Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-08-2021 Exécuté par Gaven (administrateur) sur DESKTOP-3DTFE57 (Micro-Star International Co., Ltd MS-7C02) (03-08-2021 14:52:44) Exécuté depuis C:\Users\Gaven\Downloads Profils chargés: Gaven Platform: Windows 10 Pro Version 20H2 19042.1110 (X64) Langue: Français (France) Navigateur par défaut: "C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Application\chrome.exe" -- "%1" Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\AionCLC\AION_CLASSIC\bin64\CEF\aioncefprocess.exe <3> (1ncrivel Sistemas LTDA -> ) C:\Windows\System32\service.notification.center.exe (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe (Discord Inc. -> Discord Inc.) C:\Users\Gaven\AppData\Local\Discord\app-1.0.9002\Discord.exe <6> (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Google LLC -> Google LLC) C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Application\chrome.exe <50> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe (NCSOFT Corporation -> NCsoft) C:\Program Files (x86)\AionCLC\AION_CLASSIC\bin64\Aion.bin (NCSOFT Corporation -> NCSOFT) C:\Program Files (x86)\NCSOFT\NC Launcher 2\NCLauncher2.exe (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Gaven\AppData\Local\Temp\Rar$EXa35748.17496\ZHPSuite.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\NVDisplay.Container.exe <2> (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2> (Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ec5ad85a0fbc74ea\RtkAudUService64.exe <2> (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe (SKOWSAND SERVICOS DE PROVEDORES E INTERNET LTDA -> ) C:\Program Files (x86)\ExitLag\ExitLag.exe (The CefSharp Authors) [Fichier non signé] C:\Program Files (x86)\NCSOFT\NC Launcher 2\CefSharp.BrowserSubprocess.exe <2> (win.rar GmbH -> Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [436896 2021-03-18] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ec5ad85a0fbc74ea\RtkAudUService64.exe [1212720 2020-12-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [267072 2021-06-02] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] HKLM-x32\...\Run: [Creative.SBCommand] => C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe [199168 2021-05-21] (Creative Technology Ltd) [Fichier non signé] HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [Discord] => C:\Users\Gaven\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145504 2020-11-20] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation) HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-10-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [GoogleChrome] => "C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Application\chrome.exe" HKU\S-1-5-21-1422097259-3417940710-2170496950-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519608 2021-07-26] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-18\...\Run: [] => [X] HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519608 2021-07-26] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05ADDE60-2589-4A30-880C-DAD19C096B05} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {094C5033-5340-42D6-AEC0-692C9B4FE1D8} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) Task: {0B4F3696-7748-4C58-96C7-A7144A5D54ED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0D53526B-2687-4132-9DE1-C5A53D344C78} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {29A143FE-DA43-4756-AFCD-CBBE2D70B015} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113992 2021-07-29] (Microsoft Corporation -> Microsoft Corporation) Task: {2B5AA20B-B4F4-4D70-8B37-013C8742A426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-09] (Google LLC -> Google LLC) Task: {2E3C03F8-3DBD-4D2D-9ED7-58E430620746} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4282288 2021-07-29] (Microsoft Corporation -> Microsoft Corporation) Task: {3396A01C-BD7F-4282-AFA0-CBD23A526AD6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe Task: {375FC093-127B-4941-8C9F-CFDB0B82456D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {51E1376E-1B2E-4258-A65C-2AAE88BE6DED} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {53DA022D-61A2-4163-ACE1-C8F9470F4A4D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {66F0D78F-5CDC-4236-B625-523BBA9D8999} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4282288 2021-07-29] (Microsoft Corporation -> Microsoft Corporation) Task: {7CE3BD8E-BEBB-4252-8D94-DA1E46799678} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253376 