Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
Exécuté par Lidiane (administrateur) sur DESKTOP-ERCB6TE (Micro-Star International Co., Ltd MS-7B86) (09-06-2023 14:20:33)
Exécuté depuis C:\Users\Lidiane\Desktop\FRST64.exe
Profils chargés: Lidiane
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <6>
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe ->) (VTech Electronics North America, LLC -> VTech) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechUSBSocketService.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (VTech Electronics North America, LLC -> VTech) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2905_none_7dd39c4c7cb9dfa0\TiWorker.exe
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Discord] => C:\Users\Lidiane\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-05-30] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3050080 2022-11-02] (Skutta, Kristjan -> )
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Opera GX Stable] => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [utweb] => "C:\Users\Lidiane\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Netmarble Launcher] => C:\Program Files\Netmarble\Netmarble Launcher\Netmarble Launcher.exe [136192896 2023-01-30] (Netmarble Corporation -> Netmarble Corporation)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37134288 2023-05-26] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2668648 2023-06-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\WPXSCR~1.SCR [262864 2022-06-22] (Skutta, Kristjan -> )
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {031305E3-1948-4D0F-8A28-7D6768893D78} - System32\Tasks\Opera scheduled Autoupdate 1653151944 => C:\Users\Lidiane\AppData\Local\Programs\Opera\launcher.exe [2473216 2022-05-17] (Opera Software AS -> Opera Software)
Task: {1A5D5DA9-D323-4F77-B585-50C274C4A9D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {54F8A7B8-5DE7-4643-B467-FF96ECB79BE9} - System32\Tasks\GoogleUpdateTaskMachineCore{B4FD8755-548D-4C31-B2BE-B912F01C9D0A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-24] (Google LLC -> Google LLC)
Task: {70418FF0-4A41-4ADA-A1E0-C518C57ED348} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2022-05-18] (Bluestack Systems, Inc -> BlueStack Systems, Inc.)
Task: {781B6644-A9E6-4504-A197-501214BEF793} - System32\Tasks\GoogleUpdateTaskMachineUA{971DA2B0-9052-4A36-A50C-C2773B8082AC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-24] (Google LLC -> Google LLC)
Task: {7D7FC3E0-C647-4FBE-BD59-3E9D69ED578E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F69AFB5-A202-451E-8B01-60E74B7A3E31} - System32\Tasks\Opera GX scheduled Autoupdate 1645875174 => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software)
Task: {A11B8E95-05D2-4CB1-97F1-6080A2CB0299} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1648223970 => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Lidiane\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {F52394D0-3152-40C4-9241-CF4B79EEEE7D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F898F2A2-0117-40DE-95C2-9A003501187F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{dc520eb7-fd0b-4b24-95c8-33cf3bf94da2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{dc520eb7-fd0b-4b24-95c8-33cf3bf94da2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{f281b899-3a45-4ef5-bfbc-59a2f35126ea}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Profile: C:\Users\Lidiane\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Lidiane\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-24]
FireFox:
========
FF Plugin-x32: @wanmei.com/npArcPlayNowPlugin -> [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default [2022-06-08]
CHR Session Restore: Default -> est activé.
