Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2021 Exécuté par Alexis (administrateur) sur PC-ALEX (MEDION H81H3-EM2) (07-05-2021 18:36:58) Exécuté depuis C:\Users\Alexis\Desktop Profils chargés: Alexis Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20> (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.925_none_e76d4f6f260a683e\TiWorker.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmoi.inf_amd64_b2eb69d768b8a0f9\Display.NvContainer\NVDisplay.Container.exe <2> (Razer Inc. -> ) C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353400 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [Fichier non signé] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [595616 2016-04-21] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2406496 2017-06-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation) HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [BitTorrent] => C:\Users\Alexis\AppData\Roaming\BitTorrent\BitTorrent.exe [1820400 2019-06-19] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [Discord] => C:\Users\Alexis\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32988128 2021-03-05] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-2873960962-3998399385-2269708360-1001\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited -> Windscribe Limited) HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [115592 2015-09-21] (pdfforge GmbH -> pdfforge GmbH) Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0B74B3C8-9A53-449D-9DA3-CE0E54055A10} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {0F74F20E-3797-4EC0-A05B-1A9299BCD7D5} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe Task: {13C2261D-2B6A-4F82-B19B-3F85FB3AE40E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {279ADC9F-EA47-4C26-9762-3343A5D6F3CC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {371C9F08-81B4-4134-99F0-2339D83C8301} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {41EA5410-FE35-47E3-B960-B27FFD19FF39} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {553AAFE8-2C42-4FAE-8063-823BD7360DC5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {55992A0A-B250-4422-B3ED-D696F3C86238} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {56D5E58F-7C1D-4491-9D45-14ADAA83923B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {57E23919-0966-44D1-8020-92ED61D364C5} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2873960962-3998399385-2269708360-1001 => C:\Users\Alexis\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {5A7FD901-0C06-4B4B-A12F-B6B053F65B2D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {64A8EF21-E207-4781-AEDC-84D933C99917} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {689DC5BD-0576-4F42-B5CE-AC40CB1F8987} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {69A92EC4-7E62-44F2-9FAA-A3815CFE1458} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {6B546FE6-744C-4EF0-B1C1-0B8F3BDDE4CF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6BF6D52B-D78C-4D5A-BA1B-6E8BF9BD6131} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-08] (Adobe Inc. -> Adobe) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6E324176-72B8-4BF1-B622-8139483C4F6B} - System32\Tasks\Microsoft LocalManager [2259630622] => C:\ProgramData\{28575402-2857-2857-285754024041}\csrss.exe <==== ATTENTION Task: {756C3EB0-0621-46D4-9CCB-67B120F1C440} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7EF30540-BDD7-417F-9AE7-279E41053F61} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8E1088C5-ABF9-4D6D-889D-783182FCB793} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {9E8CEA47-A54E-4FCC-B1C9-BC2C520139B5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A212375A-E20A-4AE2-80B3-8C47AFF93149} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {A6DD71C8-95C0-4FC8-8582-29ED8461377E} - System32\Tasks\Klallikuind => C:\ProgramData\Klallikuind\1.0.4.1\jruenfro.exe Task: {ADE78F9D-4E1D-45E9-88E0-8756F4212C4F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {CEB967C5-8F59-494F-9572-0FA79E6C6BF7} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-alexis.martin@outlook.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {D348795D-701C-4C4F-A539-3ABA0AC5EE4E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {D5A80A36-3718-4FC3-B32C-4072D5381204} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DC08EB87-E6DF-49BA-833E-03D98BB4F3AA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {E2B24643-84DC-4DA5-9DF8-7098A8308AF2} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {E33B852E-6AC6-4D11-94FD-228B4A4762C9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {E6ED3E3C-BBD6-4EEF-8F0F-E7D4EE1E8FF9} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3022416 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {EB19CADE-15C0-4080-9131-8C68B190BC81} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform) Task: {F2A88CFF-BA3A-4806-B71C-2E9DC3E92290} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {F9DBE266-F450-452E-A5E4-77F3D7750B20} - \WPD\SqmUpload_S-1-5-21-2873960962-3998399385-2269708360-1001 -> Pas de fichier <==== ATTENTION Task: {FDE8DA5A-3281-453A-88DF-18C18EEC0AE9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ProxyServer: [S-1-5-21-2873960962-3998399385-2269708360-1001] => 127.0.0.1 Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{5db4d183-f0f8-4a9d-9a03-f0524cd78a6d}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{646dc9f4-57c4-46f6-b00f-7d6289ec7419}: [DhcpNameServer] 80.10.46.232 Tcpip\..