Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2022 01 Exécuté par Manga (administrateur) sur DESKTOP-L983AFA (Megaport MS-7C96) (03-07-2022 16:34:44) Exécuté depuis C:\Users\Manga\Desktop Profils chargés: Manga Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1806 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe ->) (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\HidKeyboardEmulator.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.22002.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.22002.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2> (services.exe ->) (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe (services.exe ->) (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe (services.exe ->) (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1790_none_7df2aec07ca10e81\TiWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [] => [X] HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [5408624 2022-07-03] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [267072 2021-11-25] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [] => [X] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-692679729-4045527401-1774557797-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3532928 2022-05-07] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-692679729-4045527401-1774557797-1001\...\Run: [] => [X] HKU\S-1-5-21-692679729-4045527401-1774557797-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-692679729-4045527401-1774557797-1001\...\Run: [MicrosoftEdgeAutoLaunch_DB8FDEAB484A8DDB38AB7B0A79DE58F9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-06-30] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-692679729-4045527401-1774557797-1001\...\MountPoints2: {7ed57190-49f1-11ec-84cd-28ee5200b0ed} - "D:\setup.exe" HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3532928 2022-05-07] (Razer USA Ltd. -> Razer Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-29] (Google LLC -> Google LLC) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0313F8C2-3C36-4197-ADE2-89A54368D29F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {171062C1-EC07-4368-9702-BDB7BE4A8109} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {19B55D47-56B2-4C04-8316-CA55438650F1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {23E80054-F94E-4B0B-8E29-BD703C64B227} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [6692208 2022-05-19] (AVG Technologies USA, LLC -> AVG Technologies) Task: {2DD10377-A2CE-4F56-8C59-320A703EC6FB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {3136EFD0-4B59-47E4-9087-E0FC87BE096D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {36133492-CCB1-45FA-BDE7-35CB8F326112} - System32\Tasks\CCleanerSkipUAC - Manga => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {389AAB2E-FD60-41B6-836E-0A0DB279A5A3} - System32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe -> /i "C:\Users\Manga\AppData\Local\Temp\AIE2E1C.tmp" AI_SETUPEXEPATH="C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" SETUPEXEDIR="C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\" ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS="1" PRIMARYFOLDER="APPDIR" ROOTDRIVE="C:\" TRANSFORMS=":1036" AI_PREREQFILES="C:\Users\Manga\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe" AI_PREREQDIRS="C:\Users\Manga\AppData\Roaming" AI_MISSING_PREREQS="Visual C++ Redistributable for Visual Studio 2017 x64" AI_SETUPEXEPATH="C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" SETUPEXEDIR="C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\" AI_INSTALL="1" BIPROCESSTIME="2022-01-26T17:48:29.9564235Z" URL2="company.wizards.com/fr/legal/arenas-privacy-policy" POLICY="Politique de confidentialité" TARGETLOCKED="TRUE" TERMS="Conditions d'utilisation" URL1="company.wizards.com/fr/legal/terms" AI_BOOTSTRAPPERLANG="1036" TARGETDIR="C:\" APPDIR="C:\Program Files\Wizards of the Coast\MTGA\" AI_SETUPEXEPATH_ORIGINAL="C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" Task: {3A54A6C0-161E-422D-86E2-33E1FBE823F6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {5ADA58DA-EB22-4CC2-984A-E7E7E7203EBD} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4615024 2022-07-03] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 020f92d0-de8e-4454-a60c-bc8d56551cd8 