Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2021 Exécuté par Mathieu (administrateur) sur DESKTOP-TR9PGIU (ASUSTeK COMPUTER INC. GL552VW) (07-10-2021 10:35:14) Exécuté depuis C:\Users\Mathieu\Desktop Profils chargés: Mathieu Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Epic Online Services\EpicOnlineServices.exe <2> (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Epic Online Services\EpicOnlineServicesUserHelper.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (FreeDownloadManager.org) [Fichier non signé] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <35> (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe (INDEX EDUCATION SASU -> Index Education) C:\Program Files (x86)\Index Education\mise a jour automatique\ServiceMiseAJourIndex.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Intel(R) Software -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Users\Mathieu\AppData\Local\GoToMeeting\19228\g2mcomm.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Users\Mathieu\AppData\Local\GoToMeeting\19228\g2mlauncher.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Users\Mathieu\AppData\Local\GoToMeeting\19228\g2mstart.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_e1c005a6713cc50a\Display.NvContainer\NVDisplay.Container.exe <2> (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (voidtools -> ) C:\Program Files (x86)\Everything\Everything.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [604496 2017-11-24] (Conexant Systems LLC -> Conexant Systems, Inc.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [165928 2021-08-16] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3160256 2021-05-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKU\S-1-5-21-3874219996-3526721637-2711476461-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office15\lync.exe [28177288 2020-04-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3874219996-3526721637-2711476461-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4261640 2021-10-06] (Valve -> Valve Corporation) HKU\S-1-5-21-3874219996-3526721637-2711476461-1001\...\Run: [GoToMeeting] => C:\Users\Mathieu\AppData\Local\GoToMeeting\19228\g2mstart.exe [31320 2021-03-24] (LogMeIn, Inc. -> LogMeIn, Inc.) HKU\S-1-5-21-3874219996-3526721637-2711476461-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33435616 2021-10-07] (Epic Games Inc. -> Epic Games, Inc.) HKLM\...\Windows x64\Print Processors\Canon iP4300 Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD86.DLL [27136 2006-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MP550 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9Z.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP550 series: C:\Windows\system32\CNMLM9Z.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Fichier non signé] HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116224 2017-04-23] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-10-06] (Google LLC -> Google LLC) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {00FF1EFC-DA44-4405-BF58-8F0D37B9D081} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0258C424-9E47-443D-8047-C8665F660D46} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0AD6E0BF-A5CE-4740-800F-26800D7B75B5} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {10E6191E-1187-4098-97ED-3BA4F8612F6D} - System32\Tasks\G2MUploadTask-S-1-5-21-3874219996-3526721637-2711476461-1001 => C:\Users\Mathieu\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-06-28] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {15E247B9-564A-445D-BC51-EDDFA20FCEBA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {276392C2-9D4D-4444-A166-15888ECCF213} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {29138D95-0F47-43DA-945A-218107C5E73B} - System32\Tasks\G2MUpdateTask-S-1-5-21-3874219996-3526721637-2711476461-1001 => C:\Users\Mathieu\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-06-28] (LogMeIn, Inc. -> LogMeIn, Inc.) Task: {29C3B273-1DD0-40E0-B531-42A5DA654886} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signé] Task: {2FD8C19A-073E-4F53-963C-CBB77941A2AC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {3B45D2DB-44F9-4584-8542-18CD13C36E54} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {3C58EEEA-01C6-4927-9CC5-261DAD1FE6C5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {3E2BC3D7-8481-4206-9E42-ACC542CD6306} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {469D7C9D-5EF5-44F6-8D91-E37B879CA681} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [Fichier non signé] Task: {5199D6BF-793E-4ED7-81CC-E39C67A79AC6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {5D577030-C34C-4D4C-84BC-E518F7708523} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1616160 