Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05.01.2024 01
Exécuté par yoann (administrateur) sur YOANN (ASUSTeK COMPUTER INC. TUF GAMING FX504GM_FX80GM) (07-01-2024 12:45:34)
Exécuté depuis D:\Users\yoann\Downloads\FRST64.exe
Profils chargés: yoann
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <27>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6c1db4160fc7f113\Intel_PIE_Service.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_99c8019dbacde1b2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3745_none_7ded3f327ca60a41\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [MicrosoftEdgeAutoLaunch_501129F583254B6C4E1C41DBACD741E3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: CNMLMBX.DLL (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.199\Installer\chrmstp.exe [2024-01-05] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0E38393F-FF03-4269-B399-1D5CC20BA9BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {987FA7AD-541C-42A6-844A-53D7120FE902} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9ED09CAD-82DE-40F3-9D76-6B31C568668A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {62D2A515-ACEC-452C-8FD0-8B61B599B404} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "7ef8f0a2-ee71-4b90-a639-361fab4afe5d" --version "6.19.10858" --silent
Task: {50FB5394-877B-4430-A02E-B8745DE40808} - System32\Tasks\CCleanerSkipUAC - yoann => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {1E8120D3-C1CE-4693-9D73-0A2A865A7A77} - System32\Tasks\GoogleUpdateTaskMachineCore{252A3234-860C-4716-9D21-1C0185E3008E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {86B6C1FA-B685-4A33-881E-11051C3EDB0D} - System32\Tasks\GoogleUpdateTaskMachineUA{CA0976CF-7D9C-4175-A721-A843A97C3275} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {C590224F-F3A7-47A1-8A99-C8D5B8E4B5F0} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1461851873-1119484311-3382848958-1001 => C:\Users\yoann\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (Pas de fichier)
Task: {BB646624-68BF-4D02-AB6F-0E2F897AC4D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C8368CD-FD45-4653-AA39-8E61F4BE604D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A510F68-AE21-4AE1-B5D1-91CC7097DEEA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB976326-6720-44F3-90D1-1F1E8F6DD35C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {44F390C9-2A18-492C-8609-558868F64784} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2024-01-04] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {FC4FEAC0-14A1-4209-B82A-796B193AEA75} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2024-01-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {1F47EE10-49B7-447E-AAFD-81B2855B4D9F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8503E08A-4770-4272-862E-5B17DDF08AFB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9C5BBBA-88C6-4C4B-906A-11392E74B595} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49227270-2484-4230-A5B6-AF1CE04E011C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80D0D685-C48F-47A8-9FC6-D7212CBDAD8B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E953224C-AA3A-4E48-BDFD-1DE900940270} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B817D22-6EE4-4393-B733-31649FE5CD75} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D977617C-CA76-4BEE-A5CA-C4E3826296C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7C27EEC1-19D2-4ED2-A5A5-2EA77605B981} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44951D88-7447-42F7-811F-614A686A8C32} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}: [DhcpDomain] home
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}\C496675626F687D244336403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}\C496675626F687D244336403: [DhcpDomain] home
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-07]
Edge Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-03]
FireFox:
========
FF DefaultProfile: tfw16otu.default
FF ProfilePath: C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default [2024-01-07]
FF Notifications: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://www.instagram.com
FF Extension: (Dark Reader) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\addon@darkreader.org.xpi [2023-12-10]
FF Extension: (Traduisez des sites web dans votre navigateur sans avoir recours au cloud.) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\firefox-translations-addon@mozilla.org.xpi [2023-07-28]
FF Extension: (Playmaker – Bold) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\playmaker-bold-colorway@mozilla.org.xpi [2023-03-22]
FF Extension: (Google Translator for Firefox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\translator@zoli.bod.xpi [2019-03-09]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-28]