Task: {630E41C7-BC1F-42AE-B556-A7823282F2E4} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {63829362-BC7A-402D-82FC-33B71C333FE5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {731659D1-A939-49B3-BAE1-D88226AEFEA1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {747923B3-7E1D-48EF-8E56-6A5EB137ED25} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {946C65D8-823D-4EA9-BB71-4DD576DD6628} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {983512C5-6A61-4371-BCCF-07FB9421CC02} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {AE041178-3BB1-4D3C-8185-B28535260DDF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {AE708B34-5BFD-43FC-9AA4-29DE13A329A0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {B693DCBC-EF2F-4650-AC34-106E68621414} - System32\Tasks\GoogleUpdateTaskMachineCore{ABB2588E-0900-4077-A870-45CA725B468A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-29] (Google LLC -> Google LLC) Task: {B978FF4B-3822-4463-840C-31290EEEC0B8} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {D6C55D9F-30CE-44E8-90E8-07A582432842} - System32\Tasks\GoogleUpdateTaskMachineUA{F127ED61-27D0-4566-9419-60858E651BC7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-29] (Google LLC -> Google LLC) Task: {F4D6BA0C-CDDF-441A-9CF7-1C5D6B0399F8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeԨ/i C:\Users\Manga\AppData\Local\Temp\AIE2E1C.tmp AI_SETUPEXEPATH=C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=C:\ TRANSFORMS=:1036 AI_PREREQFILES=C:\Users\Manga\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\Manga\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2022-01-26T17:48:29.9564235Z URL2=company.wizards.com/fr/legal/arenas-privacy-policy POLICY=Politique de confidentialité TARGETLOCKED=TRUE TERMS=Conditions d'utilisation URL1=company.wizards.com/fr/legal/terms AI_BOOTSTRAPPERLANG=1036 TARGETDIR=C:\ APPDIR=C:\Program Files\Wizards of the Coast\MTGA\ AI_SETUPEXEPATH_ORIGINAL=C:\Program Files\Wizards of the Coast\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{a31796c0-126e-4a6a-ad1a-e01e83568863}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{d3f62521-db40-459e-a08f-edd591fe4c99}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{d77de66a-8d11-4293-ae24-daf03a1b0117}: [DhcpNameServer] 192.168.120.250 Edge: ======= Edge Profile: C:\Users\Manga\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-03] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default [2022-07-03] CHR Notifications: Default -> hxxps://fr.duolingo.com; hxxps://www.reddit.com; hxxps://www.tiktok.com; hxxps://www.youtube.com CHR StartupUrls: Default -> "hxxps://www.google.fr/" CHR Extension: (BetterTTV) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-06-26] CHR Extension: (Save IG Live Story) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceohfjpachemiffpnhefmfhpeilkenhm [2021-10-28] CHR Extension: (Chrome IG Story) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnmhknopedmipekbmmilfjgpefeonmog [2021-10-28] CHR Extension: (Return YouTube Dislike) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-05-16] CHR Extension: (Google Docs hors connexion) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-15] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-01] CHR Extension: (Docsumo Free OCR Software) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmmlfacoffajllfpdfkdikgmoogbnph [2022-06-23] CHR Extension: (Raw Manga Fan) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmojhocblnlnjboabeengdkgogipihmg [2022-04-17] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-27] CHR Extension: (Manga Translator) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooikipggipaohjibkmoiacmmlilgokn [2022-07-01] CHR Profile: C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-03] CHR Profile: C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-03] CHR Extension: (YouTube) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-09-11] CHR Extension: (Google Docs hors connexion) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-11] CHR Profile: C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-07-03] CHR Extension: (Google Docs hors connexion) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Manga\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-07] CHR