81DE-9799C529D728} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2F9FA63B-F9CA-402A-97B6-A16B7760C84B} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
Task: {3054BD85-AFDF-414A-8B3A-1AC7FFCC20F3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {3190AA5B-CBD3-4574-99CE-FBDB299954CB} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.6.0.12\\Ara.exe [848152 2015-07-10] (Symantec Corporation -> Symantec Corporation)
Task: {33DAFB90-FE3B-4767-BB27-44744CDC28D6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3C84615B-7AA9-4AEB-ABC7-716C7644D482} - System32\Tasks\Nahimic2svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {5474976A-EB58-436E-9139-EF1C08AF8641} - System32\Tasks\Opera scheduled Autoupdate 1546342114 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {57D5B338-00B9-4859-94A3-B3516A71AEF2} - System32\Tasks\Opera scheduled assistant Autoupdate 1595072914 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\timot\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {58EE2239-43DA-47F2-AC4A-02CD6D546866} - System32\Tasks\Opera scheduled assistant Autoupdate 1547191826 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\timot\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {5A7F9B7A-F184-4B4C-BF0E-69B06495A1CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-25] (Google Inc -> Google Inc.)
Task: {5C0451CD-36F6-47D3-95D3-144FF228C8E6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {5C9CCC2B-1982-4AA3-92C9-416D67C92B21} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5F41D4F9-909A-46CA-8CB1-9A1A36FB90C3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {64B96E3E-C027-4572-8532-B71C2215690C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {650DF391-58F6-4066-8404-69D617F65EE4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6542EF03-6C0E-4D86-9A02-58F6FC4DF6A0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {72F081C2-D88E-490B-B99A-7FE90ECA41A7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A67118B-C8C1-41CF-A757-E8FD4A9EAE10} - System32\Tasks\ChromeMonitor => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4315 caractères en plus). <==== ATTENTION
Task: {7DA35057-531A-4650-92DC-A54A454F9D5A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {85F10938-6F99-4F11-A1E9-31455527BB8B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-25] (Google Inc -> Google Inc.)
Task: {8879A641-F223-4CFD-8406-8C9619AFEC17} - System32\Tasks\Opera scheduled Autoupdate 1638119657 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {8CA1CB5B-617A-4C33-9EB6-1E413B0CE714} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5122840 2017-06-15] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
Task: {8DD09889-8CC4-4F2E-8A25-6742A64718DE} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe (Pas de fichier)
Task: {99042AF0-EDFD-425E-A2C7-8525F50D8023} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9BDD5515-108F-48DA-A4B5-3425B60009ED} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {A12C02BE-A025-4197-B2DC-E5B9F661293D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4335B5E-4B2B-48C2-B057-8F8331A0F7E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4A489FA-76DC-4375-A8C1-D38B64A8ABAF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCD5AFE9-F17B-4390-B3CF-CF1BE71CCC8A} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [285464 2017-05-31] (Micro-Star International CO., LTD. -> Application) [Fichier non signé]
Task: {D0426748-2527-4CDF-9808-B4707D41D84F} - System32\Tasks\Opera scheduled Autoupdate 1595072908 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {D16B22D2-5707-440F-9669-424FFB13CC69} - System32\Tasks\Nahimic2svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {E191EFD2-A500-4169-8EEB-A8E90B58E87A} - System32\Tasks\Norton Security Scan for timot => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.150\Nss.exe [835664 2018-01-10] (Symantec Corporation -> Symantec Corporation)
Task: {EF8D29F3-3062-4A91-B8BF-2965BC01888B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F9CD3B19-C7FC-45C3-A650-D980F195467F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-20] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{66beac82-0b78-4c84-8883-6cb65a22c368}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fa823be8-5b2e-40cb-bad6-07432dd9ed72}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-4008291486-4279443762-1799469733-1001 -> hxxp://www.recherche-fr.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-12-17]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\timot\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-02]
Edge HomePage: Default -> hxxp://www.recherche-fr.com/
Edge StartupUrls: Default -> "hxxp://www.recherche-fr.com/"
Edge DefaultSearchURL: Default -> hxxp://www.recherche-fr.com/search?q={searchTerms}
Edge DefaultSearchKeyword: Default -> recherche-fr.com
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\timot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-11-03]
FireFox:
========
FF DefaultProfile: 0dsqpyto.default
FF ProfilePath: C:\Users\timot\AppData\Roaming\Mozilla\Firefox\Profiles\0dsqpyto.default [2019-07-29]
FF ProfilePath: C:\Users\timot\AppData\Roaming\Mozilla\Firefox\Profiles\uaulg0b7.default-release-1609453942937 [2022-01-13]