CHR Extension: (Stylish – Thèmes personnalisés pour sites Web) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2022-06-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-01]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-06-01]
CHR Extension: (Shimeji Browser Extension) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2022-01-24]
CHR Extension: (Office Online - Copier et coller) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-24]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-06-01]
Opera:
=======
OPR Profile: C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable [2022-05-21]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-05-21]
OPR Extension: (Opera Crypto Wallet) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-05-21]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-21]
StartMenuInternet: (HKU\S-1-5-21-2490073962-3199906421-323260014-1001) Opera GXStable - "C:\Users\Lidiane\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-06-14] (BattlEye Innovations e.K. -> )
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11373160 2023-06-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-22] (Epic Games Inc. -> Epic Games, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-29] (Malwarebytes Inc. -> Malwarebytes)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1888424 2021-10-08] (A-Volute SAS -> Nahimic)
R2 VTechUSBSocketService; C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe [82824 2013-03-29] (VTech Electronics North America, LLC -> VTech)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1869904 2023-05-20] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [772640 2022-03-12] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [321784 2022-05-18] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 HoYoProtect; C:\WINDOWS\system32\HoYoKProtect.sys [3669520 2023-02-21] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
S3 ksophon_x64; C:\WINDOWS\system32\drivers\ksophon_x64.sys [9986168 2023-02-11] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85616 2021-08-13] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006a; C:\WINDOWS\System32\drivers\RzDev_006a.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_021e; C:\WINDOWS\System32\drivers\RzDev_021e.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1432232 2023-02-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-08 19:26 - 2023-06-08 19:26 - 000000000 ____D C:\AdwCleaner
2023-06-08 19:25 - 2023-06-08 19:25 - 008791352 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\adwcleaner_8.4.0.exe
2023-06-08 19:23 - 2023-06-08 19:23 - 000001537 _____ C:\Users\Lidiane\Documents\Malwares.txt
2023-06-08 19:19 - 2023-06-08 19:19 - 002645944 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\MBSetup (1).exe
2023-06-03 20:17 - 2023-06-03 20:18 - 000055282 _____ C:\Users\Lidiane\Desktop\Addition.txt
2023-06-03 20:15 - 2023-06-09 14:21 - 000018672 _____ C:\Users\Lidiane\Desktop\FRST.txt
2023-06-03 20:14 - 2023-06-09 14:20 - 000000000 ____D C:\FRST
2023-06-03 20:14 - 2023-06-03 20:14 - 002383360 _____ (Farbar) C:\Users\Lidiane\Desktop\FRST64.exe
2023-05-29 17:52 - 2023-06-08 19:21 - 000000000 ____D C:\Users\Lidiane\AppData\Local\Malwarebytes
2023-05-29 17:52 - 2023-05-29 17:52 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-29 17:52 - 2023-05-29 17:52 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-05-29 17:52 - 2023-05-29 17:52 - 000000000 ____D C:\Users\Lidiane\AppData\Local\mbam
2023-05-29 17:51 - 2023-05-29 17:51 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-29 17:51 - 2023-05-29 17:51 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-29 17:50 - 2023-05-29 17:50 - 002638680 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\MBSetup.exe
2023-05-29 17:47 - 2023-05-29 17:47 - 000310776 _____ C:\Users\Lidiane\Desktop\ZHPDiag.txt
2023-05-29 17:41 - 2023-05-29 17:41 - 000000867 _____ C:\Users\Lidiane\Desktop\ZHPSuite.lnk
2023-05-29 17:40 - 2023-05-29 17:47 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\ZHP
2023-05-29 17:40 - 2023-05-29 17:40 - 003516616 _____ (Nicolas Coolman) C:\Users\Lidiane\Desktop\ZHPSuite.exe
2023-05-29 17:40 - 2023-05-29 17:40 - 000000000 ____D C:\Users\Lidiane\AppData\Local\ZHP
2023-05-28 21:07 - 2023-05-28 21:07 - 131458368 _____ (NVIDIA Corporation) C:\Users\Lidiane\Desktop\GeForce_Experience_v3.27.0.112.exe
2023-05-28 21:06 - 2023-05-28 21:06 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-05-24 19:10 - 2023-05-24 19:10 - 000443515 _____ C:\Users\Lidiane\Downloads\224833291700001_Convocation_avec_epreuves_V1_20230524.PDF