2016-01-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé] Task: {6D7906E3-99AD-42F1-816B-9EBCD3088419} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {717963A4-A52D-4A32-9066-ED1D83F37461} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {797693A2-CDE2-4B55-A44A-26429059222F} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé] Task: {7A0B0690-5ED5-4C5C-BABA-4560A5226A8A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7A17EF6C-E7B8-4464-9F30-A8AC77216DA0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8B2085D9-0C94-4935-B23D-11980309306F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {A248C746-75E7-484F-A049-AC7EF16B6BF2} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-18] (ASUSTeK Computer Inc. -> AsusTek) Task: {A7C4EC21-6DF6-44B6-9716-148EB153268F} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.) Task: {BA9388E2-AF44-48BB-A696-BB26A5519315} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [3643592 2016-03-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {C7C38EE8-9781-4B49-9D6C-93259CF068A2} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CC66F717-E263-404E-A178-719504D0F87C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {CF7B1668-D82E-4CF5-9E2E-1E2D4D88F8D7} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {D7C84475-04C3-4CAF-9FD9-7BC6330F8B66} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software) Task: {DEDF5560-6597-4535-AD68-49B494F296D0} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {EAD70547-F602-4482-964B-1142498BD18C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {EB977690-F1F3-498E-89C5-21D0A6051245} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-28] (Google LLC -> Google LLC) Task: {F0F20FC3-EB89-415D-AB97-AAB516092B71} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-28] (Google LLC -> Google LLC) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3874219996-3526721637-2711476461-1001.job => C:\Users\Mathieu\AppData\Local\GoToMeeting\19796\g2mupdate.exe Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3874219996-3526721637-2711476461-1001.job => C:\Users\Mathieu\AppData\Local\GoToMeeting\19796\g2mupload.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{3d536141-09bf-413b-99d8-a4097580cc74}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{97d03ba3-4013-4253-b3da-140d10d2c8a0}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Mathieu\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-25] FireFox: ======== FF DefaultProfile: m1rvy8rs.default FF ProfilePath: C:\Users\Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\m1rvy8rs.default [2020-06-05] FF ProfilePath: C:\Users\Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\xep4ghld.default-release [2020-06-05] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2020-09-30] (Adobe Systems Incorporated -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-06-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-06-08] Chrome: ======= CHR Profile: C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default [2021-10-07] CHR Notifications: Default -> hxxps://forums.commentcamarche.net; hxxps://meet.google.com; hxxps://souvenirsdutemps.vraiforum.com; hxxps://www.aujardin.info; hxxps://www.facebook.com; hxxps://www.systemed.fr; hxxps://www.telerama.fr CHR HomePage: Default -> hxxp://www.google.com/ CHR Extension: (Slides) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-28] CHR Extension: (Docs) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-28] CHR Extension: (Google Drive) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24] CHR Extension: (YouTube) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-28] CHR Extension: (Sheets) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-28] CHR Extension: (Google Docs hors connexion) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-28] CHR Extension: (Save to Pocket) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2020-11-10] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated) S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3079464 2021-08-16] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3079464 2021-08-16] (ESET, spol. s r.o. -> ESET) R3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-05] (Epic Games Inc. -> Epic Games, Inc.) R2 Everything; C:\Program Files (x86)\Everything\Everything.exe [1710880 2019-01-26] (voidtools -> ) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 MajIndexEducationService; C:\program files (x86)\index education\mise a jour automatique\ServiceMiseAJourIndex.exe [3326056 2020-07-21] (INDEX EDUCATION SASU -> Index