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default [2022-01-15]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://forums.commentcamarche.net; hxxps://maranhesduve.club; hxxps://www1a.michellehardin.pro; hxxps://www1p.delmarmora.pro
CHR HomePage: Default -> hxxp://www.recherche-fr.com/
CHR StartupUrls: Default -> "hxxp://www.recherche-fr.com/"
CHR DefaultSearchURL: Default -> hxxp://www.recherche-fr.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
CHR Extension: (Slides) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-25]
CHR Extension: (Just Black) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-01]
CHR Extension: (Docs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-25]
CHR Extension: (Google Drive) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-25]
CHR Extension: (Norton Safe Search) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\eogpedgkejfmehnklhahflpmplhiceal [2020-08-26]
CHR Extension: (Sheets) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-12]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-04]
CHR Extension: (Search Manager) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnplhahbcoldbildffdchneaepapccbn [2021-11-28]
CHR Extension: (Roblox+) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2021-08-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Properties) - C:\Users\timot\AppData\Local [2022-01-15]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-12-02]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-12-01]
CHR DefaultSearchURL: Profile 3 -> hxxps://www.searchmr.com/?q={searchTerms}
CHR DefaultSuggestURL: Profile 3 -> hxxps://searchmr.com/?s={searchTerms}
CHR Extension: (Slides) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-01]
CHR Extension: (Docs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-01]
CHR Extension: (Google Drive) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-01]
CHR Extension: (YouTube) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-01]
CHR Extension: (Sheets) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-01]
CHR Extension: (Search Manager) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gnplhahbcoldbildffdchneaepapccbn [2021-12-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-01]
CHR Extension: (Gmail) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-01]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-02]
CHR HKLM-x32\...\Chrome\Extension: [gnplhahbcoldbildffdchneaepapccbn]
Opera:
=======
OPR Profile: C:\Users\timot\AppData\Roaming\Opera Software\Opera Stable [2021-11-28]
OPR DefaultSuggestURL: Opera Stable -> hxxps://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2021-12-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2017-06-08] (Micro-Star International Co., Ltd.) [Fichier non signé]
S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\Dragon Center\MSI_ActiveX_Service.exe [62392 2017-04-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4362568 2015-06-18] (Symantec Corporation -> Symantec Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
S2 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-04] (Parsec Cloud, Inc. -> Parsec)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1347464 2021-02-24] (Rockstar Games, Inc. -> Rockstar Games)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 RtkAudioUniversalService; "%SystemRoot%\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 BadlionAnticheat; C:\WINDOWS\system32\drivers\BadlionAnticheat.sys [2493968 2021-06-16] (Microsoft Windows Hardware Compatibility Publisher ->)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0406000.00C\ccSetx64.sys [173808 2015-06-25] (Symantec Corporation -> Symantec Corporation)
R3 MpKsl08063e75; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2A534682-55FB-470D-AD0F-7B02A6C34EA3}\MpKslDrv.sys [134376 2022-01-15] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsldd4d3292; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [130296 2021-11-26] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 TriDefSmartCam; C:\WINDOWS\system32\DRIVERS\TriDefSmartCam.sys [48304 2017-02-20] (Dynamic Digital Depth Australia Pty Ltd -> DDD Group Plc.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2020-12-16] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-12] (Micro-Star Int'l Co. Ltd. -> )
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 16:25 - 2022-01-15 16:27 - 000030398 _____ C:\Users\timot\Desktop\FRST.txt
2022-01-15 16:25 - 2022-01-15 16:24 - 002311680 _____ (Farbar) C:\Users\timot\Desktop\FRST64.exe
2022-01-15 16:24 - 2022-01-15 16:24 - 002311680 _____ (Farbar) C:\Users\timot\Downloads\FRST64.exe
2022-01-15 15:55 - 2022-01-15 15:56 - 000000000 ____D C:\AdwCleaner
2022-01-15 15:55 - 2022-01-15 15:55 - 008540344 _____ (Malwarebytes) C:\Users\timot\Downloads\adwcleaner_8.3.1.exe
2022-01-15 14:28 - 2022-01-15 14:28 - 000000000 ___HD C:\$WinREAgent
2022-01-14 17:28 - 2022-01-14 18:51 - 000000000 ____D C:\Users\timot\Documents\Trackmania
2022-01-14 17:28 - 2022-01-14 18:51 - 000000000 ____D C:\ProgramData\Trackmania
2022-01-14 17:19 - 2022-01-14 17:19 - 000000000 ____D C:\ProgramData\Ubisoft
2022-01-14 17:10 - 2022-01-14 17:42 - 000000000 ____D C:\Users\timot\AppData\Local\Ubisoft Game Launcher