FF Extension: (Dark Fox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2019-05-19]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default [2024-01-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11385960 2023-12-14] (Electronic Arts, Inc. -> Electronic Arts)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-01-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe [1418736 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_99c8019dbacde1b2\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21047096 2023-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\WINDOWS\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2024-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKslf58d8233; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BCBD865B-FE9F-4C2F-B33F-CF38FA07D1F4}\MpKslDrv.sys [263560 2024-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 PcaSp50; C:\WINDOWS\System32\Drivers\PcaSp50.sys [45624 2009-08-24] (PRINTING COMMUNICATIONS ASSOC., INC. -> Printing Communications Assoc., Inc. (PCAUSA))
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39040 2019-12-13] (GZ Systems Limited -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-02] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\Users\yoann\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-19 23:04 - 2023-12-19 23:04 - 000000000 ___DC C:\WINDOWS\InboxApps
2023-12-15 00:29 - 2023-12-15 00:29 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-15 00:19 - 2023-12-15 00:19 - 000000000 __HDC C:\$WinREAgent
2023-12-14 23:50 - 2023-12-08 05:23 - 001487368 ____C (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001424064 ____C C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001424064 ____C C:\WINDOWS\system32\vulkan-1.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001246400 ____C C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001246400 ____C C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001227288 ____C (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 000850616 ____C C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000850616 ____C C:\WINDOWS\system32\vulkaninfo.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000731320 ____C C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000731320 ____C C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-12-14 23:49 - 2023-12-08 05:19 - 000957960 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-12-14 23:49 - 2023-12-08 05:19 - 000670232 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2023-12-14 23:49 - 2023-12-08 05:19 - 000505480 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 012375688 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 002170992 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001624712 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001541256 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001198728 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000997512 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000810096 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-12-14 23:49 - 2023-12-08 05:18 - 000773744 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000459912 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-12-14 23:49 - 2023-12-08 05:17 - 015095408 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 006462600 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 005862512 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 005861000 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 003620488 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-12-14 23:48 - 2023-12-08 05:17 - 000853640 ____C (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-12-14 23:48 - 2023-12-08 05:16 - 006745768 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-12-14 23:48 - 2023-12-07 03:05 - 000113947 ____C C:\WINDOWS\system32\nvinfo.pb
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-07 12:46 - 2021-12-29 22:46 - 000000000 ___DC C:\FRST
2024-01-07 12:44 - 2021-12-16 23:29 - 000000000 ___DC C:\WINDOWS\SystemTemp
2024-01-07 12:44 - 2019-03-09 13:32 - 000000000 ___DC C:\Program Files (x86)\Google
2024-01-07 12:37 - 2020-07-19 20:12 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9F7F6425-22B8-43D4-8681-C71C8C0909A8}
2024-01-07 12:29 - 2019-12-07 13:14 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft
2024-01-07 12:25 - 2019-03-09 12:41 - 000000000 ___DC C:\ProgramData\NVIDIA
2024-01-07 12:21 - 2020-06-03 12:25 - 000002442 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-07 12:21 - 2020-06-03 12:25 - 000002280 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-01-07 12:18 - 2023-04-22 10:37 - 000000000 ___DC C:\Users\yoann\AppData\Local\Malwarebytes
2024-01-07 12:18 - 2020-07-19 20:03 - 000000000 ___DC C:\WINDOWS\system32\SleepStudy
