Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2021 Exécuté par Sacha (administrateur) sur DESKTOP-7M628TV (Gigabyte Technology Co., Ltd. B550M AORUS ELITE) (04-06-2021 09:06:58) Exécuté depuis C:\Users\Sacha\Downloads Profils chargés: Sacha Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\BakkesMod\BakkesMod.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Discord Inc. -> Discord Inc.) C:\Users\Sacha\AppData\Local\Discord\app-1.0.9002\Discord.exe <6> (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpn-browser-helper.exe (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe (EXPRSVPN LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <32> (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\plugins_nms.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Kristjan Skutta -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Sacha\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe <2> (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.170.48.15\OverwolfHelper.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.170.48.15\OverwolfHelper64.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.170.48.15\OverwolfBrowser.exe <4> (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (Overwolf Ltd -> Overwolf LTD) C:\Users\Sacha\AppData\Local\Overwolf\ProcessCache\0.170.48.15\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2> (Razer USA Ltd. -> THX) C:\Windows\System32\THXV2HSAService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <4> (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [370032 2021-04-26] (EXPRSVPN LLC -> ExpressVPN) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-05-19] (Valve -> Valve Corporation) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [Discord] => C:\Users\Sacha\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519040 2021-05-11] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144824 2021-05-20] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15886848 2021-01-05] () [Fichier non signé] HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [uTorrent] => C:\Users\Sacha\AppData\Roaming\uTorrent\uTorrent.exe [2132520 2021-05-11] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2020-11-23] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1747288 2021-05-18] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33223648 2021-06-03] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\...\MountPoints2: {2dc1a661-3430-11eb-bbe9-b42e99efede1} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519040 2021-05-11] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\Windows\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-05-29] (Google LLC -> Google LLC) Startup: C:\Users\Sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-11-22] ShortcutTarget: Twitch.lnk -> C:\Users\Sacha\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {199894E8-8DEC-4FDA-BA1A-94F34E5B994A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation) Task: {1F161E63-BB59-40C6-A7ED-B1D4B770745E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1F571EA1-4CAB-438F-B9E9-C99C17D14F98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation) Task: {23146079-289B-4864-BBE8-D2333DFF778D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2FBA743D-CDCF-47E8-8251-AF53340756BF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4755FC0F-30C8-4AF8-B625-0A9733E6E435} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Task: {484A677B-768D-471D-85DE-F166360454A0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {4C923D43-8035-4B11-B462-79CE4119AB25} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {63391835-D515-4E9F-B834-020B2E335C53} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7B22695C-CE33-418D-80E2-5A3CA0A25259} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2493272 2021-05-18] (Overwolf Ltd -> Overwolf LTD) Task: {7B4ED4AE-E318-41AB-B331-A7EA4A28047C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {88974C5A-8D23-43E8-84AB-174028DC49AD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3148067771-3152446861-2863593748-1002" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3148067771-3152446861-2863593748-500" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\Overwolf Updater Task" /ENABLE Task: {939DA41A-A3A7-47FE-AE5A-F707C7B71330} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {97839426-35BC-4B40-9873-0095596AC686} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Task: {9EAE81DB-A1B4-4099-8245-861F46B49447} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-17] (Google LLC -> Google LLC) Task: {AB7981D5-C4FE-4211-B060-17E0C58A40A4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B2429CC2-6D6F-4F88-827B-3E981739C319} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Task: {B32F4E18-D8AC-4D6E-AB6C-13CE315D0710} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-17] (Google LLC -> Google LLC) Task: {C4125774-39C2-4B48-A8BB-68F9B700B6FF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D210488F-F3E9-4F63-BEB8-E6005CE9232A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-29] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{07aa8312-3bf2-4f8e-bf0b-cf4c888e6b4e}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2e33ac3c-10c5-460d-9c45-8e76c6b7beef}: [NameServer] 10.66.0.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-04] Edge Extension: (ColorZilla) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2021-04-06] Edge Extension: (Star Wars Rogue One Wallpaper Starwars NewTab) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bpdidlmbcjblaicehaheeejkofpcmcln [2021-04-06] Edge Extension: (Avengers Infinity War Wallpaper Custom NewTab) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\clcnibciklidhdhddlggjbgfgjnogbek [2021-04-06] Edge Extension: (Email Finder) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\einnffiilpmgldkapbikhkeicohlaapj [2021-05-17] Edge Extension: (wanteeed) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-05-17] Edge Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fcbmiimfkmkkkffjlopcpdlgclncnknm [2021-04-06] Edge Extension: (ExpressVPN : proxy VPN pour une connexion Internet sécurisée) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2021-05-17] Edge Extension: (Xdebug helper) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ggnngifabofaddiejjeagbaebkejomen [2021-04-06] Edge Extension: (Dark Reader) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ifoakfbpdcdoeenechcleahebpibofpc [2021-05-17] Edge Extension: (Bankybee) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lgbpmnapngoemecbbkfocgcnmicoaofp [2021-04-06] Edge Extension: (Star Wars Wallpaper HD Custom Starwars NewTab) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mdbhfecnnipkcdjdnebgjnkmipfpdmlk [2021-04-06] Edge Extension: (Kameto Live) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpfbanlogiiedmdndkopbfjlbodlojfd [2021-04-06] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-05-17] Edge Extension: (Similar Sites - À la découverte de sites internet connexes) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\necpbmbhhdiplmfhmjicabdeighkndkn [2021-05-17] Edge Extension: (Game Of Thrones Wallpapers Custom GOT New Tab) - C:\Users\Sacha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pmhlmkffjggpegjfalceaojhjclhjbbc [2021-04-06] Edge HKU\S-1-5-21-3148067771-3152446861-2863593748-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default [2021-06-04] CHR Extension: (Slides) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-22] CHR Extension: (Bankybee) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ademeajfjdhnjabjbamofoppjoefikbl [2020-11-22] CHR Extension: (Kaspersky Protection) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-04] CHR Extension: (Docs) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-22] CHR Extension: (Google Drive) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-22] CHR Extension: (ColorZilla) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-11-22] CHR Extension: (YouTube) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-22] CHR Extension: (Xdebug helper) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eadndfjplgieldjbigjakmdgkmoaaaoc [2020-11-22] CHR Extension: (Dark Reader) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2021-05-29] CHR Extension: (Email Finder) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\einnffiilpmgldkapbikhkeicohlaapj [2021-04-26] CHR Extension: (wanteeed) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-06-03] CHR Extension: (Sheets) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-22] CHR Extension: (ExpressVPN : proxy VPN pour une connexion