Profile: C:\Users\Manga\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-03] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111312 2022-07-01] (Microsoft Corporation -> Microsoft Corporation) R2 CoreScanner; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe [690688 2019-09-19] (Zebra Technologies) [Fichier non signé] R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [7682416 2022-07-03] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S2 GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [75240 2022-05-25] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8677120 2022-06-29] (Malwarebytes Inc. -> Malwarebytes) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [11614120 2022-05-26] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [299136 2022-05-06] (Razer USA Ltd. -> Razer Inc.) R2 rsmdriverproviderservice; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe [136192 2019-09-23] (Zebra Technologies) [Fichier non signé] R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2022-02-18] (Razer USA Ltd. -> Razer Inc.) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [291320 2021-11-25] (Razer USA Ltd. -> Razer Inc.) R2 ScnSrvc; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe [288256 2019-09-19] (Zebra Technologies) [Fichier non signé] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_246e95e4066041ad\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2022-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_cb8dd04b85ac9a58\iaLPSS2_GPIO2_TGL.sys [128680 2020-12-23] (Intel Corporation -> Intel Corporation) S3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_f9221cb694ca85da\iaLPSS2_I2C_TGL.sys [201896 2020-12-23] (Intel Corporation -> Intel Corporation) R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2022-04-20] (MyTestCertificate -> Oracle Corporation) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-06-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [192960 2022-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74680 2022-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181992 2022-07-03] (Malwarebytes Inc. -> Malwarebytes) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0085; C:\Windows\System32\drivers\RzDev_0085.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [2522256 2022-05-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-07-03 16:34 - 2022-07-03 16:35 - 000026226 _____ C:\Users\Manga\Desktop\FRST.txt 2022-07-03 16:34 - 2022-07-03 16:34 - 000000000 ____D C:\FRST 2022-07-03 16:33 - 2022-07-03 16:33 - 002369024 _____ (Farbar) C:\Users\Manga\Downloads\FRST64.exe 2022-07-03 16:33 - 2022-07-03 16:33 - 002369024 _____ (Farbar) C:\Users\Manga\Desktop\FRST64.exe 2022-07-03 16:31 - 2022-07-03 16:31 - 000290397 _____ C:\Users\Manga\Desktop\ZHPDiag.txt 2022-07-03 16:25 - 2022-07-03 16:31 - 000000000 ____D C:\Users\Manga\AppData\Roaming\ZHP 2022-07-03 16:25 - 2022-07-03 16:25 - 000000872 _____ C:\Users\Manga\Desktop\ZHPSuite.lnk 2022-07-03 16:25 - 2022-07-03 16:25 - 000000000 ____D C:\Users\Manga\AppData\Local\ZHP 2022-07-03 16:24 - 2022-07-03 16:24 - 003487984 _____ (Nicolas Coolman) C:\Users\Manga\Downloads\ZHPSuite.exe 2022-07-03 16:19 - 2022-07-03 16:19 - 000192960 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-07-03 16:19 - 2022-07-03 16:19 - 000181992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-07-03 16:19 - 2022-07-03 16:19 - 000074680 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-07-03 16:12 - 2022-07-03 16:13 - 001393124 _____ C:\Windows\Minidump\070322-7812-01.dmp 2022-07-03 16:11 - 2022-07-03 16:12 - 966554858 _____ C:\Windows\MEMORY.DMP 2022-07-03 16:11 - 2022-07-03 16:11 - 002353508 _____ C:\Windows\Minidump\070322-7718-01.dmp 2022-07-03 15:39 - 2022-07-03 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed 2022-07-03 15:39 - 2022-07-03 15:39 - 000000000 ____D C:\Program Files\WhoCrashed 2022-07-03 15:38 - 2022-07-03 15:38 - 010692312 _____ (Resplendence Software Projects Sp. ) C:\Users\Manga\Downloads\whocrashed-6-70.exe 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____D C:\Windows\system32\DAX3 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____D C:\Windows\system32\DAX2 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____D C:\Windows\LastGood 