2022-01-14 17:10 - 2022-01-14 17:19 - 000001317 _____ C:\Users\timot\Desktop\Ubisoft Connect.lnk
2022-01-14 17:10 - 2022-01-14 17:19 - 000000000 ____D C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-01-14 17:10 - 2022-01-14 17:10 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2022-01-14 17:09 - 2022-01-14 17:09 - 000000330 _____ C:\Users\timot\Desktop\Trackmania.url
2022-01-13 19:54 - 2022-01-15 16:26 - 000000000 ____D C:\FRST
2022-01-11 19:27 - 2022-01-11 19:27 - 000006656 _____ C:\Users\timot\Downloads\TimerResolution.zip
2022-01-11 19:22 - 2022-01-11 19:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4008291486-4279443762-1799469733-1001
2022-01-10 21:25 - 2022-01-10 21:25 - 000000000 ____D C:\Users\timot\AppData\LocalLow\Bennett Foddy
2022-01-10 21:23 - 2022-01-10 21:23 - 000000017 _____ C:\Users\timot\AppData\Local\resmon.resmoncfg
2022-01-10 21:21 - 2022-01-12 17:12 - 000000000 ____D C:\Users\timot\AppData\Local\chrome
2022-01-10 21:20 - 2022-01-10 21:20 - 000012806 _____ C:\WINDOWS\system32\Tasks\ChromeMonitor
2022-01-07 21:21 - 2022-01-07 21:20 - 013468507 _____ C:\Users\timot\Desktop\mine-mine-no-mi-1.15.2-0.7.1.jar
2022-01-07 21:20 - 2022-01-07 21:20 - 013468507 _____ C:\Users\timot\Downloads\mine-mine-no-mi-1.15.2-0.7.1.jar
2022-01-07 19:54 - 2022-01-07 19:54 - 005748075 _____ C:\Users\timot\Downloads\OptiFine_1.15.2_HD_U_G6.jar
2022-01-07 19:54 - 2022-01-07 19:54 - 005748075 _____ C:\Users\timot\Desktop\OptiFine_1.15.2_HD_U_G6.jar
2022-01-07 19:47 - 2022-01-07 19:48 - 006619925 _____ C:\Users\timot\Downloads\forge-1.15.2-31.2.57-installer.jar
2022-01-07 19:47 - 2022-01-07 19:47 - 012414616 _____ C:\Users\timot\Downloads\mine-mine-no-mi-1.15.2-0.7.0.1.jar
2021-12-29 20:38 - 2021-12-29 20:38 - 000000329 _____ C:\Users\timot\Desktop\The Escapists 2.url
2021-12-29 20:38 - 2021-12-29 20:38 - 000000000 ____D C:\Users\timot\AppData\LocalLow\Team 17 Digital ltd_
2021-12-27 18:53 - 2021-12-28 14:25 - 000000000 ____D C:\Users\timot\AppData\Roaming\.Erazion
2021-12-27 18:52 - 2021-12-27 18:53 - 039079512 _____ (Antwine) C:\Users\timot\Desktop\Erazion.exe
2021-12-26 21:30 - 2021-12-26 21:30 - 000000451 _____ C:\Users\timot\Desktop\Overwatch.lnk
2021-12-26 13:30 - 2021-12-26 18:52 - 000000000 ____D C:\Users\timot\AppData\Roaming\TEK Launcher
2021-12-26 13:28 - 2021-12-26 13:29 - 002598128 _____ (Nuclearist) C:\Users\timot\Downloads\TEK Launcher.exe
2021-12-23 17:32 - 2021-12-23 17:32 - 000000361 _____ C:\Users\timot\Desktop\ARK Survival Evolved.url
2021-12-18 18:58 - 2021-12-18 18:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-17 19:40 - 2021-12-17 19:40 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-17 19:40 - 2021-12-17 19:40 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-17 19:39 - 2021-12-17 19:39 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-17 19:39 - 2021-12-17 19:39 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-17 09:53 - 2021-11-16 19:36 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 16:28 - 2018-12-27 01:51 - 000000000 ____D C:\Users\timot\AppData\Roaming\discord
2022-01-15 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-15 16:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-15 16:14 - 2018-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-15 16:11 - 2020-10-13 21:05 - 000004154 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D2B6BFB3-EF94-421A-9D30-4BB27F12ED71}
2022-01-15 16:06 - 2019-01-20 17:57 - 000000000 ____D C:\Users\timot\AppData\Local\PlaceholderTileLogoFolder
2022-01-15 16:06 - 2019-01-03 11:58 - 000000000 ____D C:\ProgramData\Packages
2022-01-15 16:06 - 2018-12-25 09:32 - 000000000 ____D C:\Users\timot\AppData\Local\Packages
2022-01-15 16:05 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-15 15:57 - 2018-12-27 01:51 - 000000000 ____D C:\Users\timot\AppData\Local\Discord
2022-01-15 15:57 - 2018-12-25 18:49 - 000000001 _____ C:\Users\Public\Documents\dgc_DC.txt
2022-01-15 15:56 - 2017-06-27 18:40 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-15 15:40 - 2018-12-25 09:38 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-15 14:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-15 11:28 - 2018-12-27 01:55 - 000000000 ____D C:\Users\timot\AppData\Roaming\.minecraft
2022-01-15 09:37 - 2020-10-13 21:08 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-15 09:37 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-15 09:37 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-15 09:37 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-15 09:31 - 2020-08-05 21:39 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-01-15 09:29 - 2021-01-08 21:24 - 000000000 ____D C:\Users\timot\AppData\Roaming\Spotify
2022-01-15 09:29 - 2020-12-05 13:28 - 000000000 ____D C:\Users\timot\AppData\Local\Origin
2022-01-15 09:29 - 2019-02-10 14:14 - 000000000 ____D C:\ProgramData\Origin
2022-01-15 09:28 - 2020-10-13 21:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-15 09:28 - 2018-12-25 09:32 - 000000000 __SHD C:\Users\timot\IntelGraphicsProfiles
2022-01-15 09:28 - 2017-06-27 18:38 - 000000000 ____D C:\Intel
2022-01-15 00:37 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-14 17:00 - 2018-12-27 07:14 - 000000000 ____D C:\Users\timot\AppData\Local\CrashDumps