2024-01-05 23:33 - 2023-12-05 12:59 - 000002258 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-05 23:33 - 2019-03-09 13:34 - 000002299 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-05 00:42 - 2019-12-07 13:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-05 00:42 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\AppReadiness
2024-01-04 23:58 - 2022-02-17 23:13 - 000004562 ____C C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-04 23:56 - 2022-10-14 13:24 - 000002073 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-04 23:56 - 2022-10-14 13:24 - 000002061 ____C C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-01-04 22:44 - 2022-02-13 20:22 - 000000000 ___DC C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-01-04 22:44 - 2021-10-10 00:56 - 000000000 ___DC C:\Program Files\Mozilla Firefox
2024-01-04 22:44 - 2019-03-09 13:07 - 000001005 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-01-04 00:11 - 2019-03-09 13:47 - 000000000 ___DC C:\Users\yoann\AppData\Local\CrashDumps
2024-01-04 00:10 - 2019-03-09 13:32 - 000000000 ___DC C:\Program Files\CCleaner
2024-01-03 23:09 - 2022-09-21 21:04 - 000239576 ____C (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2024-01-01 03:27 - 2020-07-30 22:19 - 000000837 ____C C:\Users\Public\Desktop\UCheck.lnk
2024-01-01 03:27 - 2019-03-09 13:48 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2024-01-01 03:27 - 2019-03-09 13:48 - 000000000 ___DC C:\Program Files\UCheck
2023-12-26 19:49 - 2023-11-16 00:48 - 000000000 ___DC C:\Users\yoann\AppData\Roaming\vlc
2023-12-26 00:03 - 2020-04-12 14:40 - 000000000 ___DC C:\Users\yoann\AppData\Local\Battle.net
2023-12-24 13:53 - 2019-03-09 12:29 - 000000000 ___DC C:\Users\yoann\AppData\Local\D3DSCache
2023-12-21 10:26 - 2022-09-21 21:02 - 000003382 ____C C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-21 10:26 - 2022-09-21 21:02 - 000000666 ____C C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-21 10:26 - 2022-06-15 15:43 - 000000000 ___DC C:\Program Files\TeamViewer
2023-12-21 10:26 - 2021-10-23 17:47 - 000003936 ____C C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-21 10:26 - 2019-12-07 13:13 - 000000000 ___DC C:\WINDOWS\INF
2023-12-21 10:26 - 2019-05-23 13:17 - 000001850 ____C C:\Users\yoann\Desktop\Spotify.lnk
2023-12-21 10:26 - 2019-05-23 13:17 - 000001836 ____C C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2023-12-21 10:26 - 2019-05-23 13:17 - 000000000 ___DC C:\Users\yoann\AppData\Local\Spotify
2023-12-21 10:26 - 2019-05-23 12:17 - 000000000 ___DC C:\Users\yoann\AppData\Roaming\Spotify
2023-12-21 10:26 - 2019-03-15 23:00 - 000000863 ____C C:\Users\Public\Desktop\CCleaner.lnk
2023-12-19 23:13 - 2020-07-19 20:06 - 001770910 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-19 23:13 - 2019-12-07 18:50 - 000794488 ____C C:\WINDOWS\system32\perfh00C.dat
2023-12-19 23:13 - 2019-12-07 18:50 - 000150602 ____C C:\WINDOWS\system32\perfc00C.dat
2023-12-19 23:05 - 2019-03-09 12:19 - 000000000 ___DC C:\Users\yoann\AppData\Local\Packages
2023-12-19 23:04 - 2020-07-19 20:12 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2023-12-19 23:04 - 2020-07-19 20:03 - 000477584 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-19 23:04 - 2019-12-07 18:53 - 000000000 ___DC C:\Program Files\Windows Defender Advanced Threat Protection
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 __RDC C:\WINDOWS\ImmersiveControlPanel
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\lv-LV
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\lt-LT
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\et-EE
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\es-MX
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\Dism
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\oobe
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\lv-LV
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\lt-LT
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\et-EE
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\es-MX
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\Dism
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\ShellExperiences
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\Provisioning
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\PolicyDefinitions
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\bcastdvr
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-19 23:04 - 2019-12-07 13:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-12-19 23:04 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-18 22:51 - 2019-06-09 01:29 - 000000000 ___DC C:\Users\yoann\AppData\Local\NVIDIA
2023-12-15 23:46 - 2023-05-31 22:44 - 000003360 ____C C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2023-12-15 23:46 - 2023-05-31 22:43 - 000002421 ____C C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-15 23:46 - 2021-12-13 17:52 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2023-12-15 00:32 - 2019-12-07 13:03 - 000000000 ___DC C:\WINDOWS\CbsTemp
