Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Exécuté par Admin (administrateur) sur ORDI-DE-RAZY (15-01-2022 17:19:25)
Exécuté depuis C:\Users\Admin\Downloads
Profils chargés: Admin
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Cooler Master) [Fichier non signé] C:\Program Files (x86)\AMD Wraith\Wraith Prism\Wraith Prism HID.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc) D:\Elgato Wave 3 link\WaveLink\WaveLink.exe
(Corsair Memory, Inc. -> Elgato Systems) D:\Elgato Wave 3 link\WaveLink\AudioRoutingHelper.exe
(Discord Inc. -> Discord Inc.) C:\Users\Admin\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgc.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-08-29] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Wraith Prism] => C:\Program Files (x86)\AMD Wraith\Wraith Prism\Wraith Prism HID.exe [1899520 2019-05-03] (Cooler Master) [Fichier non signé]
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [CCXProcess] => "C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [EpicGamesLauncher] => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2022-01-12] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [EADM] => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [Wave Link] => D:\Elgato Wave 3 link\WaveLink\WaveLink.exe [10212456 2021-12-15] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-04-21]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Pas de fichier)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00C05BBD-A921-4A2C-856D-DAAC74B19A7C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (Pas de fichier)
Task: {044E7FE2-A767-4E0F-9047-79106129D1E3} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {058153A2-0F21-4DC4-B24D-F4235837C254} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {133FBC69-C46E-4837-928C-2918BAA8A8C2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1F9FA504-5AF6-40B6-877C-6C061DB4CA9C} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1614960827 => C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Admin\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {25E52F46-FC09-4F4E-AB91-4C6B7ED63F26} - System32\Tasks\ChromeTask => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4319 caractères en plus). <==== ATTENTION
Task: {28D3B556-560E-4352-95DF-F8C44381336E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2AFA0A84-3467-4817-A45C-A9B7A95793B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {363D37F6-3206-4663-83F0-99906A2C71C4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4193AE1A-BD85-46B3-ACB3-E98614F45423} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4281E58D-DC97-467D-BCD0-FAF1F0F4A8DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {538BD759-6679-4943-B805-7F60D49B52A0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {639680E8-968F-4E29-AB21-92C145B741E1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69F3F30D-2622-4793-9F6C-6AFBB2A1B729} - System32\Tasks\Opera GX scheduled Autoupdate 1598905667 => C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software)
Task: {8214509F-4A9B-4643-8446-DE4A9F55B1FE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A091018C-1537-437E-948B-5A990612A0FB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BB887650-B128-45DC-AB2F-E9F3DC2B175D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck
Task: {BDA119C0-5596-4456-BF47-42BB1DCBBBE4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8B9B1A6-5599-46F9-BECC-4B69991A31D0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E06D9865-F286-460D-9E02-0AD904406A7B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{068a2204-6719-4e7b-a108-6fea9e3d6447}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67afa2e1-e0ef-4284-b8f1-95f1e27a8603}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{94b921dc-d28e-4de3-b543-2f50c5f735cf}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-15]
Edge Extension: (wanteeed) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-01-11]
Edge Extension: (NordVPN – fast VPN for privacy & security) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2022-01-11]
Edge Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-01-13]
Edge Extension: (Wandering Fields) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opciacmmajmekmbihaheajbbhngilnci [2022-01-13]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-13] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2022-01-14]
CHR Notifications: Default -> hxxps://onepiece-streaming.co; hxxps://veryleaks.cz
CHR Extension: (Google Traduction) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-29]
CHR Extension: (BetterTTV) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-12-10]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-29]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-01]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-29]
CHR Extension: (High Contrast Colorful) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdfdkmklcjlnnnlnplffpdiekfhkpbme [2021-05-13]
CHR Extension: (Social Blade) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2021-05-31] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION
CHR Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-01-13]
CHR Extension: (wanteeed) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-10-20]
CHR Extension: (CoinStats - Crypto Portfolio Tracker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbbckponafgkennhnmgfoikfmbkiplgp [2021-07-02]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-29]
CHR Extension: (NordVPN – fast VPN for privacy & security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-11-30]
CHR Extension: (Signets iCloud) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2021-12-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-03]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-04]
CHR Extension: (Volume Master - contrôleur de volume) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2022-01-07]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2021-12-26]
CHR Extension: (Twitch Now) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2021-07-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Speedtest by Ookla) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2021-07-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-01]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-14]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-14]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3857265591-1822313065-3115185372-1001) Opera GXStable - "C:\Users\Admin\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-07-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11174464 2022-01-12] (Logitech Inc -> Logitech, Inc.)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; D:\Vpn\ProtonVPNService.exe [108792 2021-05-05] (Proton Technologies AG -> )
S3 ProtonVPN Update Service; D:\Vpn\ProtonVPN.UpdateService.exe [62712 2021-05-05] (Proton Technologies AG -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1110104 2020-11-21] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [320088 2020-11-17] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [1934744 2021-07-01] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
R2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S3 SteelSeriesUpdateService; "C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-01-02] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60328 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 ElgatoUsbAudio; C:\Windows\System32\drivers\ElgatoUsbAudio.sys [405512 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ElgatoUsbAudioks; C:\Windows\System32\drivers\ElgatoUsbAudioks.sys [53768 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ElgatoUsbAudio_mixer; C:\Windows\System32\drivers\ElgatoUsbAudio_mixer.sys [44552 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-17] (Logitech Inc -> Logitech)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ProtonVPNCallout; D:\Vpn\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_005c; C:\Windows\System32\drivers\RzDev_005c.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\Windows\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [47760 2021-09-01] (SteelSeries ApS -> SteelSeries ApS)
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBAudioVACMME; C:\Windows\System32\drivers\vbaudio_cable64_win7.sys [41192 2021-04-04] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2018-01-10] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [38704 2021-07-02] (WireGuard LLC -> WireGuard LLC)
S3 VBAudioVMAUXVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmauxvaio64_win10.sys [X]
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 17:19 - 2022-01-15 17:19 - 002311680 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2022-01-15 17:19 - 2022-01-15 17:19 - 000027365 _____ C:\Users\Admin\Downloads\FRST.txt
2022-01-15 17:06 - 2022-01-15 17:19 - 000000000 ____D C:\FRST
2022-01-14 22:15 - 2022-01-14 22:15 - 000002356 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-14 20:57 - 2022-01-14 20:57 - 001341272 _____ (Google LLC) C:\Users\Admin\Downloads\ChromeSetup.exe
2022-01-14 20:44 - 2022-01-14 20:44 - 036572352 _____ (Piriform Software Ltd) C:\Users\Admin\Downloads\ccsetup588.exe
2022-01-14 20:42 - 2022-01-14 22:20 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2022-01-13 20:33 - 2022-01-13 20:33 - 000000929 _____ C:\Users\Admin\Desktop\Origin.lnk
2022-01-13 20:32 - 2022-01-13 20:32 - 000001497 _____ C:\Users\Admin\Desktop\RocketLeague.lnk
2022-01-13 20:32 - 2022-01-13 20:32 - 000001062 _____ C:\Users\Admin\Desktop\GTA5.lnk
2022-01-13 20:31 - 2022-01-13 20:31 - 000001222 _____ C:\Users\Admin\Desktop\Trackmania.lnk
2022-01-13 20:31 - 2022-01-13 20:31 - 000000348 _____ C:\Users\Admin\Desktop\Genshin Impact.url
2022-01-13 16:49 - 2022-01-14 22:15 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-13 16:39 - 2022-01-13 16:39 - 000000000 ____D C:\Users\Admin\Documents\2335215510_neon_city.raw.download
2022-01-13 16:37 - 2022-01-13 16:37 - 000000000 ____D C:\Users\Admin\Desktop\2335215510_neon_city.raw.download
2022-01-13 16:34 - 2022-01-13 16:36 - 000000000 ____D C:\Users\Admin\Desktop\2352407539_aesthetic_gas_station.raw.download
2022-01-13 00:10 - 2022-01-13 00:10 - 000000842 _____ C:\Users\Admin\Desktop\Apex Legends.lnk