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) Task: {80B4F0B0-AC3E-4CEE-9E25-017CFD3579CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {838D70C1-C19C-44F9-9E72-D4C04D02C951} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {9680C5E9-929B-46EE-9365-2A023046A7BE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {96A6BF71-7BC4-4C87-9ED2-14EB139AF207} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {A0DB259A-7521-46CA-AB82-002EE1A7CD5C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113992 2021-07-29] (Microsoft Corporation -> Microsoft Corporation) Task: {A3D07FB3-D3F0-4893-A0E6-967EBB029005} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C05D1712-B1BF-4240-AF01-A6DC07830DBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253376 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) Task: {C98D537E-52A7-43DC-8FFB-9710EA25D80D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-09] (Google LLC -> Google LLC) Task: {CA1AEE79-BE5B-4993-AECA-CE465BD110DE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DE48DBFA-336B-4C2B-938C-2C38BE62511F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EDAAEE83-83EF-433E-8870-88A7F26301AE} - System32\Tasks\Notification Center => C:\ProgramData\Notification Center\service.notification.updater.exe [489992 2020-04-28] (1ncrivel Sistemas LTDA -> ) Task: {F0F7B0C0-0B38-46B4-BE01-837D4AD70C59} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-09-30] (Mozilla Corporation -> Mozilla Foundation) Task: {F859CC98-246A-43DF-8F31-21682BDAD27E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b8c5877b-a2da-4158-8f57-1760d2677181}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Gaven\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-03] FireFox: ======== FF DefaultProfile: 5im4g6za.default FF ProfilePath: C:\Users\Gaven\AppData\Roaming\Mozilla\Firefox\Profiles\5im4g6za.default [2020-10-06] FF ProfilePath: C:\Users\Gaven\AppData\Roaming\Mozilla\Firefox\Profiles\wukb9l5q.default-release [2021-07-15] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default [2021-08-03] CHR Extension: (Google Traduction) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-02-16] CHR Extension: (Slides) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-09] CHR Extension: (Docs) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-09] CHR Extension: (Google Drive) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22] CHR Extension: (YouTube) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-09] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-07-28] CHR Extension: (Adobe Acrobat) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-11] CHR Extension: (Sheets) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-09] CHR Extension: (Google Docs hors connexion) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24] CHR Extension: (EPUBReader) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhhclmfgfllimlhabjkgkeebkbiadflb [2020-10-11] CHR Extension: (Violentmonkey) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\jinjaccalgkegednnccohejagnlnfdag [2021-05-04] CHR Extension: (EPUB READER) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbcgbbpomkkndfbpiepjimakkbocjgkh [2021-06-06] CHR Extension: (MetaMask) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2021-07-30] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\Gaven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-05] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9141648 2021-07-21] (Microsoft Corporation -> Microsoft Corporation) R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616368 2021-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [456352 2021-03-18] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairMsiPluginService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe [452768 2021-03-18] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [80544 2021-03-18] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [458240 2020-03-12] (Creative Technology Ltd) [Fichier non signé] S2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [133080 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) S2 MBAMService; C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37504 2016-12-07] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2522424 2020-11-20] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476800 2020-11-20] (Electronic Arts, Inc. -> Electronic Arts) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-04-28] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [321560 2021-04-13] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-03-22] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-07-25] (Razer USA Ltd. -> Razer Inc.) R2 RunSwUSB; C:\Windows\runSW.exe [59232 2018-05-02] (Realtek Semiconductor Corp. -> ) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533808 2021-01-29] (Razer USA Ltd. -> Razer Inc.) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [291320 2021-06-02] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5395384 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60336 2021-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-07-23] (CPUID S.A.R.L.U. -> CPUID) R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1090416 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd) R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [53616 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-09-05] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-09-05] (AVB Disc Soft, SIA -> Disc Soft Ltd) R0 envirtahci; C:\WINDOWS\System32\drivers\envirtahci.sys [799808 2018-12-18] (Enmotus Inc. -> AMD) S3 hidusbf; C:\WINDOWS\system32\DRIVERS\hidusbf.sys [25288 2016-04-17] (Jeshua Starr Scully -> SweetLow) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MpKslf7ded3d6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{63D52C70-99C3-4C2D-8C09-90E23556F585}\MpKslDrv.sys [107752 2021-08-02] (Microsoft Windows -> Microsoft Corporation) S3 MUDWFP; C:\WINDOWS\system32\DRIVERS\MUDWFP.sys [40368 2020-10-24] (Mudfish Networks -> ) R1 ndextlag; C:\WINDOWS\system32\DRIVERS\ndextlag.sys [48640 2018-04-11] (Mainline Net Holdings Limited -> SKOWSAND SERVICOS DE PROVEDORES E INTERNET LTDA - ME) R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrd.sys [50728 2019-07-04] (Whimsters Limited -> NT Kernel Resources) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_008f; C:\WINDOWS\System32\drivers\RzDev_008f.sys [55376 2021-01-21] (Razer USA Ltd. -> Razer Inc) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2020-02-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174016 2020-04-09] (Oracle Corporation -> Oracle Corporation) R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-15] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2021-05-11] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 PRProt; \??\C:\Users\Gaven\AppData\Local\Temp\ActiveAnticheat\1223465\active64.sys [X] <==== ATTENTION ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-03 14:52 - 2021-08-03 14:53 - 000030930 _____ C:\Users\Gaven\Downloads\FRST.txt 2021-08-03 14:48 - 2021-08-03 14:53 - 000000000 ____D C:\FRST 2021-08-03 14:47 - 2021-08-03 14:47 - 002300416 _____ (Farbar) C:\Users\Gaven\Downloads\FRST64.exe 2021-08-03 14:42 - 2021-08-03 14:42 - 000000865 _____ C:\Users\Gaven\Desktop\ZHPSuite.lnk 2021-08-03 14:41 - 2021-08-03 14:41 - 003017839 _____ C:\Users\Gaven\Downloads\ZHPSuite.zip 2021-07-29 12:11 - 2021-07-29 12:10 - 002220150 _____ C:\Users\Gaven\Documents\Logs.zip 2021-07-29 12:07 - 2021-07-29 12:11 - 008806815 _____ C:\Users\Gaven\Downloads\Diagnostic__v1.0.19.0_.zip 2021-07-28 13:24 - 2021-07-28 13:24 - 000031082 _____ C:\Users\Gaven\Downloads\Scanned from a Xerox Multifunction Printer (84).pdf 2021-07-21 19:36 - 2021-07-21 19:36 - 000121388 _____ C:\Users\Gaven\Downloads\invoice.pdf 2021-07-21 18:46 - 2021-07-21 18:46 - 000000000 ____D C:\Program Files (x86)\AMD 2021-07-21 18:45 - 2021-07-21 18:45 - 052742584 _____ (Advanced Micro Devices, Inc.) C:\Users\Gaven\Downloads\AMD_Chipset_Software_win10_2.17.25.506.exe 2021-07-21 18:45 - 2021-07-21 18:45 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\AMD 2021-07-21 18:45 - 2021-07-21 18:45 - 000000000 ____D C:\Users\Gaven\AppData\Local\setup 2021-07-21 18:44 - 2021-07-21 18:46 - 000000000 ____D C:\AMD 2021-07-21 18:43 - 2021-07-21 18:44 - 052231816 _____ (AMD Inc.) C:\Users\Gaven\Downloads\amd-catalyst-15.7.1-sb-sata-ahci-win10-win8.1-win7.exe 2021-07-21 18:43 - 2021-07-21 18:43 - 000000000 ____D C:\Program Files (x86)\Realtek 2021-07-21 18:43 - 2020-12-16 18:08 - 005994080 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2021-07-21 18:43 - 2020-12-16 17:57 - 043517749 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2021-07-21 18:42 - 2021-07-21 18:43 - 000000000 ___HD C:\Program Files (x86)\Temp 2021-07-21 18:42 - 2019-12-19 09:07 - 002877104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll 2021-07-21 18:41 - 2021-07-21 18:41 - 020425326 _____ C:\Users\Gaven\Downloads\9084_hda_uad_win10_rs4_rs5_19h1_20h1_x64_whql_svid_1462(33846).7z 2021-07-21 18:40 - 2021-07-21 18:40 - 000000000 ____D C:\Users\Public\Documents\Creative 2021-07-21 18:40 - 2021-07-21 18:40 - 000000000 ____D C:\Users\Gaven\AppData\Local\Creative_Technology_Ltd 2021-07-21 18:40 - 2021-07-21 18:40 - 000000000 ____D C:\Users\Gaven\AppData\Local\Creative 2021-07-21 18:38 - 2021-07-21 18:38 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll 2021-07-21 18:38 - 2021-07-21 18:38 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll 2021-07-21 18:38 - 2021-07-21 18:38 - 000123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll 2021-07-21 18:38 - 2021-07-21 18:38 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll 2021-07-21 18:38 - 2019-05-14 10:00 - 001942528 ____N (Creative) C:\WINDOWS\SysWOW64\Sens_oal.dll 2021-07-21 18:37 - 2021-07-23 21:08 - 000001368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sound Blaster Command.lnk 2021-07-21 18:37 - 2021-07-23 21:08 - 000001356 _____ C:\Users\Public\Desktop\Sound Blaster Command.lnk 2021-07-21 18:36 - 2021-07-21 18:37 - 147000856 _____ (Creative Technology Ltd. ) C:\Users\Gaven\Downloads\SBZMasterInstaller_3.4.98.00.exe 2021-07-21 18:35 - 2021-07-21 18:35 - 001624440 _____ (Tous Les Drivers) C:\Users\Gaven\Downloads\Mes_Drivers_3.0.4 (3).exe 2021-07-21 18:31 - 2021-07-21 18:38 - 000000000 ____D C:\WINDOWS\LastGood 2021-07-21 18:02 - 2021-07-21 18:02 - 000000744 _____ C:\Users\Gaven\Documents\Bureau - Raccourci.lnk 2021-07-20 20:12 - 2021-07-20 20:12 - 000216055 _____ C:\Users\Gaven\Downloads\Attestation Hébergement MEHAL - Page 1.pdf 2021-07-20 20:08 - 2021-07-20 20:08 - 000179788 _____ C:\Users\Gaven\Downloads\Fedex Prêt véhicule MEHAL - Page 1 (1).pdf 2021-07-20 20:04 - 2021-07-20 20:05 - 000179788 _____ C:\Users\Gaven\Downloads\Fedex Prêt véhicule MEHAL - Page 1.pdf 2021-07-17 04:29 - 2021-07-17 04:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-07-15 16:20 - 2021-07-15 16:20 - 000003219 _____ C:\Users\Gaven\Desktop\ZHPCleaner (S).txt 2021-07-15 16:05 - 2021-07-15 16:05 - 003258008 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPCleaner (3).exe 2021-07-15 16:00 - 2021-07-15 16:00 - 000000817 _____ C:\Users\Gaven\Desktop\ZHPFix.txt 2021-07-15 15:59 - 2021-07-15 15:59 - 001769112 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPFix2.exe 2021-07-15 15:59 - 2021-07-15 15:59 - 000000858 _____ C:\Users\Gaven\Desktop\ZHPFix2.lnk 2021-07-15 15:50 - 2021-07-15 15:50 - 003277976 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPDiag3 (1).exe 2021-07-15 15:29 - 2021-07-15 15:34 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\Aion Rainmeter 2021-07-15 15:29 - 2021-07-15 15:29 - 000001147 _____ C:\Users\Public\Desktop\Aion RainMeter.lnk 2021-07-15 15:29 - 2021-07-15 15:29 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aion RainMeter 2021-07-15 15:29 - 2021-07-15 15:29 - 000000000 ____D C:\ProgramData\Aion RainMeter 2021-07-15 15:29 - 2021-07-15 15:29 - 000000000 ____D C:\Program Files (x86)\Aion RainMeter 2021-07-15 14:51 - 2021-07-15 14:51 - 089708119 _____ (www.rainy.ws ) C:\Users\Gaven\Downloads\AionRainMeterSetup370_1.exe 2021-07-15 14:39 - 2021-07-15 14:39 - 000000000 ____D C:\Users\Gaven\AppData\Local\ElevatedDiagnostics 2021-07-15 14:30 - 2021-07-15 14:30 - 000002157 _____ C:\Users\Gaven\Desktop\NC Launcher 2.lnk 2021-07-15 14:30 - 2021-07-15 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NC Launcher 2 2021-07-15 14:29 - 2021-07-15 14:29 - 181561024 _____ (NCSOFT Corporation) C:\Users\Gaven\Downloads\NCLauncher2_Installer (2).exe 2021-07-15 13:23 - 2021-07-15 13:23 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-07-15 13:21 - 2021-06-21 10:43 - 000037664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2021-07-15 13:19 - 2021-06-22 03:21 - 000641328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-07-15 13:19 - 2021-06-22 03:19 - 005678864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-07-15 13:18 - 2021-06-22 03:25 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-07-15 13:18 - 2021-06-22 03:25 - 001474336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-07-15 13:18 - 2021-06-22 03:25 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-07-15 13:18 - 2021-06-22 03:25 - 001212192 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 001097832 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 001097832 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 000951912 