Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-09-2021 Exécuté par beussta (administrateur) sur BEUSSTA-PC (ASUS All Series) (19-09-2021 16:09:18) Exécuté depuis C:\Users\beussta\Desktop Profils chargés: beussta Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\Winamp\winampa.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Logitech -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech Inc -> ) C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe (Logitech Inc -> ) C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe (Logitech Inc -> Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6> (NETGEAR -> Ralink Technology, Corp.) C:\Program Files (x86)\NETGEAR\WNDA4100\Service\RaRegistry.exe (NETGEAR -> Ralink Technology, Corp.) C:\Program Files (x86)\NETGEAR\WNDA4100\Service\RaRegistry64.exe (Nullsoft) [Fichier non signé] C:\Program Files (x86)\Winamp\winamp.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Plex, Inc. -> ) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc. -> ) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe (TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe (TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\supercopier.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7640944 2014-09-29] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] (Logitech Inc -> ) HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [36352 2007-10-10] () [Fichier non signé] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [ultracopier] => C:\Program Files\Supercopier\supercopier.exe [824320 2015-04-21] (ultracopier.first-world.info) [Fichier non signé] HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5585136 2015-03-31] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282600 2021-09-14] (Valve -> Valve Corporation) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [21144744 2021-07-23] (Plex, Inc. -> Plex, Inc.) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3333280 2021-06-22] (Skutta, Kristjan -> ) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [277688 2021-06-09] (TEFINCOM S.A. -> TEFINCOM S.A.) HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: G - G:\Setup.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: H - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {39d22be9-ebaa-11e4-bb2b-f0795965f6b6} - G:\setup.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {39d22c0e-ebaa-11e4-bb2b-f0795965f6b6} - H:\setup.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {7c6e17e1-3f93-11e5-8d21-f0795965f6b6} - I:\Installer.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {b4e178fa-58e8-11e5-aa3c-f0795965f6b6} - J:\setup.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {d0fde944-81b6-11e5-bbc6-f0795965f6b6} - G:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\...\MountPoints2: {f8e7f02f-eaba-11e4-af91-806e6f6e6963} - D:\Bin\ASSETUP.exe HKU\S-1-5-21-1163846971-3522577350-3267509833-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [21144744 2021-07-23] (Plex, Inc. -> Plex, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-16] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {03DC7B13-3356-4784-BE2B-50A492FECD2D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-20] (Google Inc -> Google Inc.) Task: {0F5F287C-97F1-44A6-876B-A4377D945D90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform) Task: {1327CD64-DAC1-474C-BA08-47B2FA10FC89} - System32\Tasks\ASUS\i-Setup221107 => C:\Windows\Install\AsusSetup.exe [1203032 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {18ED3DB0-3FF2-40DD-992A-70566DEC577D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1C154B73-3184-4893-910F-D00EAC74E8BA} - System32\Tasks\{C54EBBB4-D839-4D90-AF82-C30B093545E1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{7F0B94C6-828C-4EDE-A86B-ECF4D792B68D}\setup.exe" -c -runfromtemp -l0x040c Task: {23B55A6C-F415-46E7-A0E2-3ADDC48CBC2F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-20] (Google Inc -> Google Inc.) Task: {2B613AD3-758B-4034-A69B-C092DA3B7CCD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {37484186-9610-4AE0-95A4-31166BEECF63} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3C5A715C-2AEC-4DEC-9177-1F509563DE02} - System32\Tasks\{F06F4953-B38E-49C3-AF0C-EEFD0F99C28E} => G:\Setup.exe -> /i "G:\Files\install.msi" AI_RESUME=1 ADDLOCAL=CB585686_DAA3_4384_BDDF_08ABA631E9F3_,GameData,RequiredApplication_1 PRIMARYFOLDER="APPDIR" ROOTDRIVE="F:\" TARGETDIR="F:\" APPDIR="F:\JEUX\batman origins\" Task: {422C2CA8-58F4-4D2E-9DD6-E969F7D51A84} - System32\Tasks\ASUS\i-Setup221044 => C:\Windows\MEI\AsusSetup.exe [1203032 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {428BFAA8-EE9A-405C-A2ED-943F715CE324} - System32\Tasks\{1F937ACF-81F4-475E-81D0-613582CC62AA} => C:\Users\beussta\Desktop\ZHPCleaner.exe Task: {5B9396B5-E249-4AE7-9631-A5444D6D0A63} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6F073DD1-53D9-46B1-96B6-82C80B40A17D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7F38EFBA-A7C7-4BE8-8080-B896364CF8A4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8AB0F279-0EAE-44AA-9AD8-9A3FAB728831} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B839EC24-945B-4D74-B5CE-B1E2DEBFF311} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D9CADD5D-BFD5-4E7F-BBDB-1525700162AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {DCD32B4E-B432-4921-ABE7-5C6A48F4DA48} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E85D10B1-2E0A-4D1E-8D66-E8819F71BBA0} - System32\Tasks\{0F2C672A-F7E5-4D80-8CA7-E561DB32BC75} => C:\Windows\system32\pcalua.exe -a C:\Users\beussta\Desktop\windows-7-dreamscene-installer_windows_7_dreamscene_installer_anglais_310872.exe -d C:\Users\beussta\Desktop Task: {E97A7715-4853-4076-A377-170790BF0CFF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F79699F9-93F3-4EDD-928A-33FCA904471F} - System32\Tasks\{D025CC75-4112-4A73-9733-752663E763C4} => C:\Users\beussta\Desktop\ZHPCleaner.exe Task: {F7DFF813-1824-4FF5-A3F0-57AF94C03E25} - System32\Tasks\ASUS\i-Setup220814 => C:\Windows\Chipset\AsusSetup.exe [1203032 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {FBB3C507-EBC7-48B4-9186-3DF934041041} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\{F06F4953-B38E-49C3-AF0C-EEFD0F99C28E}.job => G:\Setup.exeÌ/i G:\Files\install.msi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{1144A9E4-0EBD-4BA1-938E-BBAE3037F8C2}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{1144A9E4-0EBD-4BA1-938E-BBAE3037F8C2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9A3FE9A2-9BA1-4C6D-8BC6-EE67AD882996}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{9A3FE9A2-9BA1-4C6D-8BC6-EE67AD882996}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{AE940FE9-D4B8-48B8-946A-6AE332292DC0}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{C79C0DB9-1C7D-43B0-B96F-64B6BDDF8D4E}: [DhcpNameServer] 192.168.42.129 FireFox: ======== FF DefaultProfile: 23o071p0.default-1560291123303 FF ProfilePath: C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922 [2021-09-19] FF DownloadDir: C:\Users\beussta\Desktop FF Session Restore: Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922 -> est activé. FF Notifications: Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922 -> hxxps://www.twitch.tv; hxxps://www.reddit.com; hxxps://forums.plex.tv FF Extension: (Arc Dark Theme) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\arc-dark-theme@afnankhan.xpi [2021-06-05] FF Extension: (Easy Screenshot) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\easyscreenshot@mozillaonline.com.xpi [2021-07-30] FF Extension: (Enhancer for YouTube™) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2021-09-16] FF Extension: (BetterTTV) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\firefox@betterttv.net.xpi [2021-09-16] FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\firefox@ghostery.com.xpi [2021-06-29] FF Extension: (Double-click Image Downloader) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\jid1-xgtdawe3yyUeBQ@jetpack.xpi [2021-05-22] FF Extension: (Cute Save Button) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\ochecuteextension@plaza.ink.xpi [2021-05-07] FF Extension: (Gestionnaire de téléchargements (S3)) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\s3download@statusbar.xpi [2019-07-10] FF Extension: (Session Sync) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\session-sync@gabrielivanica.com.xpi [2020-02-06] FF Extension: (Google Translator for Firefox) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\translator@zoli.bod.xpi [2020-01-16] FF Extension: (WebP image converter) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\webpconverter@hilberteikelboom.nl.xpi [2021-08-13] FF Extension: (Steam Darkness) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{070e64c4-eba6-40f7-ae1f-957096fa4f69}.xpi [2021-03-16] FF Extension: (Dark space - The best dynamic theme) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{22b0eca1-8c02-4c0d-a5d7-6604ddd9836e}.xpi [2021-06-05] FF Extension: (ANIMATED Neutron Stars by candelora) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{2c216ba1-594a-4039-a389-b954f42ff809}.xpi [2021-07-12] FF Extension: (Search by