2022-01-13 00:07 - 2022-01-13 00:07 - 000001222 _____ C:\Users\Admin\Desktop\WaveLink.lnk
2022-01-13 00:07 - 2022-01-13 00:07 - 000001207 _____ C:\Users\Admin\Desktop\ModernWarfare.lnk
2022-01-13 00:07 - 2022-01-02 18:10 - 000211856 _____ (Blizzard Entertainment) C:\Users\Admin\Desktop\Battle.net Launcher.exe
2022-01-13 00:06 - 2022-01-13 00:06 - 000001529 _____ C:\Users\Admin\Desktop\VALORANT.lnk
2022-01-13 00:06 - 2022-01-13 00:06 - 000000605 _____ C:\Users\Admin\Desktop\Riot Client.lnk
2022-01-13 00:01 - 2022-01-14 20:25 - 000000000 ____D C:\Users\Admin\AppData\Local\chrome
2022-01-12 23:50 - 2022-01-12 23:50 - 000012828 _____ C:\Windows\system32\Tasks\ChromeTask
2022-01-12 23:22 - 2022-01-12 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-01-12 23:22 - 2022-01-12 23:22 - 000000000 ____D C:\Program Files\LGHUB
2022-01-12 15:46 - 2022-01-12 15:46 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-01-12 15:46 - 2022-01-12 15:46 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-01-12 15:46 - 2022-01-12 15:46 - 000011797 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-01-12 15:38 - 2022-01-12 15:38 - 000000000 ___HD C:\$WinREAgent
2022-01-09 16:13 - 2022-01-09 16:14 - 000001583 _____ C:\Users\Admin\Desktop\League FR.lnk
2022-01-07 23:59 - 2022-01-07 23:59 - 000000000 ____D C:\Users\Admin\Documents\Call of Duty Modern Warfare
2022-01-07 20:39 - 2022-01-07 20:40 - 1044867338 _____ C:\Users\Admin\Downloads\400 Photos & 92 Vidéos Chelxie by Oracle.rar
2022-01-06 17:42 - 2022-01-06 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\Creative_Technology_Ltd
2022-01-06 17:42 - 2022-01-06 17:42 - 000000000 ____D C:\Users\Admin\AppData\Local\Creative
2022-01-06 17:42 - 2022-01-06 17:42 - 000000000 ____D C:\Program Files\Creative
2022-01-06 17:38 - 2022-01-06 17:49 - 000000000 ____D C:\ProgramData\Creative
2022-01-06 17:38 - 2022-01-06 17:49 - 000000000 ____D C:\Program Files (x86)\Creative
2022-01-06 17:38 - 2021-02-24 16:02 - 000079872 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTOPT399.dll
2022-01-06 17:38 - 2021-02-24 16:01 - 000088576 _____ (Creative Technology Ltd) C:\Windows\system32\CTOPT399.dll
2022-01-06 17:38 - 2020-09-07 11:42 - 000184320 _____ (Creative Technology Ltd) C:\Windows\system32\CTOPT352.dll
2022-01-06 17:38 - 2020-09-07 11:42 - 000167424 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTOPT352.dll
2022-01-06 17:38 - 2008-12-22 20:13 - 000061440 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTChkAud.dll
2022-01-06 17:38 - 2008-12-22 20:13 - 000049664 _____ (Creative Technology Ltd) C:\Windows\system32\CTChkAud.dll
2022-01-06 17:37 - 2022-01-06 17:37 - 037816280 _____ (Creative Technology Ltd. ) C:\Users\Admin\Downloads\CreativeAppSetup_1.2.14.03.exe
2022-01-06 17:35 - 2022-01-06 17:35 - 000000000 ____D C:\Program Files\Elgato
2022-01-06 17:35 - 2021-12-08 08:08 - 000405512 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudio.sys
2022-01-06 17:35 - 2021-12-08 08:08 - 000053768 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudioks.sys
2022-01-06 17:35 - 2021-12-08 08:08 - 000044552 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudio_mixer.sys
2022-01-04 22:37 - 2022-01-04 22:37 - 000032316 _____ C:\Users\Admin\Downloads\https___fansided.com_wp-content_uploads_imagn-images_2021_05_16154490-850x560.jpeg
2022-01-02 18:17 - 2022-01-02 18:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\SmartSteamEmu
2022-01-02 18:17 - 2022-01-02 18:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\CreamAPI
2022-01-02 18:13 - 2022-01-02 18:13 - 000000000 ____D C:\ProgramData\Battle.net_components
2022-01-02 13:44 - 2022-01-02 13:44 - 001940638 _____ C:\Users\Admin\Downloads\GI-Q2-EAU-Doc élèves.pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 001676342 _____ C:\Users\Admin\Downloads\GI-Q2-EAU-Doc élèves COULEURS (page 3).pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 000742221 _____ C:\Users\Admin\Downloads\Résumé (extraits), Rapport EAU, ONU 2020.pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 000649280 _____ C:\Users\Admin\Downloads\3-Activité - résumé rapport EAU, ONU 2020.pdf
2022-01-02 11:21 - 2022-01-02 11:21 - 000305921 _____ C:\Users\Admin\Downloads\a8a08d63b754f07ec598553795e3a6e2 (1).pdf
2022-01-02 11:19 - 2022-01-02 11:19 - 000305921 _____ C:\Users\Admin\Downloads\DM3-élèves.pdf
2022-01-02 11:19 - 2022-01-02 11:19 - 000305921 _____ C:\Users\Admin\Downloads\a8a08d63b754f07ec598553795e3a6e2.pdf
2021-12-29 22:18 - 2021-12-29 22:18 - 000000000 ____D C:\Users\Admin\Documents\League of Legends
2021-12-29 17:12 - 2021-12-29 17:12 - 000000000 ____D C:\Users\Admin\AppData\Local\elgato
2021-12-16 22:52 - 2021-12-16 22:52 - 000000000 ____D C:\Windows\SystemTemp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 17:19 - 2020-11-27 22:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2022-01-15 17:11 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-15 17:09 - 2021-01-10 18:50 - 000000000 ____D C:\Users\Admin\AppData\Local\LGHUB