2022-01-13 19:35 - 2018-12-26 22:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-13 19:31 - 2018-12-26 22:18 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-13 18:35 - 2021-11-04 10:26 - 000001432 _____ C:\Users\timot\Desktop\Roblox Player.lnk
2022-01-13 18:35 - 2021-11-04 10:26 - 000001255 _____ C:\Users\timot\Desktop\Roblox Studio.lnk
2022-01-13 18:35 - 2018-12-25 19:28 - 000000000 ____D C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-01-12 22:17 - 2020-10-13 20:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-11 19:22 - 2020-10-13 21:05 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4008291486-4279443762-1799469733-1001
2022-01-11 19:22 - 2020-10-13 21:00 - 000002428 _____ C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-11 18:15 - 2021-01-08 21:25 - 000000000 ____D C:\Users\timot\AppData\Local\Spotify
2022-01-09 17:36 - 2019-02-08 16:54 - 000000000 ____D C:\Users\timot\AppData\Local\GeometryDash
2022-01-02 17:56 - 2020-12-17 19:09 - 000000000 ____D C:\ProgramData\Voicemod
2022-01-02 17:55 - 2020-12-17 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-01-02 17:55 - 2020-12-17 19:09 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-12-29 19:39 - 2020-08-05 21:28 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-29 00:47 - 2020-12-17 19:09 - 000000000 ____D C:\Users\timot\AppData\Local\Voicemod
2021-12-27 12:50 - 2019-01-20 15:58 - 000000000 ____D C:\Users\timot\AppData\Local\D3DSCache
2021-12-27 12:48 - 2020-12-05 13:28 - 000000000 ____D C:\Users\timot\AppData\Roaming\Origin
2021-12-26 23:18 - 2021-01-14 20:57 - 000000000 ____D C:\Users\timot\AppData\Local\Battle.net
2021-12-25 18:20 - 2019-07-19 13:47 - 000000000 ____D C:\Users\timot\Documents\My Games
2021-12-21 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-20 14:22 - 2017-05-18 17:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-19 20:40 - 2020-12-05 13:29 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-12-18 18:59 - 2020-10-13 20:57 - 000528272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-17 09:54 - 2021-11-02 22:34 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-12-17 09:54 - 2021-11-02 22:34 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-12-17 09:54 - 2021-11-02 22:34 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-12-17 09:54 - 2017-06-27 18:40 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-12-17 09:53 - 2021-11-18 18:04 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-12-17 09:53 - 2020-10-13 21:05 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2018-12-27 03:32 - 000001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-12-17 09:53 - 2017-06-27 18:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-12-17 09:53 - 2017-06-27 18:39 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-12-16 18:02 - 2018-12-27 19:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-16 18:00 - 2020-12-05 13:29 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Fichiers à la racine de certains dossiers ========
2019-04-06 14:40 - 2019-04-06 14:40 - 000000113 _____ () C:\Users\timot\AppData\Roaming\D2Info0
2019-04-06 14:40 - 2019-04-06 15:29 - 000000008 _____ () C:\Users\timot\AppData\Roaming\DofusAppId0_1
2020-12-21 18:50 - 2020-12-21 18:50 - 000000260 _____ () C:\Users\timot\AppData\Roaming\MSystem
2020-03-31 20:11 - 2020-06-07 22:26 - 000000003 _____ () C:\Users\timot\AppData\Local\Autosofted License.txt
2021-11-28 18:13 - 2021-11-28 18:13 - 000000036 _____ () C:\Users\timot\AppData\Local\link.txt
2022-01-10 21:23 - 2022-01-10 21:23 - 000000017 _____ () C:\Users\timot\AppData\Local\resmon.resmoncfg
2021-11-28 18:12 - 2021-11-28 18:12 - 002842672 _____ (DT001) C:\Users\timot\AppData\Local\setup15364.exe
2020-07-18 12:46 - 2020-07-18 12:46 - 002931720 _____ (DT001) C:\Users\timot\AppData\Local\setup23860.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par timot (administrateur) sur MSI (Micro-Star International Co., Ltd. GL72M 7RDX) (15-01-2022 16:25:39)
Exécuté depuis C:\Users\timot\Desktop
Profils chargés: timot
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1415 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] [Fichier en cours d'utilisation] D:\SteamLibrary\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe
(Discord Inc. -> Discord Inc.) C:\Users\timot\AppData\Local\Discord\app-1.0.9003\Discord.exe <12>
(Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <32>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
(Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\SCM\MSIService.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\NVDisplay.Container.exe <2>
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2>
(Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2017-06-08] (Micro-Star International CO., LTD. -> ) [Fichier non signé]
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe" -background (Pas de fichier)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [WarThunderLauncher] => C:\Users\timot\AppData\Local\WarThunder\launcher.exe [6123272 2019-09-21] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Chromium] => "c:\users\timot\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [com.blitz.app] => C:\Users\timot\AppData\Local\Programs\Blitz\Blitz.exe --autostart (Pas de fichier)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Spotify] => C:\Users\timot\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [432320 2021-10-04] (Parsec Cloud, Inc. -> Parsec)