2023-05-14 19:27 - 2023-05-14 19:27 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-09 14:21 - 2022-01-24 20:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-09 14:19 - 2022-01-24 20:24 - 000000000 ____D C:\Program Files (x86)\Steam
2023-06-09 14:19 - 2022-01-24 20:23 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\discord
2023-06-09 14:18 - 2022-01-24 20:23 - 000000000 ____D C:\Users\Lidiane\AppData\Local\Discord
2023-06-09 14:18 - 2021-08-13 14:43 - 000000000 ___RD C:\Users\Lidiane\OneDrive
2023-06-08 22:45 - 2022-01-24 20:07 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-08 22:45 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-08 22:10 - 2022-01-24 20:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-08 21:53 - 2022-01-24 20:39 - 000000000 ____D C:\Program Files\Genshin Impact
2023-06-08 20:17 - 2022-01-24 20:24 - 000000000 ____D C:\Users\Lidiane\AppData\Local\D3DSCache
2023-06-08 20:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-08 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-08 19:24 - 2022-05-21 21:36 - 000000000 ___HD C:\Users\Lidiane\Downloads\.opera
2023-06-08 19:24 - 2022-05-21 21:36 - 000000000 ___HD C:\Users\Lidiane\.opera
2023-06-08 19:20 - 2023-01-16 19:59 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-08 19:20 - 2022-01-24 20:29 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-08 19:20 - 2022-01-24 20:29 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-08 19:20 - 2021-08-13 14:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-08 19:19 - 2022-01-24 20:24 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2490073962-3199906421-323260014-1001
2023-06-08 19:19 - 2022-01-24 20:23 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2490073962-3199906421-323260014-1001
2023-06-08 19:19 - 2022-01-24 20:08 - 000002423 _____ C:\Users\Lidiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-08 19:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-04 17:50 - 2022-01-24 20:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-03 20:25 - 2022-04-21 20:20 - 000000000 ____D C:\Users\Lidiane\AppData\Local\CrashDumps
2023-06-03 20:10 - 2022-08-29 12:37 - 000001440 _____ C:\Users\Lidiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2023-06-03 20:10 - 2022-02-26 13:32 - 000004260 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1645875174
2023-06-03 20:10 - 2022-01-24 20:02 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-05-29 17:52 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-29 15:43 - 2022-02-13 20:47 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\slobs-client
2023-05-29 15:35 - 2022-02-13 20:46 - 000000000 ____D C:\Program Files\Streamlabs OBS
2023-05-29 15:35 - 2022-01-30 16:29 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2023-05-29 15:35 - 2022-01-24 20:17 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-29 15:35 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-29 15:35 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-29 15:35 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-29 14:25 - 2022-01-24 20:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-29 14:25 - 2021-08-13 14:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-28 22:20 - 2022-01-24 20:06 - 000257992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-28 22:20 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-05-28 22:19 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-28 22:19 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-28 21:07 - 2022-04-29 14:47 - 000000000 ____D C:\Users\Lidiane\AppData\Local\UnrealEngine
2023-05-28 21:07 - 2022-01-24 20:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-05-28 21:06 - 2022-04-21 17:09 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\EasyAntiCheat
2023-05-24 13:42 - 2022-05-27 11:31 - 000000000 ____D C:\Users\Lidiane\AppData\Local\HoYoverse
2023-05-20 13:22 - 2023-04-30 16:54 - 000000000 ____D C:\Program Files\Star Rail
2023-05-20 13:22 - 2022-03-06 20:18 - 001869904 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-BASE.sys
2023-05-20 12:31 - 2022-01-24 20:29 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{971DA2B0-9052-4A36-A50C-C2773B8082AC}
2023-05-20 12:31 - 2022-01-24 20:29 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B4FD8755-548D-4C31-B2BE-B912F01C9D0A}