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 ____D C:\Program Files\Realtek 2022-07-03 13:29 - 2022-07-03 13:29 - 000000000 _____ C:\Windows\system32\fpfftResultsFile.txt 2022-07-03 13:28 - 2022-07-03 16:19 - 000000000 ____D C:\ProgramData\AVG 2022-07-03 13:28 - 2022-07-03 13:28 - 000037200 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe 2022-07-03 13:28 - 2022-07-03 13:28 - 000002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk 2022-07-03 13:28 - 2022-07-03 13:28 - 000002169 _____ C:\Users\Public\Desktop\AVG Driver Updater.lnk 2022-07-03 13:28 - 2022-07-03 13:28 - 000000000 ____D C:\Windows\system32\Tasks\AVG 2022-07-03 13:28 - 2022-07-03 13:28 - 000000000 ____D C:\Users\Manga\AppData\Roaming\AVG 2022-07-03 13:28 - 2022-07-03 13:28 - 000000000 ____D C:\Program Files\Common Files\AVG 2022-07-03 13:28 - 2022-07-03 13:28 - 000000000 ____D C:\Program Files\AVG 2022-07-02 22:20 - 2022-07-02 22:20 - 000000000 ____D C:\Users\Manga\AppData\Local\DBG 2022-07-02 22:19 - 2022-07-02 22:19 - 000000000 ____D C:\Windows\LastGood.Tmp 2022-07-02 22:18 - 2022-06-24 05:05 - 000041984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001905928 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-07-02 22:17 - 2022-06-24 19:23 - 001905928 _____ C:\Windows\system32\vulkaninfo.exe 2022-07-02 22:17 - 2022-06-24 19:23 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-07-02 22:17 - 2022-06-24 19:23 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-07-02 22:17 - 2022-06-24 19:23 - 001472552 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001432336 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001432336 _____ C:\Windows\system32\vulkan-1.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001213424 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-07-02 22:17 - 2022-06-24 19:23 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-07-02 22:17 - 2022-06-24 19:20 - 000866344 _____ C:\Windows\system32\nvofapi64.dll 2022-07-02 22:17 - 2022-06-24 19:20 - 000687592 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-07-02 22:17 - 2022-06-24 19:19 - 002127848 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-07-02 22:17 - 2022-06-24 19:19 - 001537072 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-07-02 22:17 - 2022-06-24 19:19 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-07-02 22:17 - 2022-06-24 19:19 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-07-02 22:17 - 2022-06-24 19:19 - 000715304 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-07-02 22:17 - 2022-06-24 19:18 - 010270272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 008804416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 003067456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 001608232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 001059880 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-07-02 22:17 - 2022-06-24 19:18 - 000456200 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-07-02 22:17 - 2022-06-24 19:17 - 005734408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-07-02 22:17 - 2022-06-24 19:17 - 005363264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-07-02 22:17 - 2022-06-24 19:17 - 000853568 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-07-02 22:17 - 2022-06-24 19:15 - 006366912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-07-02 22:17 - 2022-06-24 05:05 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-06-30 19:20 - 2022-06-30 19:20 - 000000000 ____D C:\Users\Manga\AppData\Roaming\Valve Corporation 2022-06-29 19:42 - 2022-06-29 19:42 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{F127ED61-27D0-4566-9419-60858E651BC7} 2022-06-29 19:42 - 2022-06-29 19:42 - 000003542 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{ABB2588E-0900-4077-A870-45CA725B468A} 2022-06-29 19:42 - 2022-06-29 19:42 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-06-29 19:42 - 2022-06-29 19:42 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-06-29 19:18 - 2022-06-29 19:18 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-06-29 19:18 - 2022-06-29 19:18 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-06-29 19:18 - 2022-06-29 19:18 - 000011801 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-06-29 19:12 - 2022-06-29 19:12 - 000000000 ___HD C:\$WinREAgent 2022-06-28 11:53 - 2022-06-28 11:53 - 000000000 ____D C:\Users\Manga\AppData\Roaming\NCH Software 2022-06-28 11:53 - 2022-06-28 11:53 - 000000000 ____D C:\ProgramData\NCH Software 2022-06-28 11:28 - 2022-06-28 11:28 - 000000000 ____D C:\Users\Manga\AppData\Local\ToastNotificationManagerCompat 2022-06-21 09:32 - 2022-06-21 09:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GENDAI 2022-06-21 07:55 - 2022-06-21 07:55 - 000000000 ____D C:\Users\Manga\AppData\LocalLow\uTorrent.WebView2 2022-06-17 16:42 - 2022-06-17 16:51 - 000000000 ____D C:\Users\Manga\AppData\Local\jabby 2022-06-17 08:28 - 2022-06-17 08:28 - 000000000 ____D C:\Users\Manga\AppData\LocalLow\Retsym The Nam 2022-06-16 04:37 - 2022-06-16 04:37 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-06-16 04:37 - 2022-06-16 04:37 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-06-16 04:36 - 2022-06-16 04:36 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-06-10 10:44 - 2022-06-10 10:44 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-06-10 10:44 - 2022-06-10 10:44 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2022-06-02 19:09 - 2022-06-02 19:13 - 000000000 ____D C:\Users\Manga\AppData\Roaming\CC 2022-06-02 19:09 - 2022-06-02 19:09 - 000000000 ____D C:\Users\Manga\AppData\Local\UniSDK 2022-06-02 19:09 - 2022-06-02 19:09 - 000000000 ____D C:\Users\Manga\AppData\Local\Netease 2022-06-02 14:29 - 2022-06-02 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo Immortal 2022-05-29 15:51 - 2022-05-29 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2022-05-28 17:39 - 2022-05-28 17:39 - 000000000 ____D C:\AdwCleaner 2022-05-28 17:15 - 2022-05-28 17:15 - 000000000 ____D C:\ProgramData\Piriform 2022-05-28 12:32 - 2022-07-02 21:40 - 000000000 ____D C:\ProgramData\Epic 2022-05-28 12:32 - 2022-05-28 12:32 - 000000000 ____D C:\Users\Manga\AppData\Local\ProjectN 2022-05-28 12:32 - 2022-05-28 12:32 - 000000000 ____D C:\Users\Manga\AppData\Local\netmarblelauncher-updater 2022-05-26 02:35 - 2022-05-26 01:24 - 011614120 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des 2022-05-26 02:34 - 2022-05-26 02:34 - 000000016 _____ C:\ProgramData\mntemp 2022-05-26 02:34 - 2022-05-26 02:34 - 000000000 ____D C:\Program Files\Common Files\INCA Shared 2022-05-24 17:47 - 2022-05-24 18:15 - 000000000 ____D C:\Users\Manga\Desktop\Detroit Become Human 2022-05-16 16:09 - 2022-05-16 16:09 - 000000000 ____D C:\Users\Manga\AppData\LocalLow\Unity 2022-05-13 13:16 - 2022-05-13 13:16 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-05-12 13:11 - 2022-05-12 13:11 - 000000028 ____H C:\.GamingRoot 2022-05-12 13:11 - 2022-05-12 13:11 - 000000000 ____D C:\XboxGames 2022-05-11 18:15 - 2022-05-19 09:31 - 000000570 _____ C:\Users\Manga\AppData\Local\Params.xml 2022-05-08 05:42 - 2022-05-08 05:42 - 000000872 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\King Arthur Knight's Tale.lnk 2022-04-23 23:13 - 2022-04-23 23:13 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-04-23 00:14 - 2022-04-23 00:14 - 000000000 ____D C:\Users\Manga\AppData\LocalLow\Cloudlet Games 2022-04-14 19:19 - 2022-04-14 19:19 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-04-14 19:19 - 2022-04-14 19:19 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2022-04-14 19:19 - 2022-04-14 19:19 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2022-04-13 13:55 - 2022-04-13 13:55 - 000000000 ____D C:\Users\Manga\AppData\LocalLow\ZAUM Studio 2022-04-13 13:54 - 2022-04-13 13:54 - 000001740 _____ C:\Users\Public\Desktop\Disco Elysium.lnk 2022-04-13 13:54 - 2022-04-13 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disco Elysium [GOG.com] 2022-04-10 19:03 - 2022-04-10 19:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slay the Spire [GOG.com] 2022-04-10 17:44 - 2022-04-10 17:44 - 000000000 ____D C:\Users\Manga\AppData\Local\TRAGsoft 2022-04-06 08:25 - 2022-04-06 08:25 - 001184712 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-07-03 16:26 - 2021-06-16 08:34 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-03 16:26 - 2021-05-07 10:57 - 000780698 _____ C:\Windows\system32\perfh00C.dat 2022-07-03 16:26 - 2021-05-07 10:57 - 000149364 _____ C:\Windows\system32\perfc00C.dat 2022-07-03 16:26 