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\MountPoints2: {c2ad0fdb-670a-11ec-8c34-28c63fae5055} - "E:\OnePlus_setup.exe" /s
HKU\S-1-5-21-4008291486-4279443762-1799469733-1001\...\MountPoints2: {f1901208-fa3a-11ea-8a6b-28c63fae5055} - "E:\OnePlus_setup.exe" /s
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2340F572-C356-44EF-90F6-BFECC6D7E44D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {291F6BC9-23BD-4C65-B58D-0EDD3E10CE06} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {293F7E5F-B26F-4660-81DE-9799C529D728} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2F9FA63B-F9CA-402A-97B6-A16B7760C84B} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
Task: {3054BD85-AFDF-414A-8B3A-1AC7FFCC20F3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {3190AA5B-CBD3-4574-99CE-FBDB299954CB} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.6.0.12\\Ara.exe [848152 2015-07-10] (Symantec Corporation -> Symantec Corporation)
Task: {33DAFB90-FE3B-4767-BB27-44744CDC28D6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3C84615B-7AA9-4AEB-ABC7-716C7644D482} - System32\Tasks\Nahimic2svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {5474976A-EB58-436E-9139-EF1C08AF8641} - System32\Tasks\Opera scheduled Autoupdate 1546342114 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {57D5B338-00B9-4859-94A3-B3516A71AEF2} - System32\Tasks\Opera scheduled assistant Autoupdate 1595072914 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\timot\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {58EE2239-43DA-47F2-AC4A-02CD6D546866} - System32\Tasks\Opera scheduled assistant Autoupdate 1547191826 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\timot\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {5A7F9B7A-F184-4B4C-BF0E-69B06495A1CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-25] (Google Inc -> Google Inc.)
Task: {5C0451CD-36F6-47D3-95D3-144FF228C8E6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {5C9CCC2B-1982-4AA3-92C9-416D67C92B21} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5F41D4F9-909A-46CA-8CB1-9A1A36FB90C3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {64B96E3E-C027-4572-8532-B71C2215690C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {650DF391-58F6-4066-8404-69D617F65EE4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6542EF03-6C0E-4D86-9A02-58F6FC4DF6A0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {72F081C2-D88E-490B-B99A-7FE90ECA41A7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A67118B-C8C1-41CF-A757-E8FD4A9EAE10} - System32\Tasks\ChromeMonitor => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4315 caractères en plus). <==== ATTENTION
Task: {7DA35057-531A-4650-92DC-A54A454F9D5A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {85F10938-6F99-4F11-A1E9-31455527BB8B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-25] (Google Inc -> Google Inc.)
Task: {8879A641-F223-4CFD-8406-8C9619AFEC17} - System32\Tasks\Opera scheduled Autoupdate 1638119657 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {8CA1CB5B-617A-4C33-9EB6-1E413B0CE714} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5122840 2017-06-15] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
Task: {8DD09889-8CC4-4F2E-8A25-6742A64718DE} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe (Pas de fichier)
Task: {99042AF0-EDFD-425E-A2C7-8525F50D8023} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9BDD5515-108F-48DA-A4B5-3425B60009ED} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {A12C02BE-A025-4197-B2DC-E5B9F661293D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4335B5E-4B2B-48C2-B057-8F8331A0F7E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4A489FA-76DC-4375-A8C1-D38B64A8ABAF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCD5AFE9-F17B-4390-B3CF-CF1BE71CCC8A} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [285464 2017-05-31] (Micro-Star International CO., LTD. -> Application) [Fichier non signé]
Task: {D0426748-2527-4CDF-9808-B4707D41D84F} - System32\Tasks\Opera scheduled Autoupdate 1595072908 => C:\Users\timot\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {D16B22D2-5707-440F-9669-424FFB13CC69} - System32\Tasks\Nahimic2svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Pas de fichier)
Task: {E191EFD2-A500-4169-8EEB-A8E90B58E87A} - System32\Tasks\Norton Security Scan for timot => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.150\Nss.exe [835664 2018-01-10] (Symantec Corporation -> Symantec Corporation)
Task: {EF8D29F3-3062-4A91-B8BF-2965BC01888B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F9CD3B19-C7FC-45C3-A650-D980F195467F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-20] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{66beac82-0b78-4c84-8883-6cb65a22c368}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fa823be8-5b2e-40cb-bad6-07432dd9ed72}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-4008291486-4279443762-1799469733-1001 -> hxxp://www.recherche-fr.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-12-17]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\timot\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-02]