2023-12-15 00:31 - 2019-12-07 18:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-15 00:31 - 2019-12-07 18:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-15 00:29 - 2020-07-19 20:07 - 003016192 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-11 19:00 - 2022-01-21 21:09 - 000003790 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{CA0976CF-7D9C-4175-A721-A843A97C3275}
2023-12-11 19:00 - 2022-01-21 21:09 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{252A3234-860C-4716-9D21-1C0185E3008E}
2023-12-08 05:16 - 2020-07-09 22:17 - 007869576 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
==================== Fichiers à la racine de certains dossiers ========
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 ____C (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-04-23 14:26 - 2020-04-23 14:26 - 000000017 ____C () C:\Users\yoann\AppData\Local\resmon.resmoncfg
2019-03-16 12:44 - 2019-03-16 12:50 - 000000069 ____C () C:\Users\yoann\AppData\Local\update_progress.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{5e0883a5-2716-11eb-93b7-806e6f6e6963}
{5e0883a6-2716-11eb-93b7-806e6f6e6963}
{5e0883a7-2716-11eb-93b7-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a5-2716-11eb-93b7-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a6-2716-11eb-93b7-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a7-2716-11eb-93b7-806e6f6e6963}
description UEFI:Network Device
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {5714d8b7-c9d9-11ea-9395-049226000dc1}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {5714d8b4-c9d9-11ea-9395-049226000dc1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {5714d8b8-c9d9-11ea-9395-049226000dc1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par yoann (administrateur) sur YOANN (ASUSTeK COMPUTER INC. TUF GAMING FX504GM_FX80GM) (07-01-2024 12:45:34)
Exécuté depuis D:\Users\yoann\Downloads\FRST64.exe
Profils chargés: yoann
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <27>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6c1db4160fc7f113\Intel_PIE_Service.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_99c8019dbacde1b2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3745_none_7ded3f327ca60a41\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\Run: [MicrosoftEdgeAutoLaunch_501129F583254B6C4E1C41DBACD741E3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: CNMLMBX.DLL (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.199\Installer\chrmstp.exe [2024-01-05] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0E38393F-FF03-4269-B399-1D5CC20BA9BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {987FA7AD-541C-42A6-844A-53D7120FE902} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe [176064 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {9ED09CAD-82DE-40F3-9D76-6B31C568668A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {62D2A515-ACEC-452C-8FD0-8B61B599B404} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "7ef8f0a2-ee71-4b90-a639-361fab4afe5d" --version "6.19.10858" --silent
Task: {50FB5394-877B-4430-A02E-B8745DE40808} - System32\Tasks\CCleanerSkipUAC - yoann => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {1E8120D3-C1CE-4693-9D73-0A2A865A7A77} - System32\Tasks\GoogleUpdateTaskMachineCore{252A3234-860C-4716-9D21-1C0185E3008E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {86B6C1FA-B685-4A33-881E-11051C3EDB0D} - System32\Tasks\GoogleUpdateTaskMachineUA{CA0976CF-7D9C-4175-A721-A843A97C3275} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-07] (Google LLC -> Google LLC)
Task: {C590224F-F3A7-47A1-8A99-C8D5B8E4B5F0} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1461851873-1119484311-3382848958-1001 => C:\Users\yoann\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (Pas de fichier)
Task: {BB646624-68BF-4D02-AB6F-0E2F897AC4D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C8368CD-FD45-4653-AA39-8E61F4BE604D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A510F68-AE21-4AE1-B5D1-91CC7097DEEA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB976326-6720-44F3-90D1-1F1E8F6DD35C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {44F390C9-2A18-492C-8609-558868F64784} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2024-01-04] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {FC4FEAC0-14A1-4209-B82A-796B193AEA75} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2024-01-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {1F47EE10-49B7-447E-AAFD-81B2855B4D9F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8503E08A-4770-4272-862E-5B17DDF08AFB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9C5BBBA-88C6-4C4B-906A-11392E74B595} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49227270-2484-4230-A5B6-AF1CE04E011C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80D0D685-C48F-47A8-9FC6-D7212CBDAD8B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E953224C-AA3A-4E48-BDFD-1DE900940270} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B817D22-6EE4-4393-B733-31649FE5CD75} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D977617C-CA76-4BEE-A5CA-C4E3826296C7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7C27EEC1-19D2-4ED2-A5A5-2EA77605B981} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44951D88-7447-42F7-811F-614A686A8C32} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}: [DhcpDomain] home