Education) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7462200 2021-07-04] (Malwarebytes Inc -> Malwarebytes) S3 ROGGamingCenterService; C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingCenterService.exe [49704 2016-03-14] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-17] (TeamViewer -> TeamViewer GmbH) S2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Accès refusé) [Fichier non signé] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_e1c005a6713cc50a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_e1c005a6713cc50a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS) R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [138744 2015-12-18] (ASUSTeK Computer Inc. -> ASUS Corporation) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [169424 2021-08-03] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [123472 2021-08-03] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [194776 2021-08-03] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43904 2021-08-03] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70232 2021-08-03] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-08-03] (ESET, spol. s r.o. -> ESET) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-09-17] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-07-04] (Malwarebytes Inc -> Malwarebytes) R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [51904 2015-01-14] (TITAN ARC CORP. TAIWAN BRANCH (SAMOA) -> Titan ARC Corp.) S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [13168 2011-07-13] (SMART Technologies ULC -> SMART Technologies ULC) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-07 10:35 - 2021-10-07 10:36 - 000032221 ____C C:\Users\Mathieu\Desktop\FRST.txt 2021-10-07 10:31 - 2021-10-07 10:33 - 002308096 _____ (Farbar) C:\Users\Mathieu\Desktop\FRST64.exe 2021-10-05 10:44 - 2021-10-05 10:44 - 000000000 ____D C:\Users\Mathieu\AppData\Local\EOSUserHelper 2021-10-04 23:12 - 2021-10-04 23:12 - 000000000 ____D C:\Users\Default\AppData\Local\Epic Games 2021-10-03 13:01 - 2021-10-03 13:09 - 000000000 ___DC C:\Users\Mathieu\Desktop\Full Bios 2021 2021-09-29 14:56 - 2021-09-29 15:02 - 000000000 ___DC C:\Users\Mathieu\Desktop\Sauvegarde clé Dark Vador 29.09.2021 2021-09-24 20:00 - 2021-09-24 20:00 - 002220277 _____ C:\Users\Mathieu\Desktop\Evaluation d'SES.pdf 2021-09-17 11:24 - 2021-09-17 11:24 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-09-15 19:01 - 2021-09-15 19:01 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-09-15 19:01 - 2021-09-15 19:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-09-15 19:01 - 2021-09-15 19:01 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-09-15 19:01 - 2021-09-15 19:01 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-09-15 19:01 - 2021-09-15 19:01 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-09-15 19:01 - 2021-09-15 19:01 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-09-15 19:01 - 2021-09-15 19:01 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-09-15 19:01 - 2021-09-15 19:01 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-09-15 19:01 - 2021-09-15 19:01 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-09-15 19:01 - 2021-09-15 19:01 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx 2021-09-15 19:01 - 2021-09-15 19:01 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-09-15 19:00 - 2021-09-15 19:00 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-09-15 19:00 - 2021-09-15 19:00 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-09-15 19:00 - 2021-09-15 19:00 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-09-15 19:00 - 2021-09-15 19:00 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-09-15 19:00 - 2021-09-15 19:00 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-09-15 19:00 - 2021-09-15 19:00 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-09-15 19:00 - 2021-09-15 19:00 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-09-15 19:00 - 2021-09-15 19:00 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2021-09-15 19:00 - 2021-09-15 19:00 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-09-15 18:47 - 2021-09-15 18:47 - 000000000 ___HD C:\$WinREAgent ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-07 10:35 - 2018-12-31 10:55 - 000000000 ____D C:\FRST 2021-10-07 10:34 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-10-07 10:34 - 2016-12-22 20:52 - 000000000 ____D C:\Program Files (x86)\Google 2021-10-07 10:26 - 2021-04-23 09:43 - 000004182 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7CD35DB4-EA6C-40DA-A677-2AFCCBCFA9FA} 2021-10-07 10:23 - 2021-04-23 09:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-10-07 10:23 - 2020-06-25 12:06 - 