2022-01-15 16:51 - 2020-08-17 15:47 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-15 16:42 - 2021-01-23 23:31 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2022-01-15 15:43 - 2020-10-15 18:05 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-15 14:26 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-01-15 14:25 - 2020-08-18 07:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-15 14:24 - 2021-01-10 18:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LGHUB
2022-01-14 22:17 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-01-14 22:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-14 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-01-14 21:43 - 2020-08-29 11:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-14 21:01 - 2020-08-17 15:53 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI
2022-01-14 21:01 - 2019-12-07 15:49 - 000791762 _____ C:\Windows\system32\perfh00C.dat
2022-01-14 21:01 - 2019-12-07 15:49 - 000149928 _____ C:\Windows\system32\perfc00C.dat
2022-01-14 20:57 - 2020-10-15 20:04 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2022-01-14 20:55 - 2020-08-17 15:47 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-14 20:54 - 2020-08-17 15:47 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-14 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2022-01-14 20:54 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-01-14 20:49 - 2020-09-27 18:07 - 000000000 ____D C:\temp
2022-01-14 20:46 - 2020-11-14 14:20 - 000000000 ____D C:\Windows\Minidump
2022-01-14 20:46 - 2020-08-31 17:23 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2022-01-14 20:46 - 2020-08-17 16:47 - 000000000 ____D C:\Windows\Panther
2022-01-14 20:23 - 2020-08-17 16:08 - 000000000 ___RD C:\Users\Admin\OneDrive
2022-01-14 20:21 - 2020-08-18 07:16 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-01-14 20:21 - 2020-08-18 07:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-01-14 20:21 - 2020-08-18 07:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-01-14 20:20 - 2020-08-18 07:16 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:20 - 2020-08-18 07:16 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 18:48 - 2021-03-28 03:40 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Spotify
2022-01-14 18:16 - 2021-03-28 03:41 - 000000000 ____D C:\Users\Admin\AppData\Local\Spotify
2022-01-14 18:14 - 2021-12-13 18:46 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3857265591-1822313065-3115185372-1001
2022-01-14 18:14 - 2021-07-31 17:19 - 000002421 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-14 18:14 - 2020-08-17 16:08 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3857265591-1822313065-3115185372-1001
2022-01-14 13:01 - 2021-12-04 16:34 - 000000000 ___RD C:\Users\Admin\iCloudDrive
2022-01-14 13:01 - 2020-08-17 16:06 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2022-01-13 00:53 - 2020-08-17 16:04 - 000000000 ____D C:\Users\Admin
2022-01-13 00:06 - 2020-10-15 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-01-12 23:21 - 2020-08-17 15:47 - 000478104 _____ C:\Windows\system32\FNTCACHE.DAT
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-01-12 15:37 - 2020-08-18 07:40 - 000000000 ____D C:\Windows\system32\MRT
2022-01-12 15:36 - 2020-08-18 07:40 - 145765912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-01-10 20:12 - 2021-04-21 21:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\wooting-double-movement
2022-01-08 00:24 - 2021-03-19 20:37 - 000000000 ____D C:\Users\Admin\AppData\Local\Battle.net
2022-01-03 18:46 - 2020-11-12 20:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft
2022-01-03 18:45 - 2020-11-13 21:18 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.tlauncher
2021-12-25 17:21 - 2020-08-31 21:27 - 000004226 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1598905667
2021-12-25 17:21 - 2020-08-31 21:27 - 000001438 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-16 17:25 - 2020-08-17 15:47 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2021-02-07 03:07 - 2021-02-07 03:12 - 000001830 _____ () C:\Users\Admin\AppData\Roaming\.cache~$
2020-12-12 21:58 - 2021-05-05 19:39 - 000037972 _____ () C:\Users\Admin\AppData\Roaming\VoiceMeeterBananaDefault.xml
2020-12-12 21:54 - 2021-05-02 00:01 - 000006137 _____ () C:\Users\Admin\AppData\Roaming\VoiceMeeterDefault.xml
2021-05-01 19:18 - 2021-05-01 19:34 - 001065984 _____ () C:\Users\Admin\AppData\Local\file__0.localstorage
2021-03-31 13:52 - 2021-04-07 16:20 - 000002708 _____ () C:\Users\Admin\AppData\Local\krita-sysinfo.log
2021-03-31 13:52 - 2021-04-07 16:24 - 000057086 _____ () C:\Users\Admin\AppData\Local\krita.log
2021-04-07 16:24 - 2021-04-07 16:24 - 000000039 _____ () C:\Users\Admin\AppData\Local\kritadisplayrc
2021-03-31 13:52 - 2021-04-07 16:24 - 000018347 _____ () C:\Users\Admin\AppData\Local\kritarc
2020-09-08 15:01 - 2020-09-08 15:01 - 000016438 _____ () C:\Users\Admin\AppData\Local\partner.bmp
2021-06-07 17:35 - 2021-06-14 19:25 - 000007602 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Admin (administrateur) sur ORDI-DE-RAZY (15-01-2022 17:19:25)
Exécuté depuis C:\Users\Admin\Downloads
Profils chargés: Admin