\Interfaces\{a1067cda-5ee2-4977-bf59-227a7d3718d7}: [DhcpNameServer] 172.20.10.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-2873960962-3998399385-2269708360-1001 -> Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Alexis\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-03] Edge HomePage: Default -> hxxp://www.surf-live.com/ Edge StartupUrls: Default -> "hxxp://www.surf-live.com/" Edge DefaultSearchURL: Default -> hxxp://www.surf-live.com/web?q={searchTerms} Edge DefaultSearchKeyword: Default -> surf-live.com FireFox: ======== FF DefaultProfile: wd8blbhc.default FF ProfilePath: C:\Users\Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\wd8blbhc.default [2021-04-27] FF user.js: detected! => C:\Users\Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\wd8blbhc.default\user.js [2019-07-11] FF HomepageOverride: Mozilla\Firefox\Profiles\wd8blbhc.default -> Enabled: homepage@mail.ru FF NewTabOverride: Mozilla\Firefox\Profiles\wd8blbhc.default -> Enabled: {a38384b3-2d1d-4f36-bc22-0f7ae402bcd7} FF NewTabOverride: Mozilla\Firefox\Profiles\wd8blbhc.default -> Enabled: search@mail.ru FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> ) FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> ) FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin HKU\S-1-5-21-2873960962-3998399385-2269708360-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Alexis\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-07-23] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-07-23] <==== ATTENTION Chrome: ======= CHR DefaultProfile: Default"},"rappor":{"cohort_seed":23,"last_daily_sample":"13140310546119692 CHR Profile: C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default [2021-05-07] CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.google.com/" CHR Extension: (Slides) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20] CHR Extension: (Docs) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20] CHR Extension: (Google Drive) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24] CHR Extension: (YouTube) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29] CHR Extension: (Recherche Google) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Sheets) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20] CHR Extension: (Google Docs hors connexion) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-26] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-02] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-30] CHR Profile: C:\Users\Alexis\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-26] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 ACT2_Service; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [1421216 2011-08-22] (Ashampoo GmbH & Co. KG -> ) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3374160 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3103824 2020-03-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-01-13] (BattlEye Innovations e.K. -> ) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [409456 2021-03-30] (NVIDIA Corporation -> NVIDIA) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-05-03] (Malwarebytes Inc -> Malwarebytes) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts) S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3445552 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [65176 2016-04-29] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] (Razer Inc. -> ) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1705088 2020-05-12] (Rockstar Games, Inc. -> Rockstar Games) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10091440 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-26] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoi.inf_amd64_b2eb69d768b8a0f9\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmoi.inf_amd64_b2eb69d768b8a0f9\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACT2PM; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys [15160 2011-06-10] (Ashampoo GmbH & Co. KG -> ) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-01-21] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-01-21] (Disc Soft Ltd -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-05-03] (Malwarebytes Inc -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-05-03] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-05-07] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-05-07] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-03] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-05-07] (Malwarebytes Inc -> Malwarebytes) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.) R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51224 2016-04-08] (Razer USA Ltd. -> Razer Inc) R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer Inc. -> Razer, Inc.) R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer Inc. -> Razer, Inc.) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [51400 2016-05-05] (SteelSeries ApS -> SteelSeries ApS) R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5782360 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421088 2021-04-26] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-26] (Microsoft Windows -> Microsoft Corporation) S3 hsstap; \SystemRoot\System32\drivers\hsstap.