2023-05-14 19:33 - 2022-01-24 20:08 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-14 19:26 - 2022-01-28 18:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-14 19:25 - 2022-01-28 18:39 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-14 17:34 - 2023-04-09 15:47 - 002794960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000488912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000247248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000202192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000079312 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-05-14 17:34 - 2023-04-09 15:47 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-05-12 18:52 - 2022-01-24 20:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-12 18:52 - 2022-01-24 20:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2022-06-22 19:01 - 2022-08-11 11:55 - 000001004 _____ () C:\Users\Lidiane\AppData\Roaming\tof_launcher.reg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Lidiane (administrateur) sur DESKTOP-ERCB6TE (Micro-Star International Co., Ltd MS-7B86) (09-06-2023 14:20:33)
Exécuté depuis C:\Users\Lidiane\Desktop\FRST64.exe
Profils chargés: Lidiane
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2965 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <6>
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe ->) (VTech Electronics North America, LLC -> VTech) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechUSBSocketService.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (VTech Electronics North America, LLC -> VTech) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2905_none_7dd39c4c7cb9dfa0\TiWorker.exe
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Discord] => C:\Users\Lidiane\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-05-30] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3050080 2022-11-02] (Skutta, Kristjan -> )
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Opera GX Stable] => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [utweb] => "C:\Users\Lidiane\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [Netmarble Launcher] => C:\Program Files\Netmarble\Netmarble Launcher\Netmarble Launcher.exe [136192896 2023-01-30] (Netmarble Corporation -> Netmarble Corporation)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37134288 2023-05-26] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2668648 2023-06-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2490073962-3199906421-323260014-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\WPXSCR~1.SCR [262864 2022-06-22] (Skutta, Kristjan -> )
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-08] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {031305E3-1948-4D0F-8A28-7D6768893D78} - System32\Tasks\Opera scheduled Autoupdate 1653151944 => C:\Users\Lidiane\AppData\Local\Programs\Opera\launcher.exe [2473216 2022-05-17] (Opera Software AS -> Opera Software)
Task: {1A5D5DA9-D323-4F77-B585-50C274C4A9D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {54F8A7B8-5DE7-4643-B467-FF96ECB79BE9} - System32\Tasks\GoogleUpdateTaskMachineCore{B4FD8755-548D-4C31-B2BE-B912F01C9D0A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-24] (Google LLC -> Google LLC)
Task: {70418FF0-4A41-4ADA-A1E0-C518C57ED348} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2022-05-18] (Bluestack Systems, Inc -> BlueStack Systems, Inc.)
Task: {781B6644-A9E6-4504-A197-501214BEF793} - System32\Tasks\GoogleUpdateTaskMachineUA{971DA2B0-9052-4A36-A50C-C2773B8082AC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-24] (Google LLC -> Google LLC)
Task: {7D7FC3E0-C647-4FBE-BD59-3E9D69ED578E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F69AFB5-A202-451E-8B01-60E74B7A3E31} - System32\Tasks\Opera GX scheduled Autoupdate 1645875174 => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software)
Task: {A11B8E95-05D2-4CB1-97F1-6080A2CB0299} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1648223970 => C:\Users\Lidiane\AppData\Local\Programs\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Lidiane\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {F52394D0-3152-40C4-9241-CF4B79EEEE7D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F898F2A2-0117-40DE-95C2-9A003501187F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{dc520eb7-fd0b-4b24-95c8-33cf3bf94da2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{dc520eb7-fd0b-4b24-95c8-33cf3bf94da2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{f281b899-3a45-4ef5-bfbc-59a2f35126ea}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Profile: C:\Users\Lidiane\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Lidiane\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-24]
FireFox:
========
FF Plugin-x32: @wanmei.com/npArcPlayNowPlugin -> [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default [2022-06-08]
CHR Session Restore: Default -> est activé.