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Cooler Master) [Fichier non signé] C:\Program Files (x86)\AMD Wraith\Wraith Prism\Wraith Prism HID.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc) D:\Elgato Wave 3 link\WaveLink\WaveLink.exe
(Corsair Memory, Inc. -> Elgato Systems) D:\Elgato Wave 3 link\WaveLink\AudioRoutingHelper.exe
(Discord Inc. -> Discord Inc.) C:\Users\Admin\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgc.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-08-29] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Wraith Prism] => C:\Program Files (x86)\AMD Wraith\Wraith Prism\Wraith Prism HID.exe [1899520 2019-05-03] (Cooler Master) [Fichier non signé]
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [CCXProcess] => "C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [EpicGamesLauncher] => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2022-01-12] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [EADM] => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart (Pas de fichier)
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3857265591-1822313065-3115185372-1001\...\Run: [Wave Link] => D:\Elgato Wave 3 link\WaveLink\WaveLink.exe [10212456 2021-12-15] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-04-21]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Pas de fichier)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00C05BBD-A921-4A2C-856D-DAAC74B19A7C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (Pas de fichier)
Task: {044E7FE2-A767-4E0F-9047-79106129D1E3} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {058153A2-0F21-4DC4-B24D-F4235837C254} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {133FBC69-C46E-4837-928C-2918BAA8A8C2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1F9FA504-5AF6-40B6-877C-6C061DB4CA9C} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1614960827 => C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Admin\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {25E52F46-FC09-4F4E-AB91-4C6B7ED63F26} - System32\Tasks\ChromeTask => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4319 caractères en plus). <==== ATTENTION
Task: {28D3B556-560E-4352-95DF-F8C44381336E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2AFA0A84-3467-4817-A45C-A9B7A95793B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {363D37F6-3206-4663-83F0-99906A2C71C4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4193AE1A-BD85-46B3-ACB3-E98614F45423} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4281E58D-DC97-467D-BCD0-FAF1F0F4A8DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {538BD759-6679-4943-B805-7F60D49B52A0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {639680E8-968F-4E29-AB21-92C145B741E1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69F3F30D-2622-4793-9F6C-6AFBB2A1B729} - System32\Tasks\Opera GX scheduled Autoupdate 1598905667 => C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe [2192592 2021-12-22] (Opera Software AS -> Opera Software)
Task: {8214509F-4A9B-4643-8446-DE4A9F55B1FE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A091018C-1537-437E-948B-5A990612A0FB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BB887650-B128-45DC-AB2F-E9F3DC2B175D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck
Task: {BDA119C0-5596-4456-BF47-42BB1DCBBBE4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8B9B1A6-5599-46F9-BECC-4B69991A31D0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E06D9865-F286-460D-9E02-0AD904406A7B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{068a2204-6719-4e7b-a108-6fea9e3d6447}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67afa2e1-e0ef-4284-b8f1-95f1e27a8603}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{94b921dc-d28e-4de3-b543-2f50c5f735cf}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-15]
Edge Extension: (wanteeed) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-01-11]
Edge Extension: (NordVPN – fast VPN for privacy & security) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2022-01-11]
Edge Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-01-13]
Edge Extension: (Wandering Fields) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opciacmmajmekmbihaheajbbhngilnci [2022-01-13]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-13] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2022-01-14]
CHR Notifications: Default -> hxxps://onepiece-streaming.co; hxxps://veryleaks.cz
CHR Extension: (Google Traduction) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-29]
CHR Extension: (BetterTTV) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-12-10]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-29]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-01]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-29]
CHR Extension: (High Contrast Colorful) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdfdkmklcjlnnnlnplffpdiekfhkpbme [2021-05-13]
CHR Extension: (Social Blade) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2021-05-31] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION
CHR Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-01-13]