Image) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2021-07-27] FF Extension: ('Improve YouTube!' (Video & YouTube Tools)🎧) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{3c6bf0cc-3ae2-42fb-9993-0d33104fdcaf}.xpi [2021-07-08] FF Extension: (Dark Brushed Metal GREY) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{9ab9dbcb-f0a3-4cc2-a7ab-5d57cb934c87}.xpi [2021-03-16] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2021-09-13] FF Extension: (Video DownloadHelper) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02] FF Extension: (Matte Black (Blue)) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{c01b4916-eb9f-403d-9931-9d7cb152c729}.xpi [2021-03-16] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-02] FF Extension: (Matte Black (Grey)) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{f2b832a9-f0f5-4532-934c-74b25eb23fb9}.xpi [2021-06-03] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\5zofel15.default-release-1560293286922\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2021-06-28] FF ProfilePath: C:\Users\beussta\AppData\Roaming\Mozilla\Firefox\Profiles\23o071p0.default-1560291123303 [2021-09-19] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-04-24] [] [non signé] FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) [Fichier non signé] FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-08-30] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-06-09] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-08-30] <==== ATTENTION FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-06-09] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default [2021-09-19] CHR DownloadDir: C:\Users\beussta\Desktop CHR Session Restore: Default -> est activé. CHR Extension: (Slides) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16] CHR Extension: (Docs) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16] CHR Extension: (Google Drive) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21] CHR Extension: (Double-click Image Downloader) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkijmpolkanhdehnlnabfooghjdokakc [2021-06-03] CHR Extension: (YouTube) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-20] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-04] CHR Extension: (uBlock Origin) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-30] CHR Extension: (TorrentStream Helper) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebaaacomjclfgnkmaeaneljmfgkofphc [2019-02-12] CHR Extension: (Adobe Acrobat) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-06] CHR Extension: (Kaspersky Protection 20.0) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-01-30] CHR Extension: (Sheets) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-19] CHR Extension: (Google Docs hors connexion) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-30] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-19] CHR Extension: (Torrent Stream) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\icocmgpofpimcojhefbcfbdldkmndpgj [2019-02-12] CHR Extension: (Open in VLC™ media player) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihpiinojhnfhpdmmacgmpoonphhimkaj [2021-06-03] CHR Extension: (Always Clear Downloads 2) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcajchndfkmnaefkhoaoiagemplbfffn [2020-01-17] CHR Extension: (Video DownloadHelper) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-07-15] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (uBlock Plus Adblocker) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofnbdifeelbaidfgpikinijekkjcicg [2019-05-29] CHR Extension: (WebP image converter) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcfbdlbkdfobidmdoondbgdfpjolhci [2021-09-04] CHR Extension: (uBlock Origin Extra) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco [2019-09-09] CHR Extension: (Gmail) - C:\Users\beussta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1277680 2015-03-31] (Disc Soft Ltd -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-03-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6516792 2015-05-22] (GOG Limited -> GOG.com) S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) S3 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes Corporation -> Malwarebytes) R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [277688 2021-06-09] (TEFINCOM S.A. -> TEFINCOM S.A.) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) [Fichier non signé] S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-02-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-02-15] (Electronic Arts, Inc. -> Electronic Arts) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [533160 2021-07-23] (Plex, Inc. -> Plex, Inc.) R2 RalinkRegistryWriter; C:\Program Files (x86)\NETGEAR\WNDA4100\Service\RaRegistry.exe [377088 2012-09-04] (NETGEAR -> Ralink Technology, Corp.) R2 RalinkRegistryWriter64; C:\Program Files (x86)\NETGEAR\WNDA4100\Service\RaRegistry64.exe [455424 2012-09-04] (NETGEAR -> Ralink Technology, Corp.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Co., Ltd. -> AnvSoft Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] (ASUSTeK Computer Inc. -> ) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30352 2015-04-26] (Disc Soft Ltd -> Disc Soft Ltd) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [531584 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [93312 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [251800 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [643840 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1277704 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998296 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [79760 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project) S4 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [211048 2020-02-01] (Kaspersky Lab -> AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [232344 2020-04-30] (Kaspersky Lab -> AO Kaspersky Lab) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] (Logitech Inc -> ) S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] (Logitech Inc -> ) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes Corporation -> Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation -> Malwarebytes Corporation) R2 NDivert; C:\Windows\System32\DRIVERS\NDivert.sys [95944 2021-03-03] (TEFINCOM S.A. -> ) S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [1734432 2012-11-12] (NETGEAR -> Ralink Technology Corp.) R3 nlwt; C:\Windows\System32\DRIVERS\nlwt.sys [29888 2020-10-23] (TEFINCOM S.A. -> WireGuard LLC) R1 nordlwf; C:\Windows\System32\DRIVERS\nordlwf.sys [29384 2020-07-10] (TEFINCOM S.A. -> TEFINCOM S.A.) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-04-26] (Disc Soft Ltd -> Duplex Secure Ltd.) R3 tapnordvpn; C:\Windows\System32\DRIVERS\tapnordvpn.sys [35592 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) R3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies) R3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [42760 2016-02-21] (Windows Central Build Account - X -> Microsoft Corporation) U3 a4morzw7; C:\Windows\System32\Drivers\a4morzw7.sys [0 0000-00-00] (Microsoft Corporation) <==== ATTENTION (zéro octet Fichier/Dossier) S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X] S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] S3 GDPkIcpt; \??\C:\Windows\system32\drivers\PktIcpt.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-19 16:09 - 2021-09-19 16:09 - 000035714 _____ C:\Users\beussta\Desktop\FRST.txt 2021-09-19 16:08 - 2021-09-19 16:09 - 000000000 ____D C:\FRST 2021-09-19 16:08 - 2021-09-19 16:08 - 002304000 _____ (Farbar) C:\Users\beussta\Desktop\FRST64.exe 2021-09-19 13:20 - 2021-09-19 13:20 - 000342551 _____ C:\Users\beussta\Desktop\ZHPDiag.txt 2021-09-19 13:14 - 2021-09-19 13:14 - 003476120 _____ (Nicolas Coolman) C:\Users\beussta\Desktop\ZHPSuite.exe 2021-09-18 17:48 - 2021-09-18 17:49 - 000000000 ____D C:\Users\beussta\Desktop\photo appart 2021-09-18 17:46 - 2021-09-18 18:02 - 000000000 ____D C:\Users\beussta\Desktop\nagatoro senpai 2021-09-17 21:05 - 2021-09-17 21:05 - 000000000 ____D C:\Users\Public\Documents\Explorer Suite Signatures 2021-09-17 21:05 - 2021-09-17 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Explorer Suite 2021-09-17 21:05 - 2021-09-17 21:05 - 000000000 ____D C:\Program Files\NTCore 2021-09-17 20:37 - 2021-09-17 20:37 - 099676688 _____ C:\Users\beussta\Desktop\Visual-C-Runtimes-All-in-One-Jul-2021.zip 2021-09-17 20:06 - 2021-09-17 20:06 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\XInput1_4.dll 2021-09-12 23:10 - 2021-09-12 23:10 - 000757545 _____ C:\Users\beussta\Desktop\annie mikasa christa.jpeg 2021-09-10 13:19 - 2021-09-10 13:19 - 000078208 _____ C:\Users\beussta\Desktop\récapitulatif déclaration de ressource pour demande apl septembre 2021.pdf 2021-09-10 13:18 - 2021-09-10 13:18 - 000075223 _____ C:\Users\beussta\Desktop\récapitulatif demande apl septembre 2021.pdf 2021-09-10 13:07 - 2021-09-10 13:07 - 002911977 _____ C:\Users\beussta\Desktop\Attestation loyer pour APL.pdf 2021-09-10 13:07 - 2021-09-10 13:07 - 001438906 _____ C:\Users\beussta\Desktop\Quittance loyer.pdf 2021-09-09 22:21 - 