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-07-03 16:21 - 2021-11-26 05:21 - 000000000 ____D C:\Program Files\CCleaner 2022-07-03 16:21 - 2021-08-27 19:07 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-03 16:19 - 2021-08-27 17:36 - 000000000 ____D C:\Users\Manga 2022-07-03 16:19 - 2021-06-16 08:32 - 000000000 ____D C:\ProgramData\NVIDIA 2022-07-03 16:19 - 2021-06-16 08:26 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-03 16:19 - 2021-06-16 08:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-03 16:19 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-03 16:19 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-07-03 16:13 - 2021-08-27 17:53 - 000000000 ____D C:\Windows\Minidump 2022-07-03 16:13 - 2021-06-16 08:46 - 000000185 _____ C:\Windows\system32\symbscnr.log.bak 2022-07-03 16:12 - 2021-06-16 08:26 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-03 15:10 - 2021-10-28 00:10 - 000000000 ____D C:\Users\Manga\Desktop\Kelly Vedovelli 1 2022-07-03 15:06 - 2021-08-27 17:47 - 000000000 ____D C:\Users\Manga\AppData\Local\D3DSCache 2022-07-03 14:52 - 2021-12-09 16:12 - 000000000 ____D C:\Users\Manga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-07-03 14:50 - 2021-11-06 15:22 - 000000000 ____D C:\Users\Manga\AppData\Local\Opera Software 2022-07-03 14:50 - 2021-08-27 17:47 - 000000000 ____D C:\Users\Manga\AppData\Local\Packages 2022-07-03 14:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-03 14:50 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-03 14:49 - 2021-11-04 16:24 - 000000000 ____D C:\Games 2022-07-03 14:48 - 2021-09-11 15:30 - 000000000 ____D C:\Users\Manga\AppData\Roaming\discord 2022-07-03 14:48 - 2021-09-11 15:30 - 000000000 ____D C:\Users\Manga\AppData\Local\Discord 2022-07-03 13:33 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-07-02 22:23 - 2021-08-31 12:14 - 000000000 ____D C:\Users\Manga\AppData\Local\NVIDIA 2022-07-02 22:19 - 2021-08-27 17:52 - 000000000 ____D C:\Users\Manga\AppData\Local\CrashDumps 2022-07-02 22:19 - 2021-06-16 08:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-07-01 22:09 - 2021-06-16 08:26 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-01 22:09 - 2021-06-16 08:26 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-07-01 20:28 - 2021-06-16 09:01 - 000000000 ____D C:\Program Files\Microsoft Office 2022-07-01 18:08 - 2021-08-31 18:47 - 000000000 ____D C:\ProgramData\Riot Games 2022-07-01 01:09 - 2021-09-10 05:02 - 000000000 ____D C:\Users\Manga\AppData\Local\User Data 2022-07-01 00:35 - 2021-09-05 03:03 - 000000000 ____D C:\Users\Manga\AppData\Roaming\RenPy 2022-06-30 20:28 - 2021-12-11 15:48 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-692679729-4045527401-1774557797-1001 2022-06-30 20:28 - 2021-08-27 17:48 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-692679729-4045527401-1774557797-1001 2022-06-30 20:28 - 2021-08-27 17:48 - 000002424 _____ C:\Users\Manga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-06-30 05:01 - 2021-06-16 08:46 - 000000000 ____D C:\ProgramData\Package Cache 2022-06-30 05:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration 2022-06-29 19:33 - 2022-01-26 09:16 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-06-29 19:33 - 2021-12-09 15:01 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-06-29 19:33 - 2021-12-09 15:01 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-06-29 19:33 - 2021-12-09 15:00 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-06-29 19:33 - 2021-12-09 15:00 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-06-29 19:33 - 2021-12-09 15:00 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-06-29 19:21 - 2021-06-16 08:26 - 000438944 _____ C:\Windows\system32\FNTCACHE.DAT 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2022-06-29 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-06-29 19:20 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-06-29 19:18 - 2021-06-16 08:28 - 003010048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-06-29 19:03 - 2021-10-12 00:47 - 000000000 ____D C:\Users\Manga\AppData\Roaming\Disc-Soft 2022-06-29 19:03 - 2021-10-12 00:46 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-06-28 12:41 - 2021-09-11 15:42 - 000000000 ____D C:\Users\Manga\AppData\Local\ElevatedDiagnostics 