CHR Extension: (wanteeed) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-10-20]
CHR Extension: (CoinStats - Crypto Portfolio Tracker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbbckponafgkennhnmgfoikfmbkiplgp [2021-07-02]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-29]
CHR Extension: (NordVPN – fast VPN for privacy & security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-11-30]
CHR Extension: (Signets iCloud) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2021-12-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-03]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-04]
CHR Extension: (Volume Master - contrôleur de volume) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2022-01-07]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2021-12-26]
CHR Extension: (Twitch Now) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2021-07-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Speedtest by Ookla) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2021-07-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-01]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-14]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-14]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3857265591-1822313065-3115185372-1001) Opera GXStable - "C:\Users\Admin\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-07-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11174464 2022-01-12] (Logitech Inc -> Logitech, Inc.)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; D:\Vpn\ProtonVPNService.exe [108792 2021-05-05] (Proton Technologies AG -> )
S3 ProtonVPN Update Service; D:\Vpn\ProtonVPN.UpdateService.exe [62712 2021-05-05] (Proton Technologies AG -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1110104 2020-11-21] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [320088 2020-11-17] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [1934744 2021-07-01] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
R2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S3 SteelSeriesUpdateService; "C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-01-02] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60328 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 ElgatoUsbAudio; C:\Windows\System32\drivers\ElgatoUsbAudio.sys [405512 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ElgatoUsbAudioks; C:\Windows\System32\drivers\ElgatoUsbAudioks.sys [53768 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ElgatoUsbAudio_mixer; C:\Windows\System32\drivers\ElgatoUsbAudio_mixer.sys [44552 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-17] (Logitech Inc -> Logitech)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ProtonVPNCallout; D:\Vpn\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_005c; C:\Windows\System32\drivers\RzDev_005c.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\Windows\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [47760 2021-09-01] (SteelSeries ApS -> SteelSeries ApS)
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBAudioVACMME; C:\Windows\System32\drivers\vbaudio_cable64_win7.sys [41192 2021-04-04] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2018-01-10] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [38704 2021-07-02] (WireGuard LLC -> WireGuard LLC)
S3 VBAudioVMAUXVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmauxvaio64_win10.sys [X]
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 17:19 - 2022-01-15 17:19 - 002311680 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2022-01-15 17:19 - 2022-01-15 17:19 - 000027365 _____ C:\Users\Admin\Downloads\FRST.txt
2022-01-15 17:06 - 2022-01-15 17:19 - 000000000 ____D C:\FRST
2022-01-14 22:15 - 2022-01-14 22:15 - 000002356 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-14 20:57 - 2022-01-14 20:57 - 001341272 _____ (Google LLC) C:\Users\Admin\Downloads\ChromeSetup.exe
2022-01-14 20:44 - 2022-01-14 20:44 - 036572352 _____ (Piriform Software Ltd) C:\Users\Admin\Downloads\ccsetup588.exe
2022-01-14 20:42 - 2022-01-14 22:20 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2022-01-13 20:33 - 2022-01-13 20:33 - 000000929 _____ C:\Users\Admin\Desktop\Origin.lnk
2022-01-13 20:32 - 2022-01-13 20:32 - 000001497 _____ C:\Users\Admin\Desktop\RocketLeague.lnk
2022-01-13 20:32 - 2022-01-13 20:32 - 000001062 _____ C:\Users\Admin\Desktop\GTA5.lnk
2022-01-13 20:31 - 2022-01-13 20:31 - 000001222 _____ C:\Users\Admin\Desktop\Trackmania.lnk
2022-01-13 20:31 - 2022-01-13 20:31 - 000000348 _____ C:\Users\Admin\Desktop\Genshin Impact.url
2022-01-13 16:49 - 2022-01-14 22:15 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-13 16:39 - 2022-01-13 16:39 - 000000000 ____D C:\Users\Admin\Documents\2335215510_neon_city.raw.download
2022-01-13 16:37 - 2022-01-13 16:37 - 000000000 ____D C:\Users\Admin\Desktop\2335215510_neon_city.raw.download
2022-01-13 16:34 - 2022-01-13 16:36 - 000000000 ____D C:\Users\Admin\Desktop\2352407539_aesthetic_gas_station.raw.download
2022-01-13 00:10 - 2022-01-13 00:10 - 000000842 _____ C:\Users\Admin\Desktop\Apex Legends.lnk