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-07 18:36 - 2021-05-07 18:38 - 000028589 _____ C:\Users\Alexis\Desktop\FRST.txt 2021-05-07 18:36 - 2021-05-07 18:37 - 000000000 ____D C:\FRST 2021-05-07 18:16 - 2021-05-07 18:16 - 002298368 _____ (Farbar) C:\Users\Alexis\Desktop\FRST64.exe 2021-05-07 18:13 - 2021-05-07 18:13 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-05-07 18:13 - 2021-05-07 18:13 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-05-07 18:13 - 2021-05-07 18:13 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-05-04 09:02 - 2021-05-04 09:02 - 000240551 _____ C:\Users\Alexis\Downloads\e_carte_carrefour_100eur_100095.pdf 2021-05-04 09:02 - 2021-05-04 09:02 - 000240549 _____ C:\Users\Alexis\Downloads\e_carte_carrefour_100eur_100092.pdf 2021-05-03 10:55 - 2021-05-03 10:55 - 000459878 _____ C:\Users\Alexis\Desktop\ZHPDiag.html 2021-05-03 10:48 - 2021-05-03 10:48 - 000014491 _____ C:\Users\Alexis\Desktop\Résumé antimalware.txt 2021-05-03 10:05 - 2021-05-03 10:05 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-05-03 10:05 - 2021-05-03 10:05 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-05-03 10:05 - 2021-05-03 10:05 - 000000000 ____D C:\Users\Alexis\AppData\Local\mbam 2021-05-03 10:04 - 2021-05-03 10:04 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-05-03 10:04 - 2021-05-03 10:04 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-05-03 10:04 - 2021-05-03 10:04 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-05-03 10:04 - 2021-05-03 10:04 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-05-03 10:03 - 2021-05-03 10:03 - 000000000 ____D C:\Program Files\Malwarebytes 2021-05-03 10:02 - 2021-05-03 10:02 - 002078632 _____ (Malwarebytes) C:\Users\Alexis\Desktop\MBSetup.exe 2021-05-03 10:01 - 2021-05-03 10:01 - 000005827 _____ C:\Users\Alexis\Desktop\AdwCleaner[C00].txt 2021-05-03 09:59 - 2021-05-03 10:01 - 000000000 ____D C:\AdwCleaner 2021-05-03 09:58 - 2021-05-03 09:58 - 008534696 _____ (Malwarebytes) C:\Users\Alexis\Desktop\adwcleaner_8.2.exe 2021-05-03 09:28 - 2021-05-03 09:28 - 000024062 _____ C:\Users\Alexis\Desktop\ZHPCleaner (R).html 2021-05-03 09:28 - 2021-05-03 09:28 - 000013356 _____ C:\Users\Alexis\Desktop\ZHPCleaner (R).txt 2021-05-03 09:18 - 2021-05-03 09:18 - 000029737 _____ C:\Users\Alexis\Desktop\ZHPCleaner (S).html 2021-05-03 09:18 - 2021-05-03 09:18 - 000017270 _____ C:\Users\Alexis\Desktop\ZHPCleaner (S).txt 2021-05-03 09:09 - 2021-05-03 09:09 - 003327128 _____ (Nicolas Coolman) C:\Users\Alexis\Downloads\ZHPCleaner.exe 2021-05-03 09:09 - 2021-05-03 09:09 - 000000880 _____ C:\Users\Alexis\Desktop\ZHPCleaner.lnk 2021-05-02 21:05 - 2021-05-03 10:55 - 000375291 _____ C:\Users\Alexis\Desktop\ZHPDiag.txt 2021-05-02 20:57 - 2021-05-03 10:55 - 000000000 ____D C:\Users\Alexis\AppData\Roaming\ZHP 2021-05-02 20:57 - 2021-05-03 09:09 - 000000000 ____D C:\Users\Alexis\AppData\Local\ZHP 2021-05-02 20:57 - 2021-05-02 20:57 - 000000870 _____ C:\Users\Alexis\Desktop\ZHPSuite.lnk 2021-05-02 20:56 - 2021-05-02 20:56 - 003468952 _____ (Nicolas Coolman) C:\Users\Alexis\Downloads\ZHPSuite.exe 2021-04-27 15:47 - 2021-04-27 15:47 - 000010787 _____ C:\Users\Alexis\Desktop\PB Ventilo .odt 2021-04-27 11:32 - 2021-04-27 11:32 - 000046687 _____ C:\Users\Alexis\Downloads\Periode 202012 - Matricule 20001971.pdf 2021-04-27 09:41 - 2021-04-27 09:41 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-04-27 09:40 - 2021-04-27 09:40 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-04-27 09:40 - 2021-04-27 09:40 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-04-26 17:36 - 2021-04-26 17:36 - 000000000 ____D C:\WINDOWS\system32\lxss 2021-04-26 17:32 - 2021-04-13 09:23 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-04-26 17:32 - 2021-04-13 09:23 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-04-26 17:32 - 2021-04-13 09:23 - 001452320 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-04-26 17:32 - 2021-04-13 09:23 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-04-26 17:32 - 2021-04-13 09:23 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-04-26 17:32 - 2021-04-13 09:23 - 001191712 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-04-26 17:32 - 2021-04-13 09:23 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-04-26 17:32 - 2021-04-13 09:23 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-04-26 17:32 - 2021-04-13 09:23 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-04-26 17:32 - 2021-04-13 09:23 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-04-26 17:32 - 2021-04-13 09:20 - 000715568 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-04-26 17:32 - 2021-04-13 09:20 - 000675120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-04-26 17:32 - 2021-04-13 09:20 - 000626976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-04-26 17:32 - 2021-04-13 09:20 - 000575776 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 002106136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 001590560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 001514800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 001166112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 000811800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 000689952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-04-26 17:32 - 2021-04-13 09:19 - 000656152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-04-26 17:32 - 2021-04-13 09:19 - 000564000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-04-26 17:32 - 2021-04-13 09:18 - 008317232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-04-26 17:32 - 2021-04-13 09:18 - 007434032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-04-26 17:32 - 2021-04-13 09:18 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-04-26 17:32 - 2021-04-13 09:18 - 002823472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-04-26 17:32 - 2021-04-13 09:18 - 000445728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-04-26 17:32 - 2021-04-13 09:16 - 000848664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-04-26 17:32 - 2021-04-13 09:15 - 006159160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-04-26 17:32 - 2021-04-13 02:03 - 000087164 _____ C:\WINDOWS\system32\nvinfo.pb 2021-04-26 17:18 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-07 18:35 - 2020-10-15 19:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-05-07 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-05-07 18:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-05-07 18:22 - 2019-10-06 00:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-05-07 18:22 - 2019-10-06 00:30 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData 2021-05-07 18:22 - 2015-07-24 14:58 - 000000000 ____D C:\Users\Alexis\AppData\Local\Adobe 2021-05-07 18:21 - 2019-12-13 14:50 - 000000000 ____D C:\Program Files\CCleaner 2021-05-07 18:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-05-07 18:21 - 2017-09-03 21:22 - 000000000 ____D C:\ProgramData\NVIDIA 2021-05-07 18:20 - 2020-06-15 10:40 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-05-07 18:15 - 2020-05-10 16:25 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2021-05-07 18:12 - 2020-10-15 19:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-05-07 18:12 - 2020-10-15 19:21 - 000008192 ___SH C:\DumpStack.log.tmp 2021-05-04 13:31 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-05-03 10:18 - 2015-06-15 20:45 - 000000290 __RSH C:\ProgramData\ntuser.pol 2021-05-03 10:04 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-05-03 10:04 - 2015-08-29 15:00 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-05-02 19:44 - 2020-10-05 15:27 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-05-02 19:41 - 2020-10-15 19:41 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-05-02 19:41 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat 2021-05-02 19:41 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat 2021-05-02 19:41 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-05-02 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-04-30 23:44 - 2020-10-15 19:27 - 000000000 ____D C:\Users\Alexis 2021-04-30 23:43 - 2015-06-13 20:09 - 000000000 ____D C:\Program Files (x86)\Steam 2021-04-30 22:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-04-27 22:13 - 2020-10-15 19:51 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-04-27 15:34 - 2018-07-29 18:16 - 000000000 ____D C:\Users\Alexis\AppData\Local\D3DSCache 2021-04-27 15:30 - 2020-10-15 19:22 - 005442472 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-04-27 15:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-04-27 09:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-04-27 09:39 - 2020-10-15 19:25 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-04-26 17:43 - 2016-06-10 15:15 - 000000000 ____D C:\Users\Alexis\AppData\Local\CrashDumps 2021-04-26 17:37 - 2015-06-13 20:01 - 000000000 ____D C:\Users\Alexis\AppData\Local\NVIDIA 2021-04-26 17:24 - 2017-09-03 21:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-04-26 17:21 - 2015-06-18 00:45 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-04-26 17:20 - 2020-10-15 19:51 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:20 - 2020-10-15 19:51 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:20 - 2020-06-08 14:27 - 000001451 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2021-04-26 17:19 - 2020-10-15 19:51 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2020-10-15 19:51 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2020-10-15 19:51 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2020-10-15 19:51 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2020-10-15 19:51 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2020-10-15 19:51 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:19 - 2017-09-03 21:21 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-04-26 17:19 - 2017-09-03 21:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-04-26 17:18 - 2020-10-15 19:51 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:18 - 2020-10-15 19:51 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-04-26 17:13 - 2014-04-24 18:12 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-04-26 17:12 - 2018-03-03 21:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-04-26 17:08 - 2020-10-16 13:58 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6a319e9b8824a 2021-04-26 17:08 - 2020-10-15 19:51 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-13 09:15 - 2020-07-14 00:12 - 007212232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-04-07 13:38 - 2020-06-08 14:27 - 002817904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2021-04-07 13:38 - 2020-06-08 14:27 - 002171760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2021-04-07 13:38 - 2020-06-08 14:27 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll ==================== Fichiers à la racine de certains dossiers ======== 2019-07-11 15:04 - 2019-07-12 11:36 - 000000004 _____ () C:\ProgramData\lock.dat 2019-07-11 15:04 - 2019-07-11 15:04 - 000000008 _____ () C:\ProgramData\ts.dat 