sécurisée) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2021-05-26] CHR Extension: (Color Picker Plus) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\flpfinegbpkablbeaaphkjcpeghmiiif [2021-04-19] CHR Extension: (Google Docs hors connexion) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-17] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-01] CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2021-06-03] CHR Extension: (Kameto Live) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpfbanlogiiedmdndkopbfjlbodlojfd [2020-11-22] CHR Extension: (Similar Sites - À la découverte de sites internet connexes) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\necpbmbhhdiplmfhmjicabdeighkndkn [2021-04-18] CHR Extension: (Iron Man-Material Design) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nekeenfmlfhgoaojceionblcpbbjmnpk [2020-11-22] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-22] CHR Extension: (Chrome Media Router) - C:\Users\Sacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-30] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030592 2020-11-23] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-04-04] (EasyAntiCheat Oy -> Epic Games, Inc) R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437104 2021-04-26] (EXPRSVPN LLC -> ExpressVPN) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [646520 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2547344 2021-05-20] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3487384 2021-05-20] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2493272 2021-05-18] (Overwolf Ltd -> Overwolf LTD) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-04-28] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [321560 2021-04-13] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-12-01] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294464 2021-05-12] (Razer USA Ltd. -> Razer Inc.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533808 2021-01-29] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 THXV2HSAService; C:\WINDOWS\System32\THXV2HSAService.exe [264664 2020-11-19] (Razer USA Ltd. -> THX) R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [514552 2020-11-22] (Kristjan Skutta -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-06-03] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-06-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-11-23] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-11-23] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [37024 2021-04-26] (ExprsVPN LLC -> ExpressVPN) R3 expressvpnwintun; C:\WINDOWS\System32\drivers\expressvpn-wintun.sys [38224 2020-11-27] (Express VPN International Ltd. -> ExpressVPN) S1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657176 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1400584 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-06-04] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R4 klkbdflt2; C:\WINDOWS\system32\DRIVERS\klkbdflt2.sys [88824 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) U0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-06-04] (Kaspersky Lab JSC -> AO Kaspersky Lab) U3 klupd_klif_arkmon_58F37976; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\58F379760B519E358F7C46FF4D7FB49E\klupd_klif_arkmon.sys [263888 2021-06-04] (Kaspersky Lab JSC -> AO Kaspersky Lab) U0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-06-04] (Kaspersky Lab JSC -> AO Kaspersky Lab) U3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-06-04] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0060; C:\WINDOWS\System32\drivers\RzDev_0060.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0216; C:\WINDOWS\System32\drivers\RzDev_0216.