2022-01-13 00:07 - 2022-01-13 00:07 - 000001222 _____ C:\Users\Admin\Desktop\WaveLink.lnk
2022-01-13 00:07 - 2022-01-13 00:07 - 000001207 _____ C:\Users\Admin\Desktop\ModernWarfare.lnk
2022-01-13 00:07 - 2022-01-02 18:10 - 000211856 _____ (Blizzard Entertainment) C:\Users\Admin\Desktop\Battle.net Launcher.exe
2022-01-13 00:06 - 2022-01-13 00:06 - 000001529 _____ C:\Users\Admin\Desktop\VALORANT.lnk
2022-01-13 00:06 - 2022-01-13 00:06 - 000000605 _____ C:\Users\Admin\Desktop\Riot Client.lnk
2022-01-13 00:01 - 2022-01-14 20:25 - 000000000 ____D C:\Users\Admin\AppData\Local\chrome
2022-01-12 23:50 - 2022-01-12 23:50 - 000012828 _____ C:\Windows\system32\Tasks\ChromeTask
2022-01-12 23:22 - 2022-01-12 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-01-12 23:22 - 2022-01-12 23:22 - 000000000 ____D C:\Program Files\LGHUB
2022-01-12 15:46 - 2022-01-12 15:46 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-01-12 15:46 - 2022-01-12 15:46 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-01-12 15:46 - 2022-01-12 15:46 - 000011797 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-01-12 15:38 - 2022-01-12 15:38 - 000000000 ___HD C:\$WinREAgent
2022-01-09 16:13 - 2022-01-09 16:14 - 000001583 _____ C:\Users\Admin\Desktop\League FR.lnk
2022-01-07 23:59 - 2022-01-07 23:59 - 000000000 ____D C:\Users\Admin\Documents\Call of Duty Modern Warfare
2022-01-07 20:39 - 2022-01-07 20:40 - 1044867338 _____ C:\Users\Admin\Downloads\400 Photos & 92 Vidéos Chelxie by Oracle.rar
2022-01-06 17:42 - 2022-01-06 17:49 - 000000000 ____D C:\Users\Admin\AppData\Local\Creative_Technology_Ltd
2022-01-06 17:42 - 2022-01-06 17:42 - 000000000 ____D C:\Users\Admin\AppData\Local\Creative
2022-01-06 17:42 - 2022-01-06 17:42 - 000000000 ____D C:\Program Files\Creative
2022-01-06 17:38 - 2022-01-06 17:49 - 000000000 ____D C:\ProgramData\Creative
2022-01-06 17:38 - 2022-01-06 17:49 - 000000000 ____D C:\Program Files (x86)\Creative
2022-01-06 17:38 - 2021-02-24 16:02 - 000079872 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTOPT399.dll
2022-01-06 17:38 - 2021-02-24 16:01 - 000088576 _____ (Creative Technology Ltd) C:\Windows\system32\CTOPT399.dll
2022-01-06 17:38 - 2020-09-07 11:42 - 000184320 _____ (Creative Technology Ltd) C:\Windows\system32\CTOPT352.dll
2022-01-06 17:38 - 2020-09-07 11:42 - 000167424 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTOPT352.dll
2022-01-06 17:38 - 2008-12-22 20:13 - 000061440 _____ (Creative Technology Ltd) C:\Windows\SysWOW64\CTChkAud.dll
2022-01-06 17:38 - 2008-12-22 20:13 - 000049664 _____ (Creative Technology Ltd) C:\Windows\system32\CTChkAud.dll
2022-01-06 17:37 - 2022-01-06 17:37 - 037816280 _____ (Creative Technology Ltd. ) C:\Users\Admin\Downloads\CreativeAppSetup_1.2.14.03.exe
2022-01-06 17:35 - 2022-01-06 17:35 - 000000000 ____D C:\Program Files\Elgato
2022-01-06 17:35 - 2021-12-08 08:08 - 000405512 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudio.sys
2022-01-06 17:35 - 2021-12-08 08:08 - 000053768 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudioks.sys
2022-01-06 17:35 - 2021-12-08 08:08 - 000044552 _____ () C:\Windows\system32\Drivers\ElgatoUsbAudio_mixer.sys
2022-01-04 22:37 - 2022-01-04 22:37 - 000032316 _____ C:\Users\Admin\Downloads\https___fansided.com_wp-content_uploads_imagn-images_2021_05_16154490-850x560.jpeg
2022-01-02 18:17 - 2022-01-02 18:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\SmartSteamEmu
2022-01-02 18:17 - 2022-01-02 18:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\CreamAPI
2022-01-02 18:13 - 2022-01-02 18:13 - 000000000 ____D C:\ProgramData\Battle.net_components
2022-01-02 13:44 - 2022-01-02 13:44 - 001940638 _____ C:\Users\Admin\Downloads\GI-Q2-EAU-Doc élèves.pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 001676342 _____ C:\Users\Admin\Downloads\GI-Q2-EAU-Doc élèves COULEURS (page 3).pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 000742221 _____ C:\Users\Admin\Downloads\Résumé (extraits), Rapport EAU, ONU 2020.pdf
2022-01-02 13:44 - 2022-01-02 13:44 - 000649280 _____ C:\Users\Admin\Downloads\3-Activité - résumé rapport EAU, ONU 2020.pdf
2022-01-02 11:21 - 2022-01-02 11:21 - 000305921 _____ C:\Users\Admin\Downloads\a8a08d63b754f07ec598553795e3a6e2 (1).pdf
2022-01-02 11:19 - 2022-01-02 11:19 - 000305921 _____ C:\Users\Admin\Downloads\DM3-élèves.pdf
2022-01-02 11:19 - 2022-01-02 11:19 - 000305921 _____ C:\Users\Admin\Downloads\a8a08d63b754f07ec598553795e3a6e2.pdf
2021-12-29 22:18 - 2021-12-29 22:18 - 000000000 ____D C:\Users\Admin\Documents\League of Legends
2021-12-29 17:12 - 2021-12-29 17:12 - 000000000 ____D C:\Users\Admin\AppData\Local\elgato
2021-12-16 22:52 - 2021-12-16 22:52 - 000000000 ____D C:\Windows\SystemTemp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-15 17:19 - 2020-11-27 22:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord
2022-01-15 17:11 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-15 17:09 - 2021-01-10 18:50 - 000000000 ____D C:\Users\Admin\AppData\Local\LGHUB