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-07-15 13:18 - 2021-06-22 03:25 - 000951912 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 001519384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 001170224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 000715568 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 000675088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 000575792 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-07-15 13:18 - 2021-06-22 03:21 - 000563992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-07-15 13:18 - 2021-06-22 03:20 - 001594656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-07-15 13:18 - 2021-06-22 03:20 - 000917280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-07-15 13:18 - 2021-06-22 03:20 - 000704792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-07-15 13:18 - 2021-06-22 03:19 - 008852760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-07-15 13:18 - 2021-06-22 03:19 - 007918872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-07-15 13:18 - 2021-06-22 03:19 - 004986648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-07-15 13:18 - 2021-06-22 03:19 - 002924304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-07-15 13:18 - 2021-06-22 03:19 - 000446744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-07-15 13:18 - 2021-06-22 03:18 - 000848672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-07-15 13:18 - 2021-06-22 03:17 - 006215312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-07-15 13:18 - 2021-06-21 10:43 - 000082968 _____ C:\WINDOWS\system32\nvinfo.pb 2021-07-15 11:24 - 2021-07-15 11:24 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-07-15 11:24 - 2021-07-15 11:24 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-07-15 11:24 - 2021-07-15 11:24 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-07-15 11:24 - 2021-07-15 11:24 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-07-15 11:24 - 2021-07-15 11:24 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-07-15 11:24 - 2021-07-15 11:24 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb 2021-07-14 16:01 - 2021-07-14 16:01 - 000001929 _____ C:\Users\Public\Desktop\NoPing.lnk 2021-07-14 16:01 - 2021-07-14 16:01 - 000000000 ____D C:\Program Files\Windows Packet Filter 2021-07-14 16:00 - 2021-07-14 16:00 - 116965104 _____ (NoPing) C:\Users\Gaven\Downloads\NoPingSetup (1).exe 2021-07-12 22:37 - 2021-07-12 22:37 - 000003750 _____ C:\Users\Gaven\Downloads\Aion-Classic-Chat-Filter-NA-main (2).zip 2021-07-10 05:30 - 2021-07-10 05:30 - 000003531 _____ C:\Users\Gaven\Downloads\Aion-Classic-Chat-Filter-NA-main (1).zip 2021-07-10 05:30 - 2021-07-09 05:57 - 000003798 _____ C:\Users\Gaven\Documents\aionfilterline.dat 2021-07-09 16:03 - 2021-07-09 16:03 - 000006703 _____ C:\Users\Gaven\Downloads\6TNC6HF1LW-recapitulatif-cni (1).pdf 2021-07-07 20:06 - 2021-07-07 20:06 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-07-07 20:06 - 2021-07-07 20:06 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-07-07 20:06 - 2021-07-07 20:06 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-07-07 20:06 - 2021-07-07 20:06 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-07-07 20:06 - 2021-07-07 20:06 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-07-07 20:06 - 2021-07-07 20:06 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-07-07 20:06 - 2021-07-07 20:06 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-07-07 20:06 - 2021-07-07 20:06 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-07-07 20:06 - 2021-07-07 20:06 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-07-07 20:06 - 2021-07-07 20:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-07-07 09:18 - 2021-08-03 14:00 - 000000143 _____ C:\Users\Gaven\Documents\aionmemo_9aef 3d3.dat 2021-07-06 03:11 - 2021-07-06 03:11 - 000002407 _____ C:\Users\Gaven\Downloads\Aion-Classic-Chat-Filter-NA-main.zip 2021-07-04 00:19 - 2021-08-03 07:11 - 000002140 _____ C:\Users\Gaven\Desktop\AION_CLASSIC.lnk 2021-07-04 00:19 - 2021-07-04 00:20 - 000000000 ____D C:\Users\Gaven\Downloads\AION_CLASSIC 2021-07-04 00:18 - 2021-07-04 00:19 - 000000000 ____D C:\Program Files (x86)\AionCLC ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-03 14:53 - 2020-09-09 22:35 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\discord 2021-08-03 14:48 - 2021-04-03 21:14 - 000375374 _____ C:\Users\Gaven\Desktop\ZHPDiag.txt 2021-08-03 14:48 - 2021-03-01 07:28 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\ZHP 