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0528; C:\WINDOWS\System32\drivers\RzDev_0528.sys [54112 2021-03-22] (Razer USA Ltd. -> Razer Inc) R3 sTHXV2VAD; C:\WINDOWS\System32\drivers\THXVAD2.sys [165776 2020-06-09] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider) R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [52904 2020-10-20] (ExprsVPN LLC -> The OpenVPN Project) R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2021-01-28] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-01-27] (Vincent Burel -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-06-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421112 2021-06-03] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-06-03] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-04 09:06 - 2021-06-04 09:07 - 000038029 _____ C:\Users\Sacha\Downloads\FRST.txt 2021-06-04 09:06 - 2021-06-04 09:07 - 000000000 ____D C:\FRST 2021-06-04 09:06 - 2021-06-04 09:06 - 002300416 _____ (Farbar) C:\Users\Sacha\Downloads\FRST64.exe 2021-06-04 09:05 - 2021-06-04 09:05 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2021-06-04 09:05 - 2021-06-04 09:05 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2021-06-04 09:05 - 2021-06-04 09:05 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2021-06-04 09:05 - 2021-06-04 09:05 - 000002176 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk 2021-06-04 09:05 - 2021-06-04 09:05 - 000002176 _____ C:\ProgramData\Desktop\Kaspersky Total Security.lnk 2021-06-04 09:05 - 2021-06-04 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security 2021-06-04 09:05 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2021-06-04 09:05 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2021-06-04 09:05 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2021-06-03 22:25 - 2021-06-04 09:05 - 000000000 ____D C:\Users\Sacha\AppData\LocalLow\uTorrent 2021-06-03 21:50 - 2021-06-03 21:50 - 000456735 _____ C:\Users\Sacha\Desktop\ZHPDiag.html 2021-06-03 21:45 - 2021-06-03 21:45 - 003469464 _____ (Nicolas Coolman) C:\Users\Sacha\Downloads\ZHPSuite.exe 2021-06-03 21:45 - 2021-06-03 21:45 - 000000865 _____ C:\Users\Sacha\Desktop\ZHPSuite.lnk 2021-06-03 21:42 - 2021-06-03 21:42 - 008534696 _____ (Malwarebytes) C:\Users\Sacha\Desktop\adwcleaner_8.2 (1).exe 2021-06-03 21:41 - 2021-06-03 21:41 - 000009669 _____ C:\Users\Sacha\Desktop\ZHPCleaner (R).html 2021-06-03 21:41 - 2021-06-03 21:41 - 000002862 _____ C:\Users\Sacha\Desktop\ZHPCleaner (R).txt 2021-06-03 21:39 - 2021-06-03 21:39 - 000009365 _____ C:\Users\Sacha\Desktop\ZHPCleaner (S).html 2021-06-03 21:39 - 2021-06-03 21:39 - 000002667 _____ C:\Users\Sacha\Desktop\ZHPCleaner (S).txt 2021-06-03 21:31 - 2021-06-03 21:31 - 003255448 _____ (Nicolas Coolman) C:\Users\Sacha\Downloads\ZHPCleaner.exe 2021-06-03 21:31 - 2021-06-03 21:31 - 000000875 _____ C:\Users\Sacha\Desktop\ZHPCleaner.lnk 2021-06-03 21:30 - 2021-06-03 21:30 - 003275416 _____ (Nicolas Coolman) C:\Users\Sacha\ZHPDiag3.exe 2021-06-03 20:45 - 2021-06-03 21:50 - 000373786 _____ C:\Users\Sacha\Desktop\ZHPDiag.txt 2021-06-03 20:42 - 2021-06-03 21:50 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\ZHP 2021-06-03 20:42 - 2021-06-03 21:45 - 000000000 ____D C:\Users\Sacha\AppData\Local\ZHP 2021-06-03 20:42 - 2021-06-03 21:30 - 000000865 _____ C:\Users\Sacha\Desktop\ZHPDiag.lnk 2021-06-03 20:42 - 2021-06-03 20:42 - 003275416 _____ (Nicolas Coolman) C:\Users\Sacha\Downloads\ZHPDiag3.exe 2021-06-03 20:41 - 2021-06-03 20:41 - 002771384 _____ (Kaspersky) C:\Users\Sacha\Downloads\kts21.3.10.391abfr_25782.exe 2021-06-03 19:52 - 2021-06-03 19:54 - 000000000 ____D C:\AdwCleaner 2021-06-03 19:52 - 2021-06-03 19:52 - 008534696 _____ (Malwarebytes) C:\Users\Sacha\Downloads\adwcleaner_8.2.exe 2021-06-03 16:38 - 2021-06-04 09:05 - 000000000 ____D C:\Program Files\Common Files\AV 2021-06-03 16:38 - 2021-06-04 09:05 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2021-06-03 16:38 - 2021-06-03 16:38 - 000001161 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk 2021-06-03 16:38 - 2021-06-03 16:38 - 000001161 _____ C:\ProgramData\Desktop\Kaspersky VPN.lnk 2021-06-03 16:38 - 2021-06-03 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN 2021-06-03 16:38 - 2021-06-03 16:38 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-06-03 16:31 - 2021-06-03 16:31 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2021-06-03 16:30 - 2021-06-03 16:30 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2021-06-03 16:24 - 2021-06-03 16:24 - 012076248 _____ (AVAST Software) C:\Users\Sacha\Downloads\avastclear.exe 2021-06-03 16:05 - 2021-06-03 16:05 - 002771384 _____ (Kaspersky) C:\Users\Sacha\Downloads\kts21.3.10.391abfr_25784 (1).exe 2021-06-03 16:04 - 2021-06-03 16:05 - 002771384 _____ (Kaspersky) C:\Users\Sacha\Downloads\kts21.3.10.391abfr_25784.exe 2021-06-01 17:35 - 2021-06-01 17:35 - 000126586 _____ C:\Users\Sacha\Downloads\HideBlizzard-v1.75.zip 2021-05-28 22:15 - 2021-05-28 22:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira 2021-05-28 22:07 - 2021-05-28 22:07 - 000000000 ____D C:\Users\Public\Security Sessions 2021-05-28 22:06 - 2021-05-28 22:06 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf 2021-05-28 22:05 - 2021-05-29 11:38 - 000000000 ____D C:\Program Files (x86)\Avira 2021-05-28 22:05 - 2021-05-28 22:16 - 000000000 ____D C:\ProgramData\Avira 2021-05-28 22:05 - 2021-05-28 22:07 - 000000000 ____D C:\Users\Sacha\AppData\Local\Avira 2021-05-28 22:05 - 2021-05-28 22:05 - 004585424 _____ (Avira Operations GmbH & Co. KG) C:\Users\Sacha\Downloads\avira_fr_sptl1_2034513513-1622232314__phpws-spotlighttrialoptions-test.exe 2021-05-28 13:41 - 2019-03-15 01:24 - 002951992 _____ (HP Inc.) C:\WINDOWS\system32\hpinkinsCC11.exe 2021-05-28 13:41 - 2019-03-15 01:24 - 000391992 _____ (HP Inc.) C:\WINDOWS\system32\hpinkstsCC11LM.dll 2021-05-28 13:41 - 2019-03-15 01:24 - 000327480 _____ (HP Inc.) C:\WINDOWS\system32\hpinkcoiCC11.dll 2021-05-28 13:35 - 2021-05-28 13:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP 2021-05-28 13:35 - 2021-05-28 13:35 - 000000000 ____D C:\Users\Sacha\AppData\Local\mbamtray 2021-05-28 13:35 - 2021-05-28 13:35 - 000000000 ____D C:\Program Files (x86)\Malwarebytes 2021-05-27 00:23 - 2021-05-27 00:23 - 020000308 _____ C:\Users\Sacha\Downloads\mb_bios_b550m-aorus-elite_f13h.zip 2021-05-24 21:59 - 2021-05-24 21:59 - 003550008 _____ C:\Users\Sacha\Downloads\ConventiondeStage_SachaAuboiron_signé_210520.pdf 2021-05-24 18:06 - 2021-05-24 18:06 - 113816080 _____ (warcraftlogs) C:\Users\Sacha\Downloads\Warcraft-Logs-Uploader-Setup-5.4.6.exe 2021-05-24 18:06 - 2021-05-24 18:06 - 000002523 _____ C:\Users\Sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft Logs Uploader.lnk 2021-05-24 18:06 - 2021-05-24 18:06 - 000002515 _____ C:\Users\Sacha\Desktop\Warcraft Logs Uploader.lnk 2021-05-24 12:16 - 2021-05-24 12:16 - 001410024 _____ (Overwolf Ltd.) C:\Users\Sacha\Downloads\Warcraft Logs Companion - Installer.exe 2021-05-23 14:28 - 2021-05-23 14:28 - 000002546 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk 2021-05-23 14:28 - 2021-05-23 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2021-05-21 11:31 - 2021-05-21 11:31 - 000176533 _____ C:\Users\Sacha\Downloads\Bagnon-9.0.6-9.0.5.zip 2021-05-19 00:59 - 2021-05-19 00:59 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-05-19 00:58 - 2021-05-13 12:38 - 000037656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-05-19 00:10 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-05-19 00:10 - 2021-05-13 20:22 - 001453360 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-05-19 00:10 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-05-19 00:10 - 2021-05-13 20:22 - 001192752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-05-19 00:10 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 001514800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 001166112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 000715544 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 000675104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 000626968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 000575768 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-05-19 00:10 - 2021-05-13 20:19 - 000564000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-05-19 00:10 - 2021-05-13 20:18 - 002106144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-05-19 00:10 - 2021-05-13 20:18 - 001590576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-05-19 00:10 - 2021-05-13 20:18 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-05-19 00:10 - 2021-05-13 20:18 - 000689952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-05-19 00:10 - 2021-05-13 20:18 - 000656176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-05-19 00:10 - 2021-05-13 20:18 - 000445744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-05-19 00:10 - 2021-05-13 20:17 - 008317232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-05-19 00:10 - 2021-05-13 20:17 - 007434032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-05-19 00:10 - 2021-05-13 20:17 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-05-19 00:10 - 2021-05-13 20:17 - 002823472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-05-19 00:10 - 2021-05-13 20:16 - 