CHR Extension: (Stylish – Thèmes personnalisés pour sites Web) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2022-06-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-01]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-06-01]
CHR Extension: (Shimeji Browser Extension) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2022-01-24]
CHR Extension: (Office Online - Copier et coller) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-02-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-24]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\Lidiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2022-06-01]
Opera:
=======
OPR Profile: C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable [2022-05-21]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-05-21]
OPR Extension: (Opera Crypto Wallet) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-05-21]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Lidiane\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-21]
StartMenuInternet: (HKU\S-1-5-21-2490073962-3199906421-323260014-1001) Opera GXStable - "C:\Users\Lidiane\AppData\Local\Programs\Opera GX\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-06-14] (BattlEye Innovations e.K. -> )
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11373160 2023-06-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-22] (Epic Games Inc. -> Epic Games, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-29] (Malwarebytes Inc. -> Malwarebytes)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1888424 2021-10-08] (A-Volute SAS -> Nahimic)
R2 VTechUSBSocketService; C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe [82824 2013-03-29] (VTech Electronics North America, LLC -> VTech)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1869904 2023-05-20] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [772640 2022-03-12] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [321784 2022-05-18] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 HoYoProtect; C:\WINDOWS\system32\HoYoKProtect.sys [3669520 2023-02-21] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
S3 ksophon_x64; C:\WINDOWS\system32\drivers\ksophon_x64.sys [9986168 2023-02-11] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85616 2021-08-13] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006a; C:\WINDOWS\System32\drivers\RzDev_006a.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_021e; C:\WINDOWS\System32\drivers\RzDev_021e.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1432232 2023-02-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-08 19:26 - 2023-06-08 19:26 - 000000000 ____D C:\AdwCleaner
2023-06-08 19:25 - 2023-06-08 19:25 - 008791352 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\adwcleaner_8.4.0.exe
2023-06-08 19:23 - 2023-06-08 19:23 - 000001537 _____ C:\Users\Lidiane\Documents\Malwares.txt
2023-06-08 19:19 - 2023-06-08 19:19 - 002645944 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\MBSetup (1).exe
2023-06-03 20:17 - 2023-06-03 20:18 - 000055282 _____ C:\Users\Lidiane\Desktop\Addition.txt
2023-06-03 20:15 - 2023-06-09 14:21 - 000018672 _____ C:\Users\Lidiane\Desktop\FRST.txt
2023-06-03 20:14 - 2023-06-09 14:20 - 000000000 ____D C:\FRST
2023-06-03 20:14 - 2023-06-03 20:14 - 002383360 _____ (Farbar) C:\Users\Lidiane\Desktop\FRST64.exe
2023-05-29 17:52 - 2023-06-08 19:21 - 000000000 ____D C:\Users\Lidiane\AppData\Local\Malwarebytes
2023-05-29 17:52 - 2023-05-29 17:52 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-29 17:52 - 2023-05-29 17:52 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-05-29 17:52 - 2023-05-29 17:52 - 000000000 ____D C:\Users\Lidiane\AppData\Local\mbam
2023-05-29 17:51 - 2023-05-29 17:51 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-05-29 17:51 - 2023-05-29 17:51 - 000000000 ____D C:\Program Files\Malwarebytes
2023-05-29 17:50 - 2023-05-29 17:50 - 002638680 _____ (Malwarebytes) C:\Users\Lidiane\Desktop\MBSetup.exe
2023-05-29 17:47 - 2023-05-29 17:47 - 000310776 _____ C:\Users\Lidiane\Desktop\ZHPDiag.txt
2023-05-29 17:41 - 2023-05-29 17:41 - 000000867 _____ C:\Users\Lidiane\Desktop\ZHPSuite.lnk
2023-05-29 17:40 - 2023-05-29 17:47 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\ZHP
2023-05-29 17:40 - 2023-05-29 17:40 - 003516616 _____ (Nicolas Coolman) C:\Users\Lidiane\Desktop\ZHPSuite.exe
2023-05-29 17:40 - 2023-05-29 17:40 - 000000000 ____D C:\Users\Lidiane\AppData\Local\ZHP
2023-05-28 21:07 - 2023-05-28 21:07 - 131458368 _____ (NVIDIA Corporation) C:\Users\Lidiane\Desktop\GeForce_Experience_v3.27.0.112.exe
2023-05-28 21:06 - 2023-05-28 21:06 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-05-24 19:10 - 2023-05-24 19:10 - 000443515 _____ C:\Users\Lidiane\Downloads\224833291700001_Convocation_avec_epreuves_V1_20230524.PDF
2023-05-14 19:27 - 2023-05-14 19:27 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-06-09 14:21 - 2022-01-24 20:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-09 14:19 - 2022-01-24 20:24 - 000000000 ____D C:\Program Files (x86)\Steam
2023-06-09 14:19 - 2022-01-24 20:23 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\discord