2022-01-15 16:51 - 2020-08-17 15:47 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-15 16:42 - 2021-01-23 23:31 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2022-01-15 15:43 - 2020-10-15 18:05 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-15 14:26 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-01-15 14:25 - 2020-08-18 07:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-15 14:24 - 2021-01-10 18:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LGHUB
2022-01-14 22:17 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-01-14 22:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-14 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-01-14 21:43 - 2020-08-29 11:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-14 21:01 - 2020-08-17 15:53 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI
2022-01-14 21:01 - 2019-12-07 15:49 - 000791762 _____ C:\Windows\system32\perfh00C.dat
2022-01-14 21:01 - 2019-12-07 15:49 - 000149928 _____ C:\Windows\system32\perfc00C.dat
2022-01-14 20:57 - 2020-10-15 20:04 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2022-01-14 20:55 - 2020-08-17 15:47 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-14 20:54 - 2020-08-17 15:47 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-14 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2022-01-14 20:54 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-01-14 20:49 - 2020-09-27 18:07 - 000000000 ____D C:\temp
2022-01-14 20:46 - 2020-11-14 14:20 - 000000000 ____D C:\Windows\Minidump
2022-01-14 20:46 - 2020-08-31 17:23 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2022-01-14 20:46 - 2020-08-17 16:47 - 000000000 ____D C:\Windows\Panther
2022-01-14 20:23 - 2020-08-17 16:08 - 000000000 ___RD C:\Users\Admin\OneDrive
2022-01-14 20:21 - 2020-08-18 07:16 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:21 - 2020-08-18 07:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-01-14 20:21 - 2020-08-18 07:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-01-14 20:21 - 2020-08-18 07:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-01-14 20:20 - 2020-08-18 07:16 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 20:20 - 2020-08-18 07:16 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-14 18:48 - 2021-03-28 03:40 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Spotify
2022-01-14 18:16 - 2021-03-28 03:41 - 000000000 ____D C:\Users\Admin\AppData\Local\Spotify
2022-01-14 18:14 - 2021-12-13 18:46 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3857265591-1822313065-3115185372-1001
2022-01-14 18:14 - 2021-07-31 17:19 - 000002421 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-14 18:14 - 2020-08-17 16:08 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3857265591-1822313065-3115185372-1001
2022-01-14 13:01 - 2021-12-04 16:34 - 000000000 ___RD C:\Users\Admin\iCloudDrive
2022-01-14 13:01 - 2020-08-17 16:06 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2022-01-13 00:53 - 2020-08-17 16:04 - 000000000 ____D C:\Users\Admin
2022-01-13 00:06 - 2020-10-15 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-01-12 23:21 - 2020-08-17 15:47 - 000478104 _____ C:\Windows\system32\FNTCACHE.DAT
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-01-12 23:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-01-12 15:37 - 2020-08-18 07:40 - 000000000 ____D C:\Windows\system32\MRT
2022-01-12 15:36 - 2020-08-18 07:40 - 145765912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-01-10 20:12 - 2021-04-21 21:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\wooting-double-movement
2022-01-08 00:24 - 2021-03-19 20:37 - 000000000 ____D C:\Users\Admin\AppData\Local\Battle.net
2022-01-03 18:46 - 2020-11-12 20:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft
2022-01-03 18:45 - 2020-11-13 21:18 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.tlauncher
2021-12-25 17:21 - 2020-08-31 21:27 - 000004226 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1598905667
2021-12-25 17:21 - 2020-08-31 21:27 - 000001438 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-16 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-16 17:25 - 2020-08-17 15:47 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2021-02-07 03:07 - 2021-02-07 03:12 - 000001830 _____ () C:\Users\Admin\AppData\Roaming\.cache~$
2020-12-12 21:58 - 2021-05-05 19:39 - 000037972 _____ () C:\Users\Admin\AppData\Roaming\VoiceMeeterBananaDefault.xml
2020-12-12 21:54 - 2021-05-02 00:01 - 000006137 _____ () C:\Users\Admin\AppData\Roaming\VoiceMeeterDefault.xml
2021-05-01 19:18 - 2021-05-01 19:34 - 001065984 _____ () C:\Users\Admin\AppData\Local\file__0.localstorage
2021-03-31 13:52 - 2021-04-07 16:20 - 000002708 _____ () C:\Users\Admin\AppData\Local\krita-sysinfo.log
2021-03-31 13:52 - 2021-04-07 16:24 - 000057086 _____ () C:\Users\Admin\AppData\Local\krita.log
2021-04-07 16:24 - 2021-04-07 16:24 - 000000039 _____ () C:\Users\Admin\AppData\Local\kritadisplayrc
2021-03-31 13:52 - 2021-04-07 16:24 - 000018347 _____ () C:\Users\Admin\AppData\Local\kritarc
2020-09-08 15:01 - 2020-09-08 15:01 - 000016438 _____ () C:\Users\Admin\AppData\Local\partner.bmp
2021-06-07 17:35 - 2021-06-14 19:25 - 000007602 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================