Edge HomePage: Default -> hxxp://www.recherche-fr.com/
Edge StartupUrls: Default -> "hxxp://www.recherche-fr.com/"
Edge DefaultSearchURL: Default -> hxxp://www.recherche-fr.com/search?q={searchTerms}
Edge DefaultSearchKeyword: Default -> recherche-fr.com
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\timot\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-11-03]
FireFox:
========
FF DefaultProfile: 0dsqpyto.default
FF ProfilePath: C:\Users\timot\AppData\Roaming\Mozilla\Firefox\Profiles\0dsqpyto.default [2019-07-29]
FF ProfilePath: C:\Users\timot\AppData\Roaming\Mozilla\Firefox\Profiles\uaulg0b7.default-release-1609453942937 [2022-01-13]
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default [2022-01-15]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://forums.commentcamarche.net; hxxps://maranhesduve.club; hxxps://www1a.michellehardin.pro; hxxps://www1p.delmarmora.pro
CHR HomePage: Default -> hxxp://www.recherche-fr.com/
CHR StartupUrls: Default -> "hxxp://www.recherche-fr.com/"
CHR DefaultSearchURL: Default -> hxxp://www.recherche-fr.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
CHR Extension: (Slides) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-25]
CHR Extension: (Just Black) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-01]
CHR Extension: (Docs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-25]
CHR Extension: (Google Drive) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-25]
CHR Extension: (Norton Safe Search) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\eogpedgkejfmehnklhahflpmplhiceal [2020-08-26]
CHR Extension: (Sheets) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-12]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-04]
CHR Extension: (Search Manager) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnplhahbcoldbildffdchneaepapccbn [2021-11-28]
CHR Extension: (Roblox+) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2021-08-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Properties) - C:\Users\timot\AppData\Local [2022-01-15]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-12-02]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-12-01]
CHR DefaultSearchURL: Profile 3 -> hxxps://www.searchmr.com/?q={searchTerms}
CHR DefaultSuggestURL: Profile 3 -> hxxps://searchmr.com/?s={searchTerms}
CHR Extension: (Slides) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-01]
CHR Extension: (Docs) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-01]
CHR Extension: (Google Drive) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-01]
CHR Extension: (YouTube) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-01]
CHR Extension: (Sheets) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-01]
CHR Extension: (Search Manager) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gnplhahbcoldbildffdchneaepapccbn [2021-12-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-01]
CHR Extension: (Gmail) - C:\Users\timot\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-01]
CHR Profile: C:\Users\timot\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-02]
CHR HKLM-x32\...\Chrome\Extension: [gnplhahbcoldbildffdchneaepapccbn]
Opera:
=======
OPR Profile: C:\Users\timot\AppData\Roaming\Opera Software\Opera Stable [2021-11-28]
OPR DefaultSuggestURL: Opera Stable -> hxxps://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2021-12-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2017-06-08] (Micro-Star International Co., Ltd.) [Fichier non signé]
S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\Dragon Center\MSI_ActiveX_Service.exe [62392 2017-04-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4362568 2015-06-18] (Symantec Corporation -> Symantec Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-16] (Electronic Arts, Inc. -> Electronic Arts)
S2 Parsec; C:\Program Files\Parsec\pservice.exe [396488 2021-10-04] (Parsec Cloud, Inc. -> Parsec)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1347464 2021-02-24] (Rockstar Games, Inc. -> Rockstar Games)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_129542dbee5a4a5e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 RtkAudioUniversalService; "%SystemRoot%\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 BadlionAnticheat; C:\WINDOWS\system32\drivers\BadlionAnticheat.sys [2493968 2021-06-16] (Microsoft Windows Hardware Compatibility Publisher ->
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0406000.00C\ccSetx64.sys [173808 2015-06-25] (Symantec Corporation -> Symantec Corporation)
R3 MpKsl08063e75; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2A534682-55FB-470D-AD0F-7B02A6C34EA3}\MpKslDrv.sys [134376 2022-01-15] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsldd4d3292; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [130296 2021-11-26] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 TriDefSmartCam; C:\WINDOWS\system32\DRIVERS\TriDefSmartCam.sys [48304 2017-02-20] (Dynamic Digital Depth Australia Pty Ltd -> DDD Group Plc.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2020-12-16] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-12] (Micro-Star Int'l Co. Ltd. -> )