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}\C496675626F687D244336403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04f07c64-80ee-4069-82ae-a14d602c3fd2}\C496675626F687D244336403: [DhcpDomain] home
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fc0b0198-1d7c-4007-b067-b6e467f3b8b6}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-07]
Edge Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\yoann\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-03]
FireFox:
========
FF DefaultProfile: tfw16otu.default
FF ProfilePath: C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default [2024-01-07]
FF Notifications: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://www.instagram.com
FF Extension: (Dark Reader) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\addon@darkreader.org.xpi [2023-12-10]
FF Extension: (Traduisez des sites web dans votre navigateur sans avoir recours au cloud.) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\firefox-translations-addon@mozilla.org.xpi [2023-07-28]
FF Extension: (Playmaker – Bold) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\playmaker-bold-colorway@mozilla.org.xpi [2023-03-22]
FF Extension: (Google Translator for Firefox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\translator@zoli.bod.xpi [2019-03-09]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-28]
FF Extension: (Dark Fox) - C:\Users\yoann\AppData\Roaming\Mozilla\Firefox\Profiles\tfw16otu.default\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2019-05-19]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default [2024-01-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yoann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11385960 2023-12-14] (Electronic Arts, Inc. -> Electronic Arts)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-01-03] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe [1418736 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_99c8019dbacde1b2\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21047096 2023-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleIPod; C:\WINDOWS\System32\drivers\AppleIPod.sys [30096 2021-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2024-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKslf58d8233; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BCBD865B-FE9F-4C2F-B33F-CF38FA07D1F4}\MpKslDrv.sys [263560 2024-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 PcaSp50; C:\WINDOWS\System32\Drivers\PcaSp50.sys [45624 2009-08-24] (PRINTING COMMUNICATIONS ASSOC., INC. -> Printing Communications Assoc., Inc. (PCAUSA))
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39040 2019-12-13] (GZ Systems Limited -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-02] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\Users\yoann\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-19 23:04 - 2023-12-19 23:04 - 000000000 ___DC C:\WINDOWS\InboxApps
2023-12-15 00:29 - 2023-12-15 00:29 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-15 00:19 - 2023-12-15 00:19 - 000000000 __HDC C:\$WinREAgent
2023-12-14 23:50 - 2023-12-08 05:23 - 001487368 ____C (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001424064 ____C C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001424064 ____C C:\WINDOWS\system32\vulkan-1.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001246400 ____C C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001246400 ____C C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 001227288 ____C (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-12-14 23:50 - 2023-12-08 05:23 - 000850616 ____C C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000850616 ____C C:\WINDOWS\system32\vulkaninfo.