2021-09-16 16:27 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-09-08 16:26 - 2021-09-08 16:26 - 000000000 ____D C:\Users\beussta\Desktop\documents importants ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-19 16:09 - 2018-07-10 01:26 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-09-19 16:03 - 2015-11-03 15:44 - 000000000 ____D C:\Program Files (x86)\Steam 2021-09-19 15:17 - 2017-06-20 16:25 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-19 13:23 - 2009-07-14 06:45 - 000020672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-09-19 13:23 - 2009-07-14 06:45 - 000020672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-09-19 13:20 - 2020-08-10 18:05 - 000000000 ____D C:\Users\beussta\AppData\Roaming\ZHP 2021-09-19 13:15 - 2020-08-10 18:05 - 000000000 ____D C:\Users\beussta\AppData\Local\ZHP 2021-09-19 13:07 - 2015-04-24 22:51 - 000000000 ____D C:\ProgramData\Mozilla 2021-09-19 13:06 - 2017-01-03 05:29 - 000000000 ____D C:\Users\beussta\AppData\LocalLow\Mozilla 2021-09-19 12:25 - 2018-12-01 20:43 - 000000000 ____D C:\ProgramData\NVIDIA 2021-09-19 06:40 - 2017-08-29 19:19 - 000000000 ____D C:\Program Files\CCleaner 2021-09-19 04:50 - 2019-05-27 22:50 - 000000000 ____D C:\Users\beussta\AppData\Local\NordVPN 2021-09-19 00:50 - 2009-08-02 12:53 - 000758826 _____ C:\Windows\system32\perfh00C.dat 2021-09-19 00:50 - 2009-08-02 12:53 - 000155810 _____ C:\Windows\system32\perfc00C.dat 2021-09-19 00:50 - 2009-07-14 07:13 - 001702348 _____ C:\Windows\system32\PerfStringBackup.INI 2021-09-19 00:50 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2021-09-19 00:44 - 2018-07-13 13:59 - 000000000 ____D C:\Users\beussta\AppData\Local\Plex Media Server 2021-09-19 00:44 - 2015-05-26 15:47 - 000000592 ____H C:\Windows\Tasks\{F06F4953-B38E-49C3-AF0C-EEFD0F99C28E}.job 2021-09-19 00:44 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-09-19 00:43 - 2017-09-15 16:35 - 000000000 ____D C:\Users\beussta\AppData\Roaming\discord 2021-09-19 00:38 - 2015-04-26 02:19 - 000000000 ____D C:\Users\beussta\AppData\Roaming\DAEMON Tools Lite 2021-09-19 00:37 - 2015-04-25 15:50 - 000000000 ____D C:\Users\beussta\AppData\Roaming\uTorrent 2021-09-19 00:37 - 2015-04-25 04:51 - 000000000 ____D C:\Users\beussta\AppData\Roaming\MPC-HC 2021-09-19 00:32 - 2017-09-15 16:35 - 000000000 ____D C:\Users\beussta\AppData\Local\Discord 2021-09-19 00:06 - 2016-07-30 21:02 - 000000000 ____D C:\Users\beussta\AppData\Local\CrashDumps 2021-09-18 17:40 - 2018-06-04 20:35 - 000000000 ____D C:\Users\beussta\Desktop\met tout la dedans 2021-09-18 17:35 - 2020-06-06 17:26 - 000000000 ____D C:\Users\beussta\Desktop\création wallpaper engine 2021-09-18 15:47 - 2021-07-24 19:33 - 000000000 ____D C:\Users\beussta\AppData\Roaming\qBittorrent 2021-09-17 20:41 - 2015-04-28 01:19 - 000000000 ____D C:\ProgramData\Package Cache 2021-09-17 19:44 - 2017-01-04 03:31 - 000000000 ____D C:\JEUX (temporaire) 2021-09-16 16:27 - 2019-06-12 00:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-09-14 01:27 - 2016-06-28 03:22 - 000000000 ____D C:\Users\beussta\AppData\Roaming\vlc 2021-09-12 17:00 - 2017-11-26 02:40 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2021-09-08 16:25 - 2021-03-26 20:36 - 000000000 ____D C:\Users\beussta\Desktop\WALLPAPER ANIME HD 2021-09-07 18:41 - 2017-10-29 02:44 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-09-03 12:29 - 2020-07-14 17:31 - 000000000 ____D C:\ProgramData\NordVPN 2021-09-03 12:27 - 2020-09-23 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec 2021-09-03 12:27 - 2020-07-14 17:31 - 000000000 ____D C:\Program Files\NordVPN 2021-08-23 05:17 - 2015-05-21 23:49 - 000000000 ____D C:\Users\beussta\AppData\Local\ElevatedDiagnostics ==================== Fichiers à la racine de certains dossiers ======== 2016-01-06 02:45 - 2016-01-04 14:45 - 000000040 ____H () C:\Program Files (x86)\b09d7102.tmp 2020-06-30 23:40 - 2020-06-30 23:40 - 000028672 _____ () C:\Users\beussta\AppData\Roaming\crash.bin 2016-02-26 16:54 - 2016-02-26 16:54 - 000000779 _____ () C:\Users\beussta\AppData\Roaming\gdscan.log 2015-04-25 05:42 - 2015-04-25 05:42 - 000000044 _____ () C:\Users\beussta\AppData\Roaming\WB.CFG 2015-05-01 01:51 - 2015-05-01 01:51 - 000000095 _____ () C:\Users\beussta\AppData\Local\fusioncache.dat 2020-09-15 02:35 - 2020-09-15 02:35 - 000000984 _____ () C:\Users\beussta\AppData\Local\recently-used.xbel 2018-09-17 05:48 - 2018-11-03 05:06 - 000007602 _____ () C:\Users\beussta\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2021-09-19 05:18 ==================== Fin de FRST.txt ========================