2023-06-09 14:18 - 2022-01-24 20:23 - 000000000 ____D C:\Users\Lidiane\AppData\Local\Discord
2023-06-09 14:18 - 2021-08-13 14:43 - 000000000 ___RD C:\Users\Lidiane\OneDrive
2023-06-08 22:45 - 2022-01-24 20:07 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-08 22:45 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-08 22:10 - 2022-01-24 20:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-08 21:53 - 2022-01-24 20:39 - 000000000 ____D C:\Program Files\Genshin Impact
2023-06-08 20:17 - 2022-01-24 20:24 - 000000000 ____D C:\Users\Lidiane\AppData\Local\D3DSCache
2023-06-08 20:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-08 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-08 19:24 - 2022-05-21 21:36 - 000000000 ___HD C:\Users\Lidiane\Downloads\.opera
2023-06-08 19:24 - 2022-05-21 21:36 - 000000000 ___HD C:\Users\Lidiane\.opera
2023-06-08 19:20 - 2023-01-16 19:59 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-08 19:20 - 2022-01-24 20:29 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-08 19:20 - 2022-01-24 20:29 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-08 19:20 - 2021-08-13 14:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-08 19:19 - 2022-01-24 20:24 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2490073962-3199906421-323260014-1001
2023-06-08 19:19 - 2022-01-24 20:23 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2490073962-3199906421-323260014-1001
2023-06-08 19:19 - 2022-01-24 20:08 - 000002423 _____ C:\Users\Lidiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-08 19:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-04 17:50 - 2022-01-24 20:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-03 20:25 - 2022-04-21 20:20 - 000000000 ____D C:\Users\Lidiane\AppData\Local\CrashDumps
2023-06-03 20:10 - 2022-08-29 12:37 - 000001440 _____ C:\Users\Lidiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2023-06-03 20:10 - 2022-02-26 13:32 - 000004260 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1645875174
2023-06-03 20:10 - 2022-01-24 20:02 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-05-29 17:52 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-05-29 15:43 - 2022-02-13 20:47 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\slobs-client
2023-05-29 15:35 - 2022-02-13 20:46 - 000000000 ____D C:\Program Files\Streamlabs OBS
2023-05-29 15:35 - 2022-01-30 16:29 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2023-05-29 15:35 - 2022-01-24 20:17 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-29 15:35 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-29 15:35 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-29 15:35 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-29 14:25 - 2022-01-24 20:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-29 14:25 - 2021-08-13 14:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-28 22:20 - 2022-01-24 20:06 - 000257992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-28 22:20 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-05-28 22:19 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-05-28 22:19 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-28 22:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-28 21:07 - 2022-04-29 14:47 - 000000000 ____D C:\Users\Lidiane\AppData\Local\UnrealEngine
2023-05-28 21:07 - 2022-01-24 20:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-05-28 21:06 - 2022-04-21 17:09 - 000000000 ____D C:\Users\Lidiane\AppData\Roaming\EasyAntiCheat
2023-05-24 13:42 - 2022-05-27 11:31 - 000000000 ____D C:\Users\Lidiane\AppData\Local\HoYoverse
2023-05-20 13:22 - 2023-04-30 16:54 - 000000000 ____D C:\Program Files\Star Rail
2023-05-20 13:22 - 2022-03-06 20:18 - 001869904 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-BASE.sys
2023-05-20 12:31 - 2022-01-24 20:29 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{971DA2B0-9052-4A36-A50C-C2773B8082AC}
2023-05-20 12:31 - 2022-01-24 20:29 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B4FD8755-548D-4C31-B2BE-B912F01C9D0A}
2023-05-14 19:33 - 2022-01-24 20:08 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-14 19:26 - 2022-01-28 18:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-14 19:25 - 2022-01-28 18:39 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-14 17:34 - 2023-04-09 15:47 - 002794960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000488912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000247248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000202192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-05-14 17:34 - 2023-04-09 15:47 - 000079312 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-05-14 17:34 - 2023-04-09 15:47 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-05-12 18:52 - 2022-01-24 20:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-12 18:52 - 2022-01-24 20:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2022-06-22 19:01 - 2022-08-11 11:55 - 000001004 _____ () C:\Users\Lidiane\AppData\Roaming\tof_launcher.reg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================