000000000 ____D C:\Program Files (x86)\Steam 2021-10-07 10:23 - 2016-12-22 15:59 - 000000184 ____C C:\Users\Mathieu\AppData\Roaming\sp_data.sys 2021-10-07 09:12 - 2017-01-03 19:31 - 000000000 ____D C:\ProgramData\NVIDIA 2021-10-07 09:10 - 2016-12-22 15:59 - 000000000 __SHD C:\Users\Mathieu\IntelGraphicsProfiles 2021-10-06 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-10-06 22:47 - 2021-04-23 09:43 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3874219996-3526721637-2711476461-1001 2021-10-06 22:47 - 2021-04-22 18:52 - 000002429 ____C C:\Users\Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-10-06 16:57 - 2020-10-31 12:09 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-10-06 16:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-10-05 10:42 - 2021-08-06 23:03 - 000000000 ____D C:\Users\Mathieu\AppData\Local\Epic Games 2021-10-04 22:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-10-03 12:44 - 2020-06-23 16:39 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-02 15:50 - 2017-11-21 21:00 - 000000000 ___DC C:\Users\Mathieu\AppData\Local\Packages 2021-10-02 15:29 - 2021-04-27 11:52 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d73813bd36da01 2021-10-02 15:29 - 2021-04-23 09:43 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-02 15:28 - 2020-10-31 17:04 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-10-01 22:58 - 2018-03-26 14:56 - 000000000 ____D C:\ProgramData\CanonIJPLM 2021-10-01 11:17 - 2021-06-17 12:11 - 000000000 ___DC C:\Users\Mathieu\Desktop\MGEN MAJ 2021-10-01 11:12 - 2021-04-23 09:43 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-01 11:12 - 2021-04-23 09:43 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-09-29 14:47 - 2019-11-27 16:28 - 000000000 ____D C:\Users\Mathieu\AppData\Roaming\balena-etcher 2021-09-29 14:36 - 2020-06-13 14:57 - 000002464 ____C C:\Users\Mathieu\Desktop\balenaEtcher.lnk 2021-09-25 21:44 - 2020-06-18 00:24 - 000000000 ____D C:\Users\Mathieu\AppData\Local\Everything 2021-09-25 21:44 - 2020-06-17 11:40 - 000000000 ____D C:\Users\Mathieu\AppData\Roaming\Everything 2021-09-25 14:04 - 2020-08-23 10:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-09-24 20:25 - 2021-09-02 14:53 - 000000000 ___DC C:\Users\Mathieu\Desktop\Photos à trier 2021-09-24 20:24 - 2018-09-09 19:24 - 000000000 ___DC C:\Users\Mathieu\AppData\Roaming\vlc 2021-09-21 18:57 - 2020-11-03 12:40 - 000000000 ___DC C:\Users\Mathieu\Desktop\ARTICLES 2021-09-21 17:02 - 2021-04-23 09:43 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-09-20 14:33 - 2021-04-23 09:45 - 001770970 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-09-20 14:33 - 2019-12-07 16:49 - 000794350 _____ C:\WINDOWS\system32\perfh00C.dat 2021-09-20 14:33 - 2019-12-07 16:49 - 000150464 _____ C:\WINDOWS\system32\perfc00C.dat 2021-09-17 11:24 - 2021-04-23 09:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-09-17 11:24 - 2021-04-23 09:31 - 000008192 ___SH C:\DumpStack.log.tmp 2021-09-17 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-09-15 22:23 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-09-15 22:22 - 2021-04-23 09:32 - 000485224 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-09-15 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-09-15 22:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-09-15 22:19 - 2021-04-15 18:18 - 000000000 ___DC C:\Users\Mathieu\Desktop\Annonces 2021-09-15 19:04 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-09-15 18:35 - 2017-01-02 12:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2021-09-15 18:34 - 2016-12-22 20:33 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-09-15 18:27 - 2016-12-22 20:33 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-09-14 17:06 - 2021-09-03 10:53 - 000000715 ____C C:\Users\Mathieu\Desktop\Nouveau document texte.txt 2021-09-11 16:56 - 2021-04-29 16:48 - 000000000 ___DC C:\Users\Mathieu\Desktop\Candidature 2021 2021-09-08 21:47 - 2020-08-23 10:29 - 000605520 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-09-08 21:47 - 2020-08-23 10:29 - 000486736 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-09-08 11:57 - 2018-02-18 17:21 - 000000000 ___DC C:\Users\Mathieu\AppData\Local\PlaceholderTileLogoFolder ==================== Fichiers à la racine de certains dossiers ======== 2016-12-22 15:59 - 2021-10-07 10:23 - 000000184 ____C () C:\Users\Mathieu\AppData\Roaming\sp_data.sys 2020-10-31 12:07 - 2020-10-31 12:07 - 000000410 _____ () C:\Users\Mathieu\AppData\Local\oobelibMkey.log 2020-06-09 18:42 - 2020-06-09 19:27 - 000000600 _____ () C:\Users\Mathieu\AppData\Local\PUTTY.RND ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================