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000731320 ____C C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-12-14 23:50 - 2023-12-08 05:23 - 000731320 ____C C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-12-14 23:49 - 2023-12-08 05:19 - 000957960 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-12-14 23:49 - 2023-12-08 05:19 - 000670232 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2023-12-14 23:49 - 2023-12-08 05:19 - 000505480 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 012375688 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 002170992 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001624712 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001541256 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 001198728 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000997512 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000810096 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-12-14 23:49 - 2023-12-08 05:18 - 000773744 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-12-14 23:49 - 2023-12-08 05:18 - 000459912 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-12-14 23:49 - 2023-12-08 05:17 - 015095408 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 006462600 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 005862512 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 005861000 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-12-14 23:49 - 2023-12-08 05:17 - 003620488 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-12-14 23:48 - 2023-12-08 05:17 - 000853640 ____C (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-12-14 23:48 - 2023-12-08 05:16 - 006745768 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-12-14 23:48 - 2023-12-07 03:05 - 000113947 ____C C:\WINDOWS\system32\nvinfo.pb
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-07 12:46 - 2021-12-29 22:46 - 000000000 ___DC C:\FRST
2024-01-07 12:44 - 2021-12-16 23:29 - 000000000 ___DC C:\WINDOWS\SystemTemp
2024-01-07 12:44 - 2019-03-09 13:32 - 000000000 ___DC C:\Program Files (x86)\Google
2024-01-07 12:37 - 2020-07-19 20:12 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9F7F6425-22B8-43D4-8681-C71C8C0909A8}
2024-01-07 12:29 - 2019-12-07 13:14 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft
2024-01-07 12:25 - 2019-03-09 12:41 - 000000000 ___DC C:\ProgramData\NVIDIA
2024-01-07 12:21 - 2020-06-03 12:25 - 000002442 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-07 12:21 - 2020-06-03 12:25 - 000002280 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-01-07 12:18 - 2023-04-22 10:37 - 000000000 ___DC C:\Users\yoann\AppData\Local\Malwarebytes
2024-01-07 12:18 - 2020-07-19 20:03 - 000000000 ___DC C:\WINDOWS\system32\SleepStudy
2024-01-05 23:33 - 2023-12-05 12:59 - 000002258 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-05 23:33 - 2019-03-09 13:34 - 000002299 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-05 00:42 - 2019-12-07 13:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-05 00:42 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\AppReadiness
2024-01-04 23:58 - 2022-02-17 23:13 - 000004562 ____C C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-04 23:56 - 2022-10-14 13:24 - 000002073 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-04 23:56 - 2022-10-14 13:24 - 000002061 ____C C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-01-04 22:44 - 2022-02-13 20:22 - 000000000 ___DC C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-01-04 22:44 - 2021-10-10 00:56 - 000000000 ___DC C:\Program Files\Mozilla Firefox
2024-01-04 22:44 - 2019-03-09 13:07 - 000001005 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-01-04 00:11 - 2019-03-09 13:47 - 000000000 ___DC C:\Users\yoann\AppData\Local\CrashDumps
2024-01-04 00:10 - 2019-03-09 13:32 - 000000000 ___DC C:\Program Files\CCleaner
2024-01-03 23:09 - 2022-09-21 21:04 - 000239576 ____C (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2024-01-01 03:27 - 2020-07-30 22:19 - 000000837 ____C C:\Users\Public\Desktop\UCheck.lnk
2024-01-01 03:27 - 2019-03-09 13:48 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2024-01-01 03:27 - 2019-03-09 13:48 - 000000000 ___DC C:\Program Files\UCheck
2023-12-26 19:49 - 2023-11-16 00:48 - 000000000 ___DC C:\Users\yoann\AppData\Roaming\vlc
2023-12-26 00:03 - 2020-04-12 14:40 - 000000000 ___DC C:\Users\yoann\AppData\Local\Battle.net
2023-12-24 13:53 - 2019-03-09 12:29 - 000000000 ___DC C:\Users\yoann\AppData\Local\D3DSCache
2023-12-21 10:26 - 2022-09-21 21:02 - 000003382 ____C C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-21 10:26 - 2022-09-21 21:02 - 000000666 ____C C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-21 10:26 - 2022-06-15 15:43 - 000000000 ___DC C:\Program Files\TeamViewer
2023-12-21 10:26 - 2021-10-23 17:47 - 000003936 ____C C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-21 10:26 - 2019-12-07 13:13 - 000000000 ___DC C:\WINDOWS\INF
2023-12-21 10:26 - 2019-05-23 13:17 - 000001850 ____C C:\Users\yoann\Desktop\Spotify.lnk
2023-12-21 10:26 - 2019-05-23 13:17 - 000001836 ____C C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2023-12-21 10:26 - 2019-05-23 13:17 - 000000000 ___DC C:\Users\yoann\AppData\Local\Spotify