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-console-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-datetime-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-debug-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-errorhandling-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000022208 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-file-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-file-l1-2-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-file-l2-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-handle-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-heap-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-interlocked-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-libraryloader-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000021184 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-localization-l1-2-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-memory-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-namedpipe-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019648 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-processenvironment-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000020672 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-processthreads-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-processthreads-l1-1-1.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018112 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-profile-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018112 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-string-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000020672 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-synch-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-synch-l1-2-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019648 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-sysinfo-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-timezone-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000018624 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-core-util-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019648 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-conio-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000022720 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-convert-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-environment-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000020672 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-filesystem-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019648 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-heap-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-locale-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000029376 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-math-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000026816 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-multibyte-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000073408 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-private-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019648 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-process-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000023232 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-runtime-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000024768 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-stdio-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000024768 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-string-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000021184 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-time-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000019136 _____ (Microsoft Corporation) C:\Program Files (x86)\api-ms-win-crt-utility-l1-1-0.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000324048 _____ (BugSplat, LLC) C:\Program Files (x86)\BsSndRpt.exe 2016-12-10 22:03 - 2016-12-10 21:56 - 000303568 _____ (BugSplat, LLC) C:\Program Files (x86)\BugSplat.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000199160 _____ (BugSplat, LLC) C:\Program Files (x86)\BugSplatRc.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000244544 _____ (Microsoft Corporation) C:\Program Files (x86)\concrt140.dll 2016-12-10 22:03 - 2016-12-10 21:56 - 000443712 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp140.dll 2016-12-10 22:03 - 2016-12-10 22:02 - 000020886 _____ () C:\Program Files (x86)\system.yaml 2016-12-10 22:03 - 2016-12-10 22:02 - 000921280 _____ (Microsoft Corporation) C:\Program Files (x86)\ucrtbase.dll 2016-12-10 22:03 - 2016-12-10 22:02 - 000085840 _____ (Microsoft Corporation) C:\Program Files (x86)\vcruntime140.dll 2015-12-27 15:26 - 2015-12-31 18:48 - 000000113 _____ () C:\Users\Alexis\AppData\Roaming\D2Info0 2015-12-27 15:26 - 2015-12-31 19:04 - 000000008 _____ () C:\Users\Alexis\AppData\Roaming\DofusAppId0_1 2015-12-28 19:29 - 2015-12-28 19:54 - 000000008 _____ () C:\Users\Alexis\AppData\Roaming\DofusAppId0_2 2015-07-14 14:41 - 2016-03-09 01:45 - 000000181 _____ () C:\Users\Alexis\AppData\Roaming\WB.CFG 2016-03-10 15:56 - 2016-03-14 17:42 - 000021504 _____ () C:\Users\Alexis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2018-10-12 20:50 - 2018-10-12 20:50 - 000000000 _____ () C:\Users\Alexis\AppData\Local\oobelibMkey.log 2016-07-24 11:52 - 2016-07-24 11:58 - 000007612 _____ () C:\Users\Alexis\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================