2021-08-03 14:48 - 2020-09-09 22:34 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-03 14:42 - 2021-03-01 07:28 - 000000000 ____D C:\Users\Gaven\AppData\Local\ZHP 2021-08-03 14:08 - 2020-09-09 22:35 - 000000000 ____D C:\Users\Gaven\AppData\Local\Discord 2021-08-03 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-03 13:57 - 2021-02-16 02:03 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\Binance 2021-08-03 12:25 - 2020-09-09 22:18 - 000000000 ____D C:\ProgramData\NVIDIA 2021-08-03 11:43 - 2020-10-11 16:23 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-08-03 07:08 - 2020-10-01 02:38 - 000000000 ____D C:\Users\Gaven\AppData\Local\ExitLag 2021-08-03 07:07 - 2021-04-03 23:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-08-02 08:27 - 2021-04-26 11:39 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d728ce3fd0f5ec 2021-08-02 08:27 - 2021-04-03 23:14 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-01 10:00 - 2020-09-10 00:32 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\vlc 2021-07-31 19:44 - 2021-02-16 02:03 - 000000000 ____D C:\Program Files\Binance 2021-07-31 07:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-31 07:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-07-30 06:36 - 2020-09-09 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2021-07-30 06:36 - 2020-09-09 22:20 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-30 06:36 - 2020-09-09 22:20 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-07-29 03:04 - 2020-10-02 18:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-07-29 03:02 - 2020-10-01 02:44 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-07-25 21:40 - 2021-04-03 23:14 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1422097259-3417940710-2170496950-1001 2021-07-25 21:40 - 2021-04-03 22:06 - 000002421 _____ C:\Users\Gaven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-25 21:40 - 2020-09-09 22:25 - 000000000 ___RD C:\Users\Gaven\OneDrive 2021-07-24 17:39 - 2020-09-09 23:50 - 000000000 ____D C:\Users\Gaven\AppData\Local\CrashDumps 2021-07-24 17:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-07-23 21:19 - 2021-04-03 23:18 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-07-23 21:19 - 2019-12-07 16:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat 2021-07-23 21:19 - 2019-12-07 16:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat 2021-07-23 21:10 - 2021-04-03 23:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-07-23 21:10 - 2021-04-03 23:07 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-23 21:10 - 2020-09-09 22:19 - 000000000 ____D C:\Users\Public\Creative 2021-07-23 21:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-07-23 21:08 - 2020-09-09 23:08 - 000000000 ____D C:\Program Files (x86)\Creative 2021-07-23 21:07 - 2020-09-09 23:40 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2021-07-23 21:07 - 2020-09-09 23:08 - 000000051 ___RH C:\WINDOWS\ctfile.rfc 2021-07-23 21:07 - 2020-09-09 23:08 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-07-23 21:07 - 2020-09-09 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative 2021-07-23 05:28 - 2020-09-09 22:34 - 000000000 ____D C:\Users\Gaven\AppData\Local\Google 2021-07-21 18:43 - 2020-09-09 22:23 - 000000000 ____D C:\Users\Gaven\AppData\Local\Packages 2021-07-21 18:37 - 2020-09-09 23:10 - 000000000 ____D C:\ProgramData\Creative 2021-07-17 15:51 - 2020-09-09 23:51 - 000000000 ____D C:\Users\Gaven\AppData\Local\D3DSCache 2021-07-17 00:59 - 2020-12-06 08:16 - 000000000 ____D C:\Users\Gaven\AppData\Local\NVIDIA Corporation 2021-07-16 11:57 - 2020-09-09 22:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-07-16 09:45 - 2020-10-01 02:44 - 000740152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-07-16 09:45 - 2020-10-01 02:44 - 000486712 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-07-16 03:21 - 2021-04-03 23:14 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-07-16 03:21 - 2021-04-03 23:14 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-15 16:31 - 2020-09-10 00:03 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\uTorrent 2021-07-15 16:24 - 2021-05-21 04:33 - 000000000 ____D C:\Users\Gaven\AppData\Local\Avast Software 2021-07-15 16:24 - 2020-09-09 22:43 - 000000000 ____D C:\ProgramData\Avast Software 2021-07-15 16:21 - 2021-03-01 07:39 - 000009753 _____ C:\Users\Gaven\Desktop\ZHPCleaner (R).html 2021-07-15 16:21 - 2021-03-01 07:39 - 000003343 _____ C:\Users\Gaven\Desktop\ZHPCleaner (R).txt 2021-07-15 16:20 - 2021-03-01 07:36 - 000009562 _____ C:\Users\Gaven\Desktop\ZHPCleaner (S).html 2021-07-15 16:05 - 2021-03-01 07:28 - 000000875 _____ C:\Users\Gaven\Desktop\ZHPCleaner.lnk 2021-07-15 15:50 - 2021-04-03 21:10 - 000000865 _____ C:\Users\Gaven\Desktop\ZHPDiag.lnk 2021-07-15 14:32 - 2021-07-03 16:53 - 000002124 _____ C:\Users\Gaven\Desktop\AION.lnk 2021-07-15 14:32 - 2021-04-04 18:11 - 000002120 _____ C:\Users\Gaven\Desktop\BnS.lnk 2021-07-15 14:32 - 2020-09-09 22:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-07-15 14:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-07-15 14:30 - 2021-04-04 18:03 - 000000000 ____D C:\Program Files (x86)\NCSOFT 2021-07-15 14:22 - 2020-09-09 22:42 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-07-15 14:19 - 2021-04-03 23:14 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-07-15 14:19 - 2021-04-03 23:14 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-07-15 14:19 - 2021-04-03 23:14 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002894 _____ C:\WINDOWS\system32\Tasks\ViGEmBusUpdater 2021-07-15 14:19 - 2021-04-03 23:14 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-15 14:19 - 2021-04-03 23:14 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2021-07-15 14:19 - 2021-04-03 23:14 - 000002482 _____ C:\WINDOWS\system32\Tasks\Notification Center 2021-07-15 13:24 - 2020-10-05 21:03 - 000000000 ____D C:\Users\Gaven\AppData\Local\NVIDIA 2021-07-15 13:23 - 2020-09-09 22:23 - 000000000 ____D C:\ProgramData\Packages 2021-07-15 13:23 - 2020-09-09 22:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-07-15 13:17 - 2020-12-06 08:16 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2021-07-15 13:17 - 2020-09-09 22:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-07-15 13:17 - 2020-09-09 22:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-07-15 12:14 - 2021-04-03 23:07 - 000454456 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-07-15 12:13 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-07-15 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-07-15 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-07-15 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-07-15 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-15 11:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-07-15 11:19 - 2020-09-10 23:52 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-07-15 11:17 - 2020-09-10 23:52 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-07-14 17:37 - 2021-03-19 23:39 - 000000000 ____D C:\Program Files\NoPing 2021-07-14 16:02 - 2021-03-19 23:38 - 000000000 ____D C:\Users\Gaven\AppData\Roaming\NoPing 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-07-09 23:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-07-05 19:30 - 2021-02-26 08:24 - 000000318 _____ C:\Users\Gaven\AppData\Roaming\ShugoConsole.ini 2021-07-04 01:12 - 2020-10-01 02:36 - 000001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExitLag.lnk 2021-07-04 01:12 - 2020-10-01 02:36 - 000001064 _____ C:\Users\Public\Desktop\ExitLag.lnk 2021-07-04 01:12 - 2020-10-01 02:36 - 000000000 ____D C:\Program Files (x86)\ExitLag ==================== Fichiers à la racine de certains dossiers ======== 2021-02-26 08:24 - 2021-07-05 19:30 - 000000318 _____ () C:\Users\Gaven\AppData\Roaming\ShugoConsole.ini 2020-10-11 16:21 - 2020-10-11 16:21 - 000000410 _____ () C:\Users\Gaven\AppData\Local\oobelibMkey.log 2021-04-03 21:09 - 2021-04-19 04:51 - 000007638 _____ () C:\Users\Gaven\AppData\Local\Resmon.ResmonCfg 2021-05-02 05:21 - 2021-05-05 03:51 - 000000775 _____ () C:\Users\Gaven\AppData\Local\stub.log ==================== SigCheckExt ========================= 2021-03-20 01:15 - 2021-03-20 01:15 - 000048640 _____ C:\WINDOWS\system32\boost_date_time-vc142-mt-x64-1_70.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000098816 _____ C:\WINDOWS\system32\boost_filesystem-vc142-mt-x64-1_70.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000385536 _____ C:\WINDOWS\system32\boost_program_options-vc141-mt-x64-1_73.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000083456 _____ C:\WINDOWS\system32\boost_thread-vc142-mt-x64-1_70.dll 2020-09-09 23:08 - 2008-12-22 20:13 - 000049664 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTChkAud.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000226304 _____ C:\WINDOWS\system32\jsoncpp.