Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-02-2021 01 Exécuté par zelle (administrateur) sur PC (10-02-2021 15:57:29) Exécuté depuis C:\Users\zelle\Desktop Profils chargés: zelle Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\Kinoni\EpocCam\KinoniSvc.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Ambient Software) C:\Program Files\WindowsApps\48405AmbientSoftware.LiveDesktopWallpapers_1.2.17.0_neutral__agy8jafheqhng\LiveWallpaper\LiveWallpaper.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe (Discord Inc. -> Discord Inc.) C:\Users\zelle\AppData\Local\Discord\app-0.0.309\Discord.exe <6> (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <2> (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3> (Epic Games Inc. -> Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (Focusrite Audio Engineering Ltd.) [Fichier non signé] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe (Focusrite Audio Engineering, Ltd.) [Fichier non signé] C:\Program Files\Focusriteusb\Focusrite Notifier.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Locktime Software s.r.o. -> Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe (Logitech Inc -> ) C:\Program Files\LGHUB\logi_analytics_client.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (philandro Software GmbH -> philandro Software GmbH) D:\Program Files (x86)\AnyDesk\AnyDesk.exe <2> (Snapchat Inc. (Snap Inc.) -> Snap Inc) C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Vincent Burel -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpscenter.exe (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpscloudsvr.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353784 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusriteusb\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Fichier non signé] HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [405032 2019-11-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-01-13] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144744 2021-01-21] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [EpicGamesLauncher] => D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32894024 2021-02-05] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [Discord] => C:\Users\zelle\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [NetLimiter] => C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe [93048 2020-08-05] (Locktime Software s.r.o. -> Locktime Software) HKU\S-1-5-21-1489769609-1480223721-3134542311-1001\...\Run: [Snap Camera] => C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe [66761248 2020-10-15] (Snapchat Inc. (Snap Inc.) -> Snap Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-04] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-01-15] ShortcutTarget: AnyDesk.lnk -> D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-01-21] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS) Startup: C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE AORUS GRAPHICS ENGINE.lnk [2020-01-06] ShortcutTarget: GIGABYTE AORUS GRAPHICS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [Fichier non signé] Startup: C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK [2021-01-11] ShortcutTarget: Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe (Vincent Burel -> VB-AUDIO Software) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {13CC46B2-69E6-46DE-8143-52C710EEDA12} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [51120 2019-10-29] (ASUSTeK Computer Inc. -> ) Task: {1D17EA99-0244-4885-BA81-569959C36678} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3358D35C-1900-4C93-8BEE-0BA2AD338796} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {3B5A967A-3571-45C5-8E47-EC3595B5266F} - System32\Tasks\Teamviewer-QS-updater-mumdtzk => C:\Users\zelle\AppData\Local\TeamViewer\CustomConfigs\mumdtzk\TeamViewer.exe [30784512 2019-12-04] (TeamViewer GmbH -> TeamViewer GmbH) Task: {3F222313-4DB2-4319-8952-596597B3A47B} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [32516832 2019-12-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) Task: {42004D83-F886-4DD2-A769-758D555A139D} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2019-12-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {60077058-4D41-48D0-ACEB-E0EFB8D08919} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {63EDDA9C-0699-48B6-ABB5-10CAF37D5667} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {683DA759-C1CC-4307-A583-4C39FE0A38F9} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1627528 2019-11-07] (ASUSTeK Computer Inc. -> ASUS) Task: {7A54A1E8-AC3B-4652-BE4E-3CD74FDFAB51} - System32\Tasks\WpsUpdateTask_zelle => C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpsupdate.exe [164536 2021-02-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> ) Task: {7DB80E1E-FA54-4C32-9EE9-249AE89EB0A3} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d5b915f1f71339 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2019-12-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {8034C1D6-BFF6-4CA2-8F24-02B399811021} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [127176 2020-05-15] (Mozilla Corporation -> Mozilla Foundation) Task: {806792E6-B96A-4A56-AB54-0DD27D97198A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8B0AE656-A61B-404C-842E-38207DF273C6} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {93091A79-A405-48F7-9D9B-BA3245E51051} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {96872C26-6C97-49C4-B80E-2299EF05C434} - System32\Tasks\Opera GX scheduled Autoupdate 1603285188 => C:\Users\zelle\AppData\Local\Programs\Opera GX\launcher.exe [1664664 2021-01-26] (Opera Software AS -> Opera Software) Task: {9C28B558-4573-4A15-9FEA-562EE94162B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-22] (Google LLC -> Google LLC) Task: {9C71197E-B687-43B6-9739-84ED78E088DC} - System32\Tasks\WpsExternal_zelle_20210205180839 => C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpscloudsvr.exe [1666744 2021-02-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {A920EF98-ADC6-457A-B4D0-BAAC92DFECE9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-22] (Google LLC -> Google LLC) Task: {B0E018AB-F6A1-4B38-8C3C-5ACE6A3D190F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {B41AFDD9-94A9-4FD5-81E5-8593D03AFEEE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2021-01-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {BE6F12E5-CA4B-4444-AA3E-62BA0D5BCFAC} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [38092952 2019-10-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {CF9C6912-6786-4AEB-8C68-97143A1DEBC0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DC5CBB3F-25BC-4C19-9795-AC71C4B322FA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E5725557-E01E-4C38-8BAF-B2F941416D49} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F64A10D8-E4EC-4111-B9AD-75CE1135DB12} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Teamviewer-QS-updater-mumdtzk.job => C:\Users\zelle\AppData\Local\TeamViewer\CustomConfigs\mumdtzk\TeamViewer.exe Task: C:\Windows\Tasks\WpsExternal_zelle_20210205180839.job => C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpscloudsvr.exe/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll Task: C:\Windows\Tasks\WpsUpdateTask_zelle.job => C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\11.2.0.9984\office6\wpsupdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{6eb67be6-a307-4a88-bce6-5265dc3a9fb1}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{f337f1f4-dd6a-4279-bfcb-4e4594b7fd61}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{fb16e516-a851-4ab0-85e6-67ae81eeff07}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge Notifications: HKU\S-1-5-21-1489769609-1480223721-3134542311-1001 -> hxxps://eu.bbcollab.com Edge DefaultProfile: Default Edge Profile: C:\Users\zelle\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-10] FireFox: ======== FF DefaultProfile: 00h0fjqq.default FF ProfilePath: C:\Users\zelle\AppData\Roaming\Mozilla\Firefox\Profiles\00h0fjqq.default [2020-03-14] FF ProfilePath: C:\Users\zelle\AppData\Roaming\Mozilla\Firefox\Profiles\weaogpjk.default-release [2021-01-11] FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin HKU\S-1-5-21-1489769609-1480223721-3134542311-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zelle\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-03-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-02-10] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default [2021-02-10] CHR Notifications: Default -> hxxps://www.cnetfrance.fr CHR Extension: (Slides) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-22] CHR Extension: (Just Black) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-02-10] CHR Extension: (Docs) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-22] CHR Extension: (Google Drive) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24] CHR Extension: (YouTube) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-10] CHR Extension: (Sheets) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-22] CHR Extension: (Google Docs hors connexion) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-14] CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2021-02-09] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25] CHR Profile: C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-02-10] CHR Extension: (Slides) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-10] CHR Extension: (Docs) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-10] CHR Extension: (Google Drive) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-09-10] CHR Extension: (YouTube) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-10] CHR Extension: (Sheets) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-10] CHR Extension: (Google Docs hors connexion) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-10] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-10] CHR Extension: (Gmail) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-09-10] CHR Extension: (Chrome Media Router) - C:\Users\zelle\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-10] CHR Profile: C:\Users\zelle\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-10] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-1489769609-1480223721-3134542311-1001) Opera GXStable - "C:\Users\zelle\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AALSvc; C:\AlphaAntiLeak\AAL\bin\server\AALSvc.exe [9304952 2020-01-02] (Constantin Schreiber -> ) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2021-01-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AnyDesk; D:\Program Files (x86)\AnyDesk\AnyDesk.exe [3706832 2021-01-15] (philandro Software GmbH -> philandro Software GmbH) R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [344184 2021-01-21] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-11-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2019-12-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2019-12-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [428192 2020-05-23] (ASUSTeK Computer Inc. -> ASUS) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-21] (BattlEye Innovations e.K. -> ) R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [54312 2019-11-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET) R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Fichier non signé] S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA) R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam\KinoniSvc.exe [748544 2020-04-18] () [Fichier non signé] R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10897296 2021-01-13] (Logitech Inc -> Logitech, Inc.) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3053656 2021-01-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [314232 2020-08-05] (Locktime Software s.r.o. -> Locktime Software) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2533952 2021-01-21] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479624 2021-01-21] (Electronic Arts, Inc. -> Electronic Arts) S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games) R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [5463128 2021-01-18] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32648 2021-01-20] (SteelSeries ApS -> ) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10069120 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited) S4 wpscloudsvr; C:\Users\zelle\AppData\Local\Kingsoft\WPS Office\wpscloudsvr.exe [1666744 2021-02-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) S2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AALProtect; C:\AlphaAntiLeak\AAL\bin\server\AALProtect.sys [35984 2020-01-02] (OOO AMEKS -> ) R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> ) R1 BadlionAnticheat; C:\Windows\system32\drivers\BadlionAnticheat.sys [2506784 2020-12-31] (Microsoft Windows Hardware Compatibility Publisher -> ) R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-09-21] (Bluestack Systems, Inc -> Bluestack System Inc.) R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [20696 2019-11-14] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz148; C:\Windows\temp\cpuz148\cpuz148_x64.sys [44648 2021-02-10] (CPUID S.A.R.L.U. -> CPUID) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET) R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET) R3 FocusritePCIeSwRoot; C:\Windows\System32\drivers\FocusritePCIeSwRoot.sys [97480 2016-11-16] (Focusrite Audio Engineering Ltd. -> Focusrite Audio Engineering Ltd.) R3 Focusriteusb; C:\Windows\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.) R3 FocusriteusbSwRoot; C:\Windows\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.) R3 Focusriteusb_AUDIO; C:\Windows\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.) S3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-01-06] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> ) R3 kinonivd; C:\Windows\System32\drivers\kinonivd.sys [283840 