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 16:25 - 2022-01-15 16:27 - 000030398 _____ C:\Users\timot\Desktop\FRST.txt
2022-01-15 16:25 - 2022-01-15 16:24 - 002311680 _____ (Farbar) C:\Users\timot\Desktop\FRST64.exe
2022-01-15 16:24 - 2022-01-15 16:24 - 002311680 _____ (Farbar) C:\Users\timot\Downloads\FRST64.exe
2022-01-15 15:55 - 2022-01-15 15:56 - 000000000 ____D C:\AdwCleaner
2022-01-15 15:55 - 2022-01-15 15:55 - 008540344 _____ (Malwarebytes) C:\Users\timot\Downloads\adwcleaner_8.3.1.exe
2022-01-15 14:28 - 2022-01-15 14:28 - 000000000 ___HD C:\$WinREAgent
2022-01-14 17:28 - 2022-01-14 18:51 - 000000000 ____D C:\Users\timot\Documents\Trackmania
2022-01-14 17:28 - 2022-01-14 18:51 - 000000000 ____D C:\ProgramData\Trackmania
2022-01-14 17:19 - 2022-01-14 17:19 - 000000000 ____D C:\ProgramData\Ubisoft
2022-01-14 17:10 - 2022-01-14 17:42 - 000000000 ____D C:\Users\timot\AppData\Local\Ubisoft Game Launcher
2022-01-14 17:10 - 2022-01-14 17:19 - 000001317 _____ C:\Users\timot\Desktop\Ubisoft Connect.lnk
2022-01-14 17:10 - 2022-01-14 17:19 - 000000000 ____D C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-01-14 17:10 - 2022-01-14 17:10 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2022-01-14 17:09 - 2022-01-14 17:09 - 000000330 _____ C:\Users\timot\Desktop\Trackmania.url
2022-01-13 19:54 - 2022-01-15 16:26 - 000000000 ____D C:\FRST
2022-01-11 19:27 - 2022-01-11 19:27 - 000006656 _____ C:\Users\timot\Downloads\TimerResolution.zip
2022-01-11 19:22 - 2022-01-11 19:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4008291486-4279443762-1799469733-1001
2022-01-10 21:25 - 2022-01-10 21:25 - 000000000 ____D C:\Users\timot\AppData\LocalLow\Bennett Foddy
2022-01-10 21:23 - 2022-01-10 21:23 - 000000017 _____ C:\Users\timot\AppData\Local\resmon.resmoncfg
2022-01-10 21:21 - 2022-01-12 17:12 - 000000000 ____D C:\Users\timot\AppData\Local\chrome
2022-01-10 21:20 - 2022-01-10 21:20 - 000012806 _____ C:\WINDOWS\system32\Tasks\ChromeMonitor
2022-01-07 21:21 - 2022-01-07 21:20 - 013468507 _____ C:\Users\timot\Desktop\mine-mine-no-mi-1.15.2-0.7.1.jar
2022-01-07 21:20 - 2022-01-07 21:20 - 013468507 _____ C:\Users\timot\Downloads\mine-mine-no-mi-1.15.2-0.7.1.jar
2022-01-07 19:54 - 2022-01-07 19:54 - 005748075 _____ C:\Users\timot\Downloads\OptiFine_1.15.2_HD_U_G6.jar
2022-01-07 19:54 - 2022-01-07 19:54 - 005748075 _____ C:\Users\timot\Desktop\OptiFine_1.15.2_HD_U_G6.jar
2022-01-07 19:47 - 2022-01-07 19:48 - 006619925 _____ C:\Users\timot\Downloads\forge-1.15.2-31.2.57-installer.jar
2022-01-07 19:47 - 2022-01-07 19:47 - 012414616 _____ C:\Users\timot\Downloads\mine-mine-no-mi-1.15.2-0.7.0.1.jar
2021-12-29 20:38 - 2021-12-29 20:38 - 000000329 _____ C:\Users\timot\Desktop\The Escapists 2.url
2021-12-29 20:38 - 2021-12-29 20:38 - 000000000 ____D C:\Users\timot\AppData\LocalLow\Team 17 Digital ltd_
2021-12-27 18:53 - 2021-12-28 14:25 - 000000000 ____D C:\Users\timot\AppData\Roaming\.Erazion
2021-12-27 18:52 - 2021-12-27 18:53 - 039079512 _____ (Antwine) C:\Users\timot\Desktop\Erazion.exe
2021-12-26 21:30 - 2021-12-26 21:30 - 000000451 _____ C:\Users\timot\Desktop\Overwatch.lnk
2021-12-26 13:30 - 2021-12-26 18:52 - 000000000 ____D C:\Users\timot\AppData\Roaming\TEK Launcher
2021-12-26 13:28 - 2021-12-26 13:29 - 002598128 _____ (Nuclearist) C:\Users\timot\Downloads\TEK Launcher.exe
2021-12-23 17:32 - 2021-12-23 17:32 - 000000361 _____ C:\Users\timot\Desktop\ARK Survival Evolved.url
2021-12-18 18:58 - 2021-12-18 18:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-17 19:40 - 2021-12-17 19:40 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-17 19:40 - 2021-12-17 19:40 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-17 19:39 - 2021-12-17 19:39 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-17 19:39 - 2021-12-17 19:39 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-17 09:53 - 2021-11-16 19:36 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 16:28 - 2018-12-27 01:51 - 000000000 ____D C:\Users\timot\AppData\Roaming\discord
2022-01-15 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-15 16:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-15 16:14 - 2018-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-15 16:11 - 2020-10-13 21:05 - 000004154 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D2B6BFB3-EF94-421A-9D30-4BB27F12ED71}
2022-01-15 16:06 - 2019-01-20 17:57 - 000000000 ____D C:\Users\timot\AppData\Local\PlaceholderTileLogoFolder
2022-01-15 16:06 - 2019-01-03 11:58 - 000000000 ____D C:\ProgramData\Packages
2022-01-15 16:06 - 2018-12-25 09:32 - 000000000 ____D C:\Users\timot\AppData\Local\Packages
2022-01-15 16:05 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-15 15:57 - 2018-12-27 01:51 - 000000000 ____D C:\Users\timot\AppData\Local\Discord
2022-01-15 15:57 - 2018-12-25 18:49 - 000000001 _____ C:\Users\Public\Documents\dgc_DC.txt
2022-01-15 15:56 - 2017-06-27 18:40 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-15 15:40 - 2018-12-25 09:38 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-15 14:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-15 11:28 - 2018-12-27 01:55 - 000000000 ____D C:\Users\timot\AppData\Roaming\.minecraft