2022-06-26 03:40 - 2021-11-19 21:17 - 000144872 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 002762216 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 000402920 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 000198120 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-06-26 03:40 - 2021-09-11 17:11 - 000062928 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-06-25 07:15 - 2021-12-01 19:32 - 000000000 ____D C:\Users\Manga\.Ld2VirtualBox 2022-06-25 03:33 - 2021-06-16 08:28 - 000000000 ____D C:\ProgramData\Packages 2022-06-24 19:15 - 2021-09-02 15:58 - 007483928 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-06-24 05:05 - 2021-06-16 08:32 - 000129032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2022-06-23 15:34 - 2021-09-13 05:36 - 000000000 ____D C:\Users\Manga\AppData\Local\BitTorrentHelper 2022-06-23 02:36 - 2021-06-16 08:26 - 000000000 ____D C:\Windows\system32\Drivers\wd 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-06-16 07:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-06-16 07:39 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2022-06-16 05:27 - 2021-06-16 08:26 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-06-16 05:27 - 2021-06-16 08:26 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-06-15 09:09 - 2021-06-16 08:34 - 000000000 ____D C:\Windows\system32\MRT 2022-06-15 09:08 - 2021-06-16 08:34 - 145918784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======== 2021-12-01 19:32 - 2021-12-01 19:32 - 000000068 _____ () C:\Users\Manga\AppData\Roaming\changzhi_leidian.data 2021-12-01 19:32 - 2021-12-01 19:32 - 000000102 _____ () C:\Users\Manga\AppData\Roaming\changzhi_leidianmac.data 2022-05-11 18:15 - 2022-05-19 09:31 - 000000570 _____ () C:\Users\Manga\AppData\Local\Params.xml ==================== SigCheckExt ========================= 2021-09-11 17:11 - 2022-06-26 03:40 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-07-03 16:33 - 2022-07-03 16:33 - 002369024 _____ (Farbar) C:\Users\Manga\Desktop\FRST64.exe 2022-07-03 16:33 - 2022-07-03 16:33 - 002369024 _____ (Farbar) C:\Users\Manga\Downloads\FRST64.exe 2022-07-03 16:24 - 2022-07-03 16:24 - 003487984 _____ (Nicolas Coolman) C:\Users\Manga\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de demarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} timeout 1 Gestionnaire de demarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {da66fbb0-d5fb-11eb-95f0-18c04d0fd442} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de demarrage Windows ----------------------------- identificateur {5043e7b5-d5a8-11eb-849e-18c04d0fd442} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5043e7b6-d5a8-11eb-849e-18c04d0fd442} path \windows\system32\winload.efi description Windows Recovery Environment locale en-us inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5043e7b6-d5a8-11eb-849e-18c04d0fd442} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de demarrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {5043e7b5-d5a8-11eb-849e-18c04d0fd442} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {da66fbb0-d5fb-11eb-95f0-18c04d0fd442} nx OptIn bootmenupolicy Standard Reprendre a partir de la mise en veille prolongee ------------------------------------------------- identificateur {da66fbb0-d5fb-11eb-95f0-18c04d0fd442} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {5043e7b5-d5a8-11eb-849e-18c04d0fd442} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de memoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Windows Memory Diagnostic locale fr-FR inherit {globalsettings} badmemoryaccess Yes Parametres EMS -------------- identificateur {emssettings} bootems No Parametres du debogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de memoire RAM ---------------------- identificateur {badmemory} Parametres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Parametres du chargeur de demarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Parametres de l’hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Parametres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de peripherique ----------------------- identificateur {5043e7b6-d5a8-11eb-849e-18c04d0fd442} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================