2020-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 KINONI_Wave; C:\Windows\system32\drivers\kinonivad.sys [31424 2020-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-01-13] (Logitech Inc. -> Logitech) R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [38136 2019-12-22] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [26672 2020-05-21] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66808 2019-12-22] (Logitech Inc -> Logitech) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R0 nldrv; C:\Windows\System32\drivers\nldrv.sys [183528 2020-08-05] (Locktime Software s.r.o. -> Locktime Software) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R3 SnapCameraVirtualDevice; C:\Windows\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-12-21] (SteelSeries ApS -> SteelSeries ApS) S3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) R3 tapwindscribe0901; C:\Windows\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project) S3 VBAudioVACMME; C:\Windows\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMAUXVAIOMME; C:\Windows\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2020-02-07] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMVAIOMME; C:\Windows\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2020-02-07] (Vincent Burel -> Windows (R) Win 7 DDK provider) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5811160 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.) R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2020-12-16] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-17] (Microsoft Windows -> Microsoft Corporation) S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-02-10 15:57 - 2021-02-10 15:58 - 000035870 _____ C:\Users\zelle\Desktop\FRST.txt 2021-02-10 15:57 - 2021-02-10 15:58 - 000000000 ____D C:\FRST 2021-02-10 15:56 - 2021-02-10 15:56 - 002297344 _____ (Farbar) C:\Users\zelle\Downloads\FRST64.exe 2021-02-10 15:56 - 2021-02-10 15:56 - 002297344 _____ (Farbar) C:\Users\zelle\Desktop\FRST64.exe 2021-02-10 12:05 - 2021-02-10 12:05 - 000485792 _____ C:\Users\zelle\Desktop\ZHPDiag.txt 2021-02-10 12:00 - 2021-02-10 12:00 - 003480712 _____ (Nicolas Coolman) C:\Users\zelle\Downloads\ZHPSuite.exe 2021-02-10 12:00 - 2021-02-10 12:00 - 000000865 _____ C:\Users\zelle\Desktop\ZHPSuite.lnk 2021-02-10 09:58 - 2021-02-10 09:58 - 005832855 _____ (UserBenchmark.com) C:\Users\zelle\Downloads\UserBenchMark (1).exe 2021-02-10 09:37 - 2021-02-10 09:37 - 000013816 _____ C:\Users\zelle\Desktop\ZHPCleaner (R).html 2021-02-10 09:37 - 2021-02-10 09:37 - 000006491 _____ C:\Users\zelle\Desktop\ZHPCleaner (R).txt 2021-02-10 09:27 - 2021-02-10 09:27 - 000000875 _____ C:\Users\zelle\Desktop\ZHPCleaner.lnk 2021-02-10 09:26 - 2021-02-10 09:26 - 003342472 _____ (Nicolas Coolman) C:\Users\zelle\Downloads\ZHPCleaner (1).exe 2021-02-09 10:36 - 2021-02-10 12:23 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Mechvibes 2021-02-09 10:36 - 2021-02-09 10:36 - 064747104 _____ (Hai Nguyen) C:\Users\zelle\Downloads\Mechvibes.Setup.2.3.0.exe 2021-02-09 10:36 - 2021-02-09 10:36 - 000002379 _____ C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mechvibes.lnk 2021-02-09 10:36 - 2021-02-09 10:36 - 000002371 _____ C:\Users\zelle\Desktop\Mechvibes.lnk 2021-02-09 10:36 - 2021-02-09 10:36 - 000000000 ____D C:\Users\zelle\mechvibes_custom 2021-02-09 10:36 - 2021-02-09 10:36 - 000000000 ____D C:\Users\zelle\AppData\Local\mechvibes-updater 2021-02-08 20:00 - 2021-02-08 20:00 - 003432392 _____ (Alexander Roshal) C:\Users\zelle\Downloads\winrar-x64-600fr.exe 2021-02-08 20:00 - 2021-02-08 20:00 - 000000000 ____D C:\Users\zelle\Documents\NetPowerZIPData 2021-02-08 20:00 - 2021-02-08 20:00 - 000000000 ____D C:\Users\zelle\AppData\Roaming\WinRAR 2021-02-08 20:00 - 2021-02-08 20:00 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-02-08 20:00 - 2021-02-08 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-02-08 17:50 - 2021-02-08 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kinoni 2021-02-08 17:50 - 2021-02-08 17:50 - 000000000 ____D C:\Program Files (x86)\Kinoni 2021-02-08 17:31 - 2021-02-08 17:31 - 001194106 _____ C:\Users\zelle\Downloads\Dante Agostini.pdf 2021-02-08 11:57 - 2021-02-08 11:58 - 002273940 _____ C:\Windows\Minidump\020821-23218-01.dmp 2021-02-07 16:04 - 2021-02-07 16:04 - 057538761 _____ C:\Users\zelle\Downloads\Retro Drive (Free VJ Loop).mp4 2021-02-07 16:00 - 2021-02-07 16:01 - 058104925 _____ C:\Users\zelle\Downloads\Night Drive (Free VJ Loop) (1).mp4 2021-02-07 16:00 - 2021-02-07 16:00 - 058104925 _____ C:\Users\zelle\Downloads\Night Drive (Free VJ Loop).mp4 2021-02-06 17:49 - 2021-02-06 17:49 - 129871253 _____ C:\Users\zelle\Downloads\DELOREAN ft Primo & Timecop1983 (Free VJ Loop).mp4 2021-02-06 11:50 - 2021-02-09 18:37 - 000000000 ____D C:\Users\zelle\Documents\Voicemeeter 2021-02-05 18:08 - 2021-02-06 22:58 - 000000686 _____ C:\Windows\Tasks\WpsExternal_zelle_20210205180839.job 2021-02-05 18:08 - 2021-02-05 18:08 - 000003730 _____ C:\Windows\system32\Tasks\WpsExternal_zelle_20210205180839 2021-01-31 22:05 - 2021-01-31 22:05 - 000001354 _____ C:\Users\zelle\Desktop\Forza Horizon 4.lnk 2021-01-30 21:09 - 2021-01-30 21:09 - 000000000 ____D C:\Users\zelle\AppData\Local\INetHistory 2021-01-30 14:30 - 2021-01-30 14:30 - 000000000 ____D C:\Users\zelle\Desktop\blenderkit 2021-01-25 19:32 - 2021-01-25 19:32 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Macromedia 2021-01-25 19:32 - 2021-01-25 19:32 - 000000000 ____D C:\Users\zelle\AppData\Local\Zanichelli 2021-01-25 19:31 - 2021-01-25 19:31 - 000004584 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2021-01-25 19:31 - 2021-01-25 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BooktabZ 2021-01-25 19:31 - 2021-01-25 19:31 - 000000000 ____D C:\Program Files (x86)\BooktabZ 2021-01-25 19:29 - 2021-01-25 19:30 - 168481160 _____ (duDAT ) C:\Users\zelle\Downloads\BooktabSetup64.exe 2021-01-25 16:25 - 2021-01-25 16:25 - 004737912 _____ C:\Users\zelle\Downloads\Documento 36 (1).pdf 2021-01-22 17:37 - 2021-01-22 17:37 - 000000000 ____D C:\Users\zelle\AppData\Roaming\com.moonsworth.client.javafx.MicrosoftAuthApp 2021-01-19 12:15 - 2021-01-19 12:15 - 000000326 _____ C:\Users\zelle\Downloads\cursor (2).cur 2021-01-19 12:15 - 2021-01-19 12:15 - 000000326 _____ C:\Users\zelle\Downloads\cursor (1).cur 2021-01-19 12:14 - 2021-01-19 12:14 - 000008774 _____ C:\Users\zelle\Downloads\cross_i (1).cur 2021-01-18 10:41 - 2021-01-18 10:41 - 000000326 _____ C:\Users\zelle\Downloads\cursor.cur 2021-01-18 10:40 - 2021-01-18 10:40 - 000008774 _____ C:\Users\zelle\Downloads\cross_i.cur 2021-01-17 21:27 - 2021-01-22 17:22 - 000000000 ____D C:\Program Files (x86)\Windscribe 2021-01-17 21:27 - 2021-01-17 21:27 - 016899544 _____ (Windscribe Limited ) C:\Users\zelle\Downloads\Windscribe.exe 2021-01-17 21:27 - 2021-01-17 21:27 - 000000000 ____D C:\Users\zelle\AppData\Local\Windscribe 2021-01-17 21:27 - 2021-01-17 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe 2021-01-17 21:27 - 2018-07-06 17:22 - 000054896 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapwindscribe0901.sys 2021-01-16 16:56 - 2021-01-16 16:56 - 000000000 ____D C:\Users\zelle\AppData\LocalLow\Vulcron 2021-01-15 18:41 - 2021-01-15 18:44 - 000000000 ____D C:\ProgramData\AnyDesk 2021-01-15 18:41 - 2021-01-15 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk 2021-01-15 18:40 - 2021-01-15 19:00 - 000000000 ____D C:\Users\zelle\AppData\Roaming\AnyDesk 2021-01-15 18:40 - 2021-01-15 18:40 - 003706832 _____ (philandro Software GmbH) C:\Users\zelle\Downloads\AnyDesk.exe 2021-01-15 18:04 - 2021-01-15 18:04 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Process Hacker 2 2021-01-15 18:02 - 2021-01-15 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2 2021-01-15 18:01 - 2021-01-15 18:01 - 002267848 _____ (wj32 ) C:\Users\zelle\Downloads\processhacker-2.39-setup.exe 2021-01-15 17:58 - 2021-01-15 17:58 - 001561800 _____ () C:\Users\zelle\Downloads\Everything-1.4.1.1003.x86-Setup.exe 2021-01-14 23:08 - 2021-01-14 23:08 - 000037634 _____ C:\Users\zelle\Downloads\Laboratorio Il mosaico romano, il mosaico bizantino (2).pdf 2021-01-14 23:04 - 2021-01-14 23:04 - 000037946 _____ C:\Users\zelle\Downloads\Laboratorio Il mosaico romano, il mosaico bizantino (1).pdf 2021-01-14 22:56 - 2021-01-14 22:56 - 000036791 _____ C:\Users\zelle\Downloads\Laboratorio Il mosaico romano, il mosaico bizantino.pdf 2021-01-14 08:54 - 2021-01-14 08:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-01-14 08:54 - 2021-01-14 08:54 - 000000000 ____D C:\Program Files\LGHUB 2021-01-13 19:33 - 2021-01-13 19:33 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2021-01-13 19:33 - 2021-01-13 19:33 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2021-01-13 19:33 - 2021-01-13 19:33 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2021-01-13 19:33 - 2021-01-13 19:33 - 000502784 _____ C:\Windows\system32\AssignedAccessCsp.dll 2021-01-13 19:33 - 2021-01-13 19:33 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2021-01-13 19:33 - 2021-01-13 19:33 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl 2021-01-13 19:33 - 2021-01-13 19:33 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2021-01-13 19:33 - 2021-01-13 19:33 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2021-01-13 