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 003458048 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000466944 _____ (The curl library, hxxps://curl.haxx.se/) C:\WINDOWS\system32\libcurl.dll 2021-03-20 01:15 - 2021-03-20 01:15 - 000085504 _____ C:\WINDOWS\system32\zlib1.dll 2020-09-09 23:09 - 2006-10-06 13:17 - 000053248 _____ (Creative Technology Ltd ) C:\WINDOWS\Ctregrun.exe 2015-03-17 06:34 - 2015-03-17 06:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2020-09-09 23:08 - 2008-12-22 20:13 - 000061440 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTChkAud.dll 2020-09-09 23:08 - 2020-09-07 11:42 - 000167424 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT352.dll 2020-09-09 23:08 - 2020-09-07 11:41 - 000079872 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT399.dll 2015-03-17 06:34 - 2015-03-17 06:34 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2015-03-17 06:34 - 2015-03-17 06:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2015-03-17 06:34 - 2015-03-17 06:34 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll 2015-03-17 06:34 - 2015-03-17 06:34 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2015-03-17 06:34 - 2015-03-17 06:34 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2021-07-21 18:38 - 2019-05-14 10:00 - 001942528 ____N (Creative) C:\WINDOWS\SysWOW64\Sens_oal.dll 2021-01-05 11:52 - 2016-10-08 23:17 - 003168256 _____ () C:\Users\Gaven\Desktop\DS4Windows.exe 2021-03-01 16:35 - 2021-03-01 16:35 - 000248320 _____ C:\Users\Gaven\Downloads\Aion Log Analyzer.exe 2021-07-15 14:51 - 2021-07-15 14:51 - 089708119 _____ (www.rainy.ws ) C:\Users\Gaven\Downloads\AionRainMeterSetup370_1.exe 2020-12-03 21:34 - 2020-12-03 21:34 - 003787776 _____ C:\Users\Gaven\Downloads\AionSysCfgEditor.exe 2021-07-21 18:43 - 2021-07-21 18:44 - 052231816 _____ (AMD Inc.) C:\Users\Gaven\Downloads\amd-catalyst-15.7.1-sb-sata-ahci-win10-win8.1-win7.exe 2020-09-30 23:46 - 2020-09-30 23:46 - 039196661 _____ (RemixDevs) C:\Users\Gaven\Downloads\Deezloader Remix Installer 64 bit 4.3.0 Setup.exe 2021-08-03 14:47 - 2021-08-03 14:47 - 002300416 _____ (Farbar) C:\Users\Gaven\Downloads\FRST64.exe 2021-04-14 17:31 - 2021-04-14 17:31 - 000388608 _____ (Trend Micro Inc.) C:\Users\Gaven\Downloads\HijackThis.exe 2021-06-25 16:30 - 2021-06-25 16:30 - 006274681 _____ (PhyberVPN) C:\Users\Gaven\Downloads\PhyberVPNSetup (1).exe 2020-10-13 00:23 - 2020-10-13 00:23 - 006277720 _____ (PhyberVPN) C:\Users\Gaven\Downloads\PhyberVPNSetup.exe 2021-02-26 08:10 - 2021-02-26 08:10 - 004841472 _____ C:\Users\Gaven\Downloads\ShugoConsole-1.1.3-64bits.exe 2021-04-16 02:37 - 2021-04-16 02:37 - 003326104 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPCleaner (1).exe 2021-04-16 02:39 - 2021-04-16 02:39 - 003326104 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPCleaner (2).exe 2021-07-15 16:05 - 2021-07-15 16:05 - 003258008 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPCleaner (3).exe 2021-03-01 07:28 - 2021-03-01 07:28 - 003324568 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPCleaner.exe 2021-07-15 15:50 - 2021-07-15 15:50 - 003277976 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPDiag3 (1).exe 2021-04-03 21:10 - 2021-04-03 21:10 - 003273368 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPDiag3.exe 2021-07-15 15:59 - 2021-07-15 15:59 - 001769112 _____ (Nicolas Coolman) C:\Users\Gaven\Downloads\ZHPFix2.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {41c15685-0119-11e9-8f2a-f3a8d2052103} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume4 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {3895ed82-f2d7-11ea-abe5-e5f162c547c0} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {41c15685-0119-11e9-8f2a-f3a8d2052103} description Hard Drive Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {3895ed85-f2d7-11ea-abe5-e5f162c547c0} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {3895ed82-f2d7-11ea-abe5-e5f162c547c0} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {3895ed85-f2d7-11ea-abe5-e5f162c547c0} device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{3895ed86-f2d7-11ea-abe5-e5f162c547c0} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{3895ed86-f2d7-11ea-abe5-e5f162c547c0} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {3895ed82-f2d7-11ea-abe5-e5f162c547c0} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {3895ed85-f2d7-11ea-abe5-e5f162c547c0} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {3895ed86-f2d7-11ea-abe5-e5f162c547c0} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================