2023-12-21 10:26 - 2019-05-23 12:17 - 000000000 ___DC C:\Users\yoann\AppData\Roaming\Spotify
2023-12-21 10:26 - 2019-03-15 23:00 - 000000863 ____C C:\Users\Public\Desktop\CCleaner.lnk
2023-12-19 23:13 - 2020-07-19 20:06 - 001770910 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-19 23:13 - 2019-12-07 18:50 - 000794488 ____C C:\WINDOWS\system32\perfh00C.dat
2023-12-19 23:13 - 2019-12-07 18:50 - 000150602 ____C C:\WINDOWS\system32\perfc00C.dat
2023-12-19 23:05 - 2019-03-09 12:19 - 000000000 ___DC C:\Users\yoann\AppData\Local\Packages
2023-12-19 23:04 - 2020-07-19 20:12 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2023-12-19 23:04 - 2020-07-19 20:03 - 000477584 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-19 23:04 - 2019-12-07 18:53 - 000000000 ___DC C:\Program Files\Windows Defender Advanced Threat Protection
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 __RDC C:\WINDOWS\ImmersiveControlPanel
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\lv-LV
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\lt-LT
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\et-EE
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\es-MX
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\SysWOW64\Dism
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\oobe
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\lv-LV
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\lt-LT
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\et-EE
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\es-MX
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\system32\Dism
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\ShellExperiences
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\Provisioning
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\PolicyDefinitions
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ___DC C:\WINDOWS\bcastdvr
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-19 23:04 - 2019-12-07 13:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-19 23:04 - 2019-12-07 13:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-12-19 23:04 - 2019-12-07 13:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-18 22:51 - 2019-06-09 01:29 - 000000000 ___DC C:\Users\yoann\AppData\Local\NVIDIA
2023-12-15 23:46 - 2023-05-31 22:44 - 000003360 ____C C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2023-12-15 23:46 - 2023-05-31 22:43 - 000002421 ____C C:\Users\yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-15 23:46 - 2021-12-13 17:52 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1461851873-1119484311-3382848958-1001
2023-12-15 00:32 - 2019-12-07 13:03 - 000000000 ___DC C:\WINDOWS\CbsTemp
2023-12-15 00:31 - 2019-12-07 18:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-15 00:31 - 2019-12-07 18:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-15 00:29 - 2020-07-19 20:07 - 003016192 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-11 19:00 - 2022-01-21 21:09 - 000003790 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{CA0976CF-7D9C-4175-A721-A843A97C3275}
2023-12-11 19:00 - 2022-01-21 21:09 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{252A3234-860C-4716-9D21-1C0185E3008E}
2023-12-08 05:16 - 2020-07-09 22:17 - 007869576 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
==================== Fichiers à la racine de certains dossiers ========
2020-04-15 21:14 - 2020-07-19 15:33 - 003289984 ____C (Nicolas Coolman) C:\Users\yoann\ZHPDiag3.exe
2020-04-23 14:26 - 2020-04-23 14:26 - 000000017 ____C () C:\Users\yoann\AppData\Local\resmon.resmoncfg
2019-03-16 12:44 - 2019-03-16 12:50 - 000000069 ____C () C:\Users\yoann\AppData\Local\update_progress.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{5e0883a5-2716-11eb-93b7-806e6f6e6963}
{5e0883a6-2716-11eb-93b7-806e6f6e6963}
{5e0883a7-2716-11eb-93b7-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a5-2716-11eb-93b7-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a6-2716-11eb-93b7-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {5e0883a7-2716-11eb-93b7-806e6f6e6963}
description UEFI:Network Device
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {5714d8b4-c9d9-11ea-9395-049226000dc1}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {5714d8b7-c9d9-11ea-9395-049226000dc1}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{5714d8b8-c9d9-11ea-9395-049226000dc1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {5714d8b4-c9d9-11ea-9395-049226000dc1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5714d8b7-c9d9-11ea-9395-049226000dc1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {5714d8b8-c9d9-11ea-9395-049226000dc1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================