19:33 - 2021-01-13 19:33 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax 2021-01-13 19:33 - 2021-01-13 19:33 - 000151040 _____ C:\Windows\system32\uwfcsp.dll 2021-01-13 19:33 - 2021-01-13 19:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax 2021-01-13 19:33 - 2021-01-13 19:33 - 000094720 _____ C:\Windows\system32\VirtualMonitorManager.dll 2021-01-13 19:33 - 2021-01-13 19:33 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2021-01-13 19:33 - 2021-01-13 19:33 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl 2021-01-13 19:33 - 2021-01-13 19:33 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2021-01-13 19:33 - 2021-01-13 19:33 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl 2021-01-13 19:33 - 2021-01-13 19:33 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll 2021-01-13 19:33 - 2021-01-13 19:33 - 000053248 _____ C:\Windows\SysWOW64\BWContextHandler.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 002590720 _____ C:\Windows\system32\dwmscene.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 001101312 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000549888 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2021-01-13 19:32 - 2021-01-13 19:32 - 000331264 _____ C:\Windows\SysWOW64\ssdm.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000208384 _____ C:\Windows\SysWOW64\HeatCore.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 000186368 _____ C:\Windows\system32\BthpanContextHandler.dll 2021-01-13 19:32 - 2021-01-13 19:32 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin 2021-01-13 19:32 - 2021-01-13 19:32 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin 2021-01-13 19:31 - 2021-01-13 19:31 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2021-01-13 19:31 - 2021-01-13 19:31 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2021-01-13 19:31 - 2021-01-13 19:31 - 000266752 _____ C:\Windows\system32\HeatCore.dll 2021-01-13 19:31 - 2021-01-13 19:31 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2021-01-13 19:31 - 2021-01-13 19:31 - 000164864 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-01-13 19:31 - 2021-01-13 19:31 - 000061440 _____ C:\Windows\system32\rdsxvmaudio.dll 2021-01-13 19:30 - 2021-01-13 19:30 - 000453632 _____ C:\Windows\system32\ssdm.dll 2021-01-12 13:01 - 2021-01-12 13:01 - 000000000 ____D C:\ProgramData\obs-studio-hook ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-02-10 15:59 - 2019-12-29 11:23 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Origin 2021-02-10 15:55 - 2019-12-22 23:41 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Discord 2021-02-10 15:18 - 2021-01-02 00:18 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Offline CheatBreaker 2021-02-10 14:37 - 2019-12-22 21:35 - 000000000 ____D C:\Users\zelle\AppData\Roaming\.minecraft 2021-02-10 14:05 - 2019-12-22 19:28 - 000000000 ____D C:\ProgramData\NVIDIA 2021-02-10 13:38 - 2019-12-23 02:16 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-02-10 13:13 - 2019-12-23 00:15 - 000000000 ____D C:\Users\zelle\AppData\Local\Battle.net 2021-02-10 13:11 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-10 12:27 - 2020-05-17 11:22 - 000000001 _____ C:\Windows\vgkbootstatus.dat 2021-02-10 12:25 - 2019-12-29 21:52 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-02-10 12:25 - 2019-12-29 11:23 - 000000000 ____D C:\ProgramData\Origin 2021-02-10 12:25 - 2019-12-29 11:22 - 000000000 ____D C:\Users\zelle\AppData\Local\Origin 2021-02-10 12:25 - 2019-12-22 23:53 - 000000000 ____D C:\Users\zelle\AppData\Roaming\LGHUB 2021-02-10 12:25 - 2019-12-22 23:53 - 000000000 ____D C:\Users\zelle\AppData\Local\LGHUB 2021-02-10 12:25 - 2019-12-22 23:22 - 000021086 _____ C:\CosairDram.txt 2021-02-10 12:24 - 2019-12-23 02:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-02-10 12:24 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI 2021-02-10 12:23 - 2020-09-02 11:23 - 000034926 _____ C:\Users\zelle\AppData\Roaming\VoiceMeeterBananaDefault.xml 2021-02-10 12:05 - 2020-06-03 15:19 - 000000000 ____D C:\Users\zelle\AppData\Roaming\ZHP 2021-02-10 12:00 - 2020-06-03 15:19 - 000000000 ____D C:\Users\zelle\AppData\Local\ZHP 2021-02-10 11:56 - 2019-12-22 19:35 - 000000000 ____D C:\Windows\system32\MRT 2021-02-10 11:56 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp 2021-02-10 11:54 - 2019-12-22 19:35 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-02-10 11:47 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\NDF 2021-02-10 11:43 - 2020-01-02 15:53 - 000000000 ____D C:\Users\zelle\AppData\Roaming\LunarClient 2021-02-09 18:32 - 2019-12-23 10:08 - 000000000 ____D