2022-01-15 09:37 - 2020-10-13 21:08 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-15 09:37 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-15 09:37 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-15 09:37 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-15 09:31 - 2020-08-05 21:39 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-01-15 09:29 - 2021-01-08 21:24 - 000000000 ____D C:\Users\timot\AppData\Roaming\Spotify
2022-01-15 09:29 - 2020-12-05 13:28 - 000000000 ____D C:\Users\timot\AppData\Local\Origin
2022-01-15 09:29 - 2019-02-10 14:14 - 000000000 ____D C:\ProgramData\Origin
2022-01-15 09:28 - 2020-10-13 21:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-15 09:28 - 2018-12-25 09:32 - 000000000 __SHD C:\Users\timot\IntelGraphicsProfiles
2022-01-15 09:28 - 2017-06-27 18:38 - 000000000 ____D C:\Intel
2022-01-15 00:37 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-14 17:00 - 2018-12-27 07:14 - 000000000 ____D C:\Users\timot\AppData\Local\CrashDumps
2022-01-13 19:35 - 2018-12-26 22:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-13 19:31 - 2018-12-26 22:18 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-13 18:35 - 2021-11-04 10:26 - 000001432 _____ C:\Users\timot\Desktop\Roblox Player.lnk
2022-01-13 18:35 - 2021-11-04 10:26 - 000001255 _____ C:\Users\timot\Desktop\Roblox Studio.lnk
2022-01-13 18:35 - 2018-12-25 19:28 - 000000000 ____D C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-01-12 22:17 - 2020-10-13 20:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-11 19:22 - 2020-10-13 21:05 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4008291486-4279443762-1799469733-1001
2022-01-11 19:22 - 2020-10-13 21:00 - 000002428 _____ C:\Users\timot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-11 18:15 - 2021-01-08 21:25 - 000000000 ____D C:\Users\timot\AppData\Local\Spotify
2022-01-09 17:36 - 2019-02-08 16:54 - 000000000 ____D C:\Users\timot\AppData\Local\GeometryDash
2022-01-02 17:56 - 2020-12-17 19:09 - 000000000 ____D C:\ProgramData\Voicemod
2022-01-02 17:55 - 2020-12-17 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-01-02 17:55 - 2020-12-17 19:09 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-12-29 19:39 - 2020-08-05 21:28 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-29 00:47 - 2020-12-17 19:09 - 000000000 ____D C:\Users\timot\AppData\Local\Voicemod
2021-12-27 12:50 - 2019-01-20 15:58 - 000000000 ____D C:\Users\timot\AppData\Local\D3DSCache
2021-12-27 12:48 - 2020-12-05 13:28 - 000000000 ____D C:\Users\timot\AppData\Roaming\Origin
2021-12-26 23:18 - 2021-01-14 20:57 - 000000000 ____D C:\Users\timot\AppData\Local\Battle.net
2021-12-25 18:20 - 2019-07-19 13:47 - 000000000 ____D C:\Users\timot\Documents\My Games
2021-12-21 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-20 14:22 - 2017-05-18 17:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-19 20:40 - 2020-12-05 13:29 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-12-18 18:59 - 2020-10-13 20:57 - 000528272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-18 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-17 09:54 - 2021-11-02 22:34 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-12-17 09:54 - 2021-11-02 22:34 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-12-17 09:54 - 2021-11-02 22:34 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-12-17 09:54 - 2017-06-27 18:40 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-12-17 09:53 - 2021-11-18 18:04 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-12-17 09:53 - 2021-11-02 22:34 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-12-17 09:53 - 2020-10-13 21:05 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2020-10-13 21:05 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-17 09:53 - 2018-12-27 03:32 - 000001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-12-17 09:53 - 2017-06-27 18:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-12-17 09:53 - 2017-06-27 18:39 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-12-16 18:02 - 2018-12-27 19:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-16 18:00 - 2020-12-05 13:29 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Fichiers à la racine de certains dossiers ========
2019-04-06 14:40 - 2019-04-06 14:40 - 000000113 _____ () C:\Users\timot\AppData\Roaming\D2Info0
2019-04-06 14:40 - 2019-04-06 15:29 - 000000008 _____ () C:\Users\timot\AppData\Roaming\DofusAppId0_1
2020-12-21 18:50 - 2020-12-21 18:50 - 000000260 _____ () C:\Users\timot\AppData\Roaming\MSystem
2020-03-31 20:11 - 2020-06-07 22:26 - 000000003 _____ () C:\Users\timot\AppData\Local\Autosofted License.txt
2021-11-28 18:13 - 2021-11-28 18:13 - 000000036 _____ () C:\Users\timot\AppData\Local\link.txt
2022-01-10 21:23 - 2022-01-10 21:23 - 000000017 _____ () C:\Users\timot\AppData\Local\resmon.resmoncfg
2021-11-28 18:12 - 2021-11-28 18:12 - 002842672 _____ (DT001) C:\Users\timot\AppData\Local\setup15364.exe
2020-07-18 12:46 - 2020-07-18 12:46 - 002931720 _____ (DT001) C:\Users\timot\AppData\Local\setup23860.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================