000848688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-05-19 00:10 - 2021-05-13 20:15 - 006159152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-05-19 00:10 - 2021-05-13 12:38 - 000087164 _____ C:\WINDOWS\system32\nvinfo.pb 2021-05-17 18:58 - 2021-06-03 16:22 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-05-17 18:58 - 2021-06-03 16:22 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-05-17 18:58 - 2021-05-29 00:02 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-05-17 18:58 - 2021-05-29 00:02 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-05-17 18:58 - 2021-05-29 00:02 - 000002204 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2021-05-17 18:58 - 2021-05-17 18:58 - 001310832 _____ (Google LLC) C:\Users\Sacha\Downloads\ChromeSetup.exe 2021-05-17 18:58 - 2021-05-17 18:58 - 000000000 ____D C:\Program Files\Google 2021-05-17 18:15 - 2021-05-17 18:15 - 000000000 ____D C:\Users\Sacha\Downloads\Malwarebytes PREMIUM 3.7.1.2839-Repack [Win FR] 2021-05-17 18:14 - 2021-05-17 18:15 - 000000000 ____D C:\Users\Sacha\Downloads\One Piece S06 MULTI WebDl1080p x264 - Chris44 2021-05-17 18:14 - 2021-05-17 18:15 - 000000000 ____D C:\Users\Sacha\Downloads\One Piece S05 MULTI WebDl 1080p x264 - Chris44 2021-05-17 18:14 - 2021-05-17 18:14 - 000019970 _____ C:\Users\Sacha\Downloads\Malwarebytes PREMIUM 3.7.1.2839-Repack [Win FR].torrent 2021-05-17 18:14 - 2021-05-17 18:14 - 000000000 ____D C:\Users\Sacha\Downloads\Star.Wars.The.Bad.Batch.S01E02.MULTi.1080p.WEB.DDP5.1.H264-FRATERNiTY 2021-05-17 18:14 - 2021-05-17 18:14 - 000000000 ____D C:\Users\Sacha\Downloads\Star.Wars.The.Bad.Batch.S01E01.MULTi.1080p.WEB.DDP5.1.H264-FRATERNiTY 2021-05-17 17:37 - 2021-05-17 17:37 - 002078632 _____ (Malwarebytes) C:\Users\Sacha\Downloads\MBSetup.exe 2021-05-17 17:37 - 2021-05-17 17:37 - 000000000 ____D C:\Users\Sacha\AppData\Local\mbam 2021-05-17 17:17 - 2021-05-17 17:17 - 000026035 _____ C:\Users\Sacha\Downloads\lifecraft.zip 2021-05-16 22:01 - 2021-05-16 22:01 - 000331576 _____ C:\Users\Sacha\Downloads\ConventiondeStage_SachaAuboiron_signé.pdf 2021-05-12 18:08 - 2021-05-12 18:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-05-12 18:08 - 2021-05-12 18:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-05-12 18:08 - 2021-05-12 18:08 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-05-12 18:08 - 2021-05-12 18:08 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-05-12 18:08 - 2021-05-12 18:08 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-05-12 18:08 - 2021-05-12 18:08 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-05-12 18:08 - 2021-05-12 18:08 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-05-12 18:08 - 2021-05-12 18:08 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-05-12 18:08 - 2021-05-12 18:08 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-05-12 18:08 - 2021-05-12 18:08 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll 2021-05-12 18:08 - 2021-05-12 18:08 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2021-05-12 18:08 - 2021-05-12 18:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-05-12 18:08 - 2021-05-12 18:08 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-05-12 18:08 - 2021-05-12 18:08 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-05-11 15:14 - 2021-05-11 15:14 - 002954735 _____ C:\Users\Sacha\Downloads\Introductory_Statements (1).pdf 2021-05-11 14:09 - 2021-05-11 14:09 - 000235387 _____ C:\Users\Sacha\Downloads\Writing a Summary.pdf 2021-05-11 14:08 - 2021-05-11 14:08 - 002954735 _____ C:\Users\Sacha\Downloads\Introductory_Statements.pdf 2021-05-11 13:47 - 2021-05-11 13:47 - 000097280 _____ C:\Users\Sacha\Downloads\Plartiels_24_XPA (8).pdf 2021-05-10 11:02 - 2021-05-10 11:02 - 001975302 _____ C:\Users\Sacha\Downloads\Anglais.pptx 2021-05-09 13:48 - 2021-05-09 11:45 - 000795720 _____ C:\Users\Sacha\Downloads\CI AUBOIRON Sacha recto.pdf 2021-05-09 13:48 - 2021-05-09 11:45 - 000106320 _____ C:\Users\Sacha\Downloads\Carte vitale AUBOIRON recto.pdf 2021-05-09 13:48 - 2021-05-09 11:45 - 000101972 _____ C:\Users\Sacha\Downloads\Carte vitale AUBOIRON Verso.pdf 2021-05-09 13:45 - 2021-05-09 13:45 - 000613791 _____ C:\Users\Sacha\Downloads\archive.zip 2021-05-09 13:45 - 2021-05-09 13:45 - 000069024 _____ C:\Users\Sacha\Downloads\RIB_00507_075562G.pdf 2021-05-09 13:01 - 2021-05-09 13:01 - 000163291 _____ C:\Users\Sacha\Downloads\ORAL_MR_LINSBERG.pdf 2021-05-08 02:34 - 2021-05-08 02:34 - 000097280 _____ C:\Users\Sacha\Downloads\Plartiels_24_XPA (7).pdf 2021-05-07 17:06 - 2021-05-07 17:06 - 000972443 _____ C:\Users\Sacha\Downloads\Partiel_Biomutant_LOR_Kelly.odt 2021-05-07 13:08 - 2021-05-07 13:08 - 001132905 _____ C:\Users\Sacha\Downloads\iloveimg-resized.zip 2021-05-07 01:16 - 2021-05-07 01:16 - 000097280 _____ C:\Users\Sacha\Downloads\Plartiels_24_XPA (6).pdf 2021-05-07 01:13 - 2021-05-07 01:13 - 000130940 _____ C:\Users\Sacha\Downloads\ORAL_MR_LISOZZI.pdf 2021-05-06 21:28 - 2021-05-06 21:28 - 000000000 ____D C:\Users\Sacha\AppData\Local\Rocket League 2021-05-06 09:52 - 2021-05-06 09:52 - 000000000 ____D C:\Users\Sacha\Desktop\Tina 2021-05-06 00:29 - 2021-05-06 00:29 - 000097280 _____ C:\Users\Sacha\Downloads\Plartiels_24_XPA (5).pdf 2021-05-05 08:57 - 2021-05-05 08:57 - 000164960 _____ C:\Users\Sacha\Downloads\ORAL_MME_ROY (1).pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-04 09:08 - 2020-11-22 14:23 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\discord 2021-06-04 09:08 - 2020-11-22 14:23 - 000000000 ____D C:\Users\Sacha\AppData\Local\Discord 2021-06-04 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-04 09:05 - 2020-11-22 16:36 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\uTorrent 2021-06-04 09:05 - 2020-11-22 15:54 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\Twitch 2021-06-04 09:05 - 2020-11-22 14:51 - 000000000 ____D C:\ProgramData\Origin 2021-06-04 09:05 - 2020-11-22 14:17 - 000000000 ____D C:\Program Files (x86)\Steam 2021-06-04 09:05 - 2020-11-22 14:07 - 000000000 ____D C:\ProgramData\NVIDIA 2021-06-04 09:05 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-06-04 09:05 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-06-04 09:05 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-06-04 09:04 - 2020-12-07 00:36 - 000002176 _____ C:\Users\Sacha\Desktop\CurseForge.lnk 2021-06-04 09:04 - 2020-12-07 00:35 - 000000000 ____D C:\Users\Sacha\AppData\Local\Overwolf 2021-06-04 09:04 - 2020-11-22 14:51 - 000000000 ____D C:\Users\Sacha\AppData\Local\Origin 2021-06-04 01:30 - 2020-11-23 02:12 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\vlc 2021-06-04 00:52 - 2020-11-22 14:39 - 000000000 ____D C:\Users\Sacha\AppData\Local\Battle.net 2021-06-03 22:31 - 2021-03-14 04:15 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-03 22:31 - 2019-12-07 16:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat 2021-06-03 22:31 - 2019-12-07 16:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat 2021-06-03 22:27 - 2020-11-22 15:53 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-06-03 22:27 - 2020-11-22 14:15 - 000000000 ____D C:\Users\Sacha\AppData\Local\CrashDumps 2021-06-03 22:24 - 2021-03-14 04:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-06-03 22:24 - 2021-03-14 04:05 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-03 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-06-03 22:19 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-06-03 21:30 - 2021-03-14 03:53 - 000000000 ____D C:\Users\Sacha 2021-06-03 20:52 - 2020-03-29 00:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-06-03 16:38 - 2020-11-22 16:35 - 000000000 ____D C:\Users\Sacha\AppData\Local\BitTorrentHelper 2021-06-03 16:36 - 2020-11-23 16:30 - 000000000 ____D C:\ProgramData\Avast Software 2021-06-03 16:22 - 2021-03-14 04:10 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-06-03 16:22 - 2021-03-14 04:10 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-06-03 16:22 - 2021-03-14 04:10 - 000003244 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task 2021-06-03 16:22 - 2021-03-14 04:10 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 16:22 - 2021-03-14 04:10 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3148067771-3152446861-2863593748-1002 2021-06-03 16:22 - 2021-03-14 04:10 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3148067771-3152446861-2863593748-500 2021-06-03 16:22 - 2021-03-14 04:10 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-06-03 15:58 - 2021-03-14 04:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2021-06-03 15:58 - 2020-11-22 14:19 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-06-03 14:28 - 2021-03-14 04:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-06-03 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-06-02 20:13 - 2020-11-22 14:51 - 000000000 ____D C:\Program Files (x86)\Origin 2021-06-01 22:42 - 2020-11-22 14:32 - 000000000 ____D C:\Users\Sacha\Desktop\Rkde 2021-06-01 22:38 - 2020-11-22 14:52 - 000000000 ____D C:\ProgramData\Riot Games 2021-05-31 14:54 - 2020-12-07 00:36 - 000000000 ____D C:\Program Files (x86)\Overwolf 2021-05-31 08:43 - 2020-11-22 14:51 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\Origin 2021-05-30 11:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-05-29 11:41 - 2020-11-23 00:34 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-05-29 11:38 - 2021-03-14 04:05 - 000438160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-05-29 02:18 - 2020-03-29 00:31 - 000000000 ____D C:\Program Files\Microsoft Office 2021-05-29 02:18 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-05-28 09:23 - 2020-11-22 13:59 - 000000000 ____D C:\ProgramData\Razer 2021-05-28 08:58 - 2020-11-22 14:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2021-05-28 08:57 - 2020-11-22 14:16 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK 2021-05-28 08:55 - 2020-11-22 14:52 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-05-27 10:07 - 2020-11-22 14:38 - 000000000 ____D C:\Program Files (x86)\Battle.net 2021-05-26 21:08 - 2020-11-22 14:51 - 000000000 ____D C:\Users\Sacha\AppData\Local\D3DSCache 2021-05-26 18:17 - 2020-11-22 14:24 - 000002231 _____ C:\Users\Sacha\Desktop\Discord.lnk 2021-05-24 22:10 - 2020-11-22 14:01 - 000000000 ____D C:\Users\Sacha\AppData\Local\Packages 2021-05-24 21:52 - 2021-02-17 17:30 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\warcraftlogs 2021-05-24 21:41 - 2021-03-14 03:53 - 000002405 _____ C:\Users\Sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-05-24 21:41 - 2020-11-22 14:02 - 000000000 ___RD C:\Users\Sacha\OneDrive 2021-05-24 18:05 - 2020-12-07 00:36 - 000000000 ____D C:\Users\Sacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2021-05-24 12:14 - 2021-02-17 17:30 - 000000000 ____D C:\Users\Sacha\AppData\Local\warcraftlogs-updater 2021-05-23 14:28 - 2020-03-29 00:32 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-05-23 14:28 - 2020-03-29 00:32 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-05-23 14:28 - 2020-03-29 00:32 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-05-23 14:28 - 2020-03-29 00:32 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-05-23 14:28 - 2020-03-29 00:32 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-05-23 14:28 - 2020-03-29 00:32 - 000002395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2021-05-19 00:59 - 2020-11-22 14:07 - 000000000 ____D C:\Users\Sacha\AppData\Local\NVIDIA 2021-05-18 11:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-05-17 18:58 - 2020-11-22 14:03 - 000000000 ____D C:\Program Files (x86)\Google 2021-05-17 16:58 - 2021-01-07 11:01 - 000000000 ____D C:\ProgramData\boost_interprocess 2021-05-16 21:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-05-13 20:15 - 2021-03-01 01:47 - 007212224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-05-13 12:38 - 2021-03-01 01:47 - 000136472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2021-05-13 00:24 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-05-13 00:24 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-05-13 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-05-12 22:11 - 2020-11-22 14:32 - 000000021 _____ C:\Users\Sacha\Desktop\Email.txt 2021-05-12 18:09 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-05-12 18:04 - 2020-11-23 01:23 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-05-12 18:03 - 2020-11-23 01:23 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-05-08 17:43 - 2021-05-03 12:00 - 000000262 _____ C:\Users\Sacha\Desktop\Bis.txt ==================== Fichiers à la racine de certains dossiers ======== 2021-06-03 21:30 - 2021-06-03 21:30 - 003275416 _____ (Nicolas Coolman) C:\Users\Sacha\ZHPDiag3.exe 2021-01-28 14:08 - 2021-01-28 14:14 - 000034845 _____ () C:\Users\Sacha\AppData\Roaming\VoiceMeeterBananaDefault.xml 2021-01-27 14:09 - 2021-01-28 14:08 - 000004689 _____ () C:\Users\Sacha\AppData\Roaming\VoiceMeeterDefault.xml ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================