C:\Users\zelle\AppData\Local\ElevatedDiagnostics 2021-02-09 17:34 - 2019-12-23 10:48 - 000000000 ____D C:\Users\zelle\AppData\Local\CrashDumps 2021-02-09 13:10 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness 2021-02-09 11:28 - 2019-12-22 23:10 - 000000000 ____D C:\Users\zelle\AppData\LocalLow\Adobe 2021-02-09 11:24 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2021-02-09 11:21 - 2019-12-22 19:23 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Adobe 2021-02-09 10:36 - 2019-12-22 19:21 - 000000000 ____D C:\Users\zelle 2021-02-09 09:54 - 2019-12-22 19:23 - 000005858 _____ C:\Windows\system32\PerfStringBackup.INI 2021-02-09 09:54 - 2019-03-19 13:01 - 004151102 _____ C:\Windows\system32\perfh00C.dat 2021-02-09 09:54 - 2019-03-19 13:01 - 001160366 _____ C:\Windows\system32\perfc00C.dat 2021-02-08 22:40 - 2019-12-22 19:45 - 000000000 ____D C:\Users\zelle\AppData\Roaming\fnaticop 2021-02-08 21:46 - 2019-12-22 19:25 - 000003354 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1489769609-1480223721-3134542311-1001 2021-02-08 21:46 - 2019-12-22 19:25 - 000000000 ___RD C:\Users\zelle\OneDrive 2021-02-08 21:46 - 2019-12-22 19:21 - 000002405 _____ C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-08 20:02 - 2019-12-22 19:23 - 000000000 ____D C:\Users\zelle\AppData\Local\Packages 2021-02-08 20:02 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-02-08 15:10 - 2020-02-02 16:53 - 000007604 _____ C:\Users\zelle\AppData\Local\Resmon.ResmonCfg 2021-02-08 14:58 - 2019-12-22 23:29 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-08 14:58 - 2019-12-22 23:29 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-02-08 14:58 - 2019-12-22 19:27 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-02-08 14:58 - 2019-12-22 19:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-02-08 14:58 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF 2021-02-08 14:28 - 2020-02-07 17:17 - 000004759 _____ C:\Users\zelle\AppData\Roaming\VoiceMeeterDefault.xml 2021-02-08 11:58 - 2019-12-23 02:18 - 000000000 ____D C:\Windows\minidump 2021-02-07 21:09 - 2020-03-20 08:11 - 000000000 ____D C:\Users\zelle\AppData\Local\Ubisoft Game Launcher 2021-02-06 23:16 - 2021-01-01 20:16 - 000000000 ____D C:\ProgramData\Voicemod 2021-02-06 23:13 - 2019-12-23 19:17 - 000000000 ____D C:\Users\zelle\AppData\Local\D3DSCache 2021-02-06 22:58 - 2020-12-22 16:25 - 000000348 _____ C:\Windows\Tasks\WpsUpdateTask_zelle.job 2021-02-06 18:00 - 2019-12-26 15:19 - 000000000 ____D C:\Users\zelle\AppData\Roaming\obs-studio 2021-02-06 12:16 - 2020-07-27 21:22 - 000000000 ____D C:\ProgramData\Ableton 2021-02-06 10:35 - 2020-07-23 13:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-06 01:13 - 2019-12-22 21:30 - 000000000 ____D C:\Program Files (x86)\Steam 2021-02-05 22:38 - 2021-01-05 16:45 - 000000000 ____D C:\Users\zelle\AppData\Roaming\DS4Windows 2021-02-05 22:04 - 2019-12-22 19:28 - 000000000 ____D C:\ProgramData\Packages 2021-02-05 22:04 - 2019-12-22 19:24 - 000000000 ____D C:\Users\zelle\AppData\Local\PlaceholderTileLogoFolder 2021-02-05 18:28 - 2019-12-23 00:14 - 000000000 ____D C:\Program Files (x86)\Battle.net 2021-02-05 18:08 - 2020-03-18 15:25 - 000003302 _____ C:\Windows\system32\Tasks\WpsUpdateTask_zelle 2021-02-05 15:28 - 2019-12-22 19:26 - 000003588 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-02-05 15:28 - 2019-12-22 19:26 - 000003464 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-02-02 16:18 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports 2021-02-01 16:26 - 2020-10-21 13:59 - 000004166 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1603285188 2021-02-01 16:26 - 2020-10-21 13:59 - 000001438 _____ C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk 2021-01-30 14:46 - 2020-05-09 12:20 - 000000000 ____D C:\Users\zelle\Desktop\Blender 2021-01-29 16:57 - 2019-12-22 23:19 - 000000000 ____D C:\ProgramData\ASUS 2021-01-27 15:29 - 2019-12-29 11:23 - 000000000 ____D C:\Program Files (x86)\Origin 2021-01-27 12:17 - 2019-12-22 23:29 - 002797808 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2021-01-27 12:17 - 2019-12-22 23:29 - 002154224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2021-01-27 12:17 - 2019-12-22 23:29 - 001295088 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2021-01-25 19:31 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed 2021-01-25 04:38 - 2020-10-29 11:31 - 000070896 _____ C:\Windows\system32\FvSDK_x64.dll 2021-01-25 04:38 - 2020-10-29 11:31 - 000059632 _____ C:\Windows\SysWOW64\FvSDK_x86.dll 2021-01-21 18:38 - 2020-10-14 15:49 - 000000000 ____D C:\Users\zelle\AppData\Roaming\.tlauncher 2021-01-21 16:53 - 2019-12-22 23:21 - 000000000 ____D C:\Program Files\ASUS 2021-01-21 16:53 - 2019-12-22 23:21 - 000000000 ____D C:\Program Files (x86)\LightingService 2021-01-21 16:53 - 2019-12-22 23:19 - 000000000 ____D C:\Program Files (x86)\ASUS 2021-01-21 16:53 - 2019-12-22 23:13 - 000000000 ____D C:\ProgramData\Package Cache 2021-01-20 10:27 - 2020-11-02 12:55 - 000000128 _____ C:\Users\zelle\AppData\Roaming\winscp.rnd 2021-01-19 20:31 - 2020-07-23 13:30 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-01-19 20:31 - 2020-07-23 13:30 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-01-19 13:16 - 2020-11-16 16:39 - 000000000 ____D C:\Users\zelle\.lunarclient 2021-01-19 12:16 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Cursors 2021-01-18 21:46 - 2020-02-08 11:24 - 000000000 ____D C:\Users\zelle\AppData\Roaming\WhatsApp 2021-01-18 20:11 - 2020-02-08 11:24 - 000000000 ____D C:\Users\zelle\AppData\Local\WhatsApp 2021-01-18 20:10 - 2019-12-22 19:45 - 000000000 ____D C:\Users\zelle\AppData\Local\SquirrelTemp 2021-01-16 16:51 - 2019-12-22 21:35 - 000000000 ____D C:\Users\zelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-01-16 12:13 - 2020-01-02 15:53 - 000000000 ____D C:\Users\zelle\AppData\Local\lunarclient-updater 2021-01-16 10:40 - 2020-01-11 17:10 - 000000000 ____D C:\Users\zelle\AppData\Roaming\TS3Client 2021-01-15 19:35 - 2020-07-21 09:39 - 000000000 ____D C:\Users\zelle\AppData\Local\osu! 2021-01-15 09:32 - 2019-12-22 21:35 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher 2021-01-15 09:31 - 2019-12-22 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 2021-01-14 16:22 - 2019-12-30 12:43 - 000000000 ____D C:\Autodesk 2021-01-14 16:21 - 2020-08-25 09:52 - 000000000 ____D C:\Program Files\Epic Games 2021-01-14 16:20 - 2020-10-21 07:59 - 000000000 ____D C:\Program Files\Bonjour 2021-01-14 16:20 - 2020-07-27 22:28 - 000000000 ____D C:\Program Files\AZ-Launcher 2021-01-14 08:53 - 2019-12-22 19:23 - 000000000 ___RD C:\Users\zelle\3D Objects 2021-01-14 08:52 - 2019-12-23 02:16 - 000257992 _____ C:\Windows\system32\FNTCACHE.DAT 2021-01-13 21:54 - 2020-09-29 18:23 - 000000000 ____D C:\Windows\system32\Drivers\en-GB 2021-01-13 21:54 - 2019-03-19 13:04 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-01-13 21:54 - 2019-03-19 13:04 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-01-13 21:54 - 2019-03-19 13:04 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\F12 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\F12 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Com 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\setup 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\migwiz 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Com 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Provisioning 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\IME 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr 2021-01-13 21:54 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender 2021-01-13 19:30 - 2019-12-22 19:19 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2021-01-11 19:25 - 2020-03-14 15:03 - 000000000 ____D C:\Users\zelle\AppData\LocalLow\Mozilla 2021-01-11 17:26 - 2019-12-22 23:29 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2021-01-11 08:24 - 2020-10-08 14:36 - 000003920 _____ C:\Windows\system32\Tasks\BlueStacksHelper ==================== Fichiers à la racine de certains dossiers ======== 2020-01-29 21:09 - 2020-01-29 21:09 - 000001274 _____ () C:\Users\zelle\AppData\Roaming\AdobeWLCMR2Cache.dat 2020-06-07 22:12 - 2020-06-07 22:12 - 000000002 _____ () C:\Users\zelle\AppData\Roaming\ExplorerFavorites.txt 2020-04-24 09:25 - 2020-04-24 09:25 - 000284338 _____ () C:\Users\zelle\AppData\Roaming\skd_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt 2020-09-02 11:23 - 2021-02-10 12:23 - 000034926 _____ () C:\Users\zelle\AppData\Roaming\VoiceMeeterBananaDefault.xml 2020-02-07 17:17 - 2021-02-08 14:28 - 000004759 _____ () C:\Users\zelle\AppData\Roaming\VoiceMeeterDefault.xml 2020-11-02 12:55 - 2021-01-20 10:27 - 000000128 _____ () C:\Users\zelle\AppData\Roaming\winscp.rnd 2020-06-03 15:57 - 2020-06-03 15:57 - 000127343 _____ () C:\Users\zelle\AppData\Local\ars.cache 2020-06-03 15:57 - 2020-06-03 15:57 - 000476728 _____ () C:\Users\zelle\AppData\Local\census.cache 2020-06-03 15:42 - 2020-06-03 15:42 - 000000036 _____ () C:\Users\zelle\AppData\Local\housecall.guid.cache 2020-04-14 11:22 - 2020-04-14 11:22 - 000000734 _____ () C:\Users\zelle\AppData\Local\recently-used.xbel 2020-02-02 16:53 - 2021-02-08 15:10 - 000007604 _____ () C:\Users\zelle\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================