Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-08-2022 Exécuté par user (administrateur) sur USER-PC (ASUS All Series) (05-08-2022 17:25:56) Exécuté depuis C:\Users\user\Desktop Profils chargés: user Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1826 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (services.exe ->) (Hi-Rez Studios) [Fichier non signé] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9068040 2016-11-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) HKU\S-1-5-21-768028322-443926211-1286405372-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.80\Installer\chrmstp.exe [2022-08-04] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {06B603BB-F0BE-49EA-8986-C49CBE3AC848} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier) Task: {0B487D48-090C-4533-AE8C-219FAF8FFC55} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {0DA544F5-4EBA-4562-8078-4D6BD9072E9B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier) Task: {1343900D-D337-49EA-9F59-4D9A4DBDD72A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Pas de fichier) Task: {19158BB9-5E5D-4058-8B55-A5266B0D0E36} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {19740F5A-9893-4AE4-A742-D46BC9C81F99} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {1B18E76E-F679-4C00-AF4B-6F98AD3141FC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Pas de fichier) Task: {1C020CE6-CC42-443D-9857-BBBFADCF3A4B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {1C13C0EC-C95B-41C1-865D-996727906FAC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {1E99E82D-71AB-4C01-A465-EE7241B40C84} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2192D9D5-23B2-4F26-B2A2-F25599BDB0CE} - System32\Tasks\{D86EE1C9-C50A-4CA8-BC64-6E0B73590769} => C:\Windows\system32\pcalua.exe -a C:\Users\user\Downloads\VirtualDub-1.10.4\auxsetup.exe -d C:\Users\user\Downloads\VirtualDub-1.10.4 Task: {22623394-0810-4FC0-A906-60A672783B72} - System32\Tasks\GoogleUpdateTaskMachineCore{A9EEFB17-46EE-458F-A0D5-AE67D72B8F96} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-16] (Google LLC -> Google LLC) Task: {27F37F8C-3056-41FD-9AE5-BC3E9C7F5F11} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {28F21288-F1CA-4D53-8911-DA1FA40F0391} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe -LogonOrUnlock (Pas de fichier) Task: {2AB84D41-40E5-4BE3-BC4F-91BAF37BF749} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2E4E1B7F-E581-4F4D-B262-90EC7B5A9EB9} - System32\Tasks\GoogleUpdateTaskMachineUA{D391FBF9-81BB-44A6-916A-46AC4C169DB9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-16] (Google LLC -> Google LLC) Task: {3144FAA1-5C38-46C5-BE20-0576501EEAD8} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier) Task: {39DBBFA7-10EA-4D1D-BCA3-DB804A94C3C9} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier) Task: {39F9C3A4-540D-462A-860C-36DC8E22837E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {45F6E1DF-77FC-400B-AA50-41850C1FE400} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (Pas de fichier) Task: {463B6545-BB74-4327-803D-4875800516F9} - System32\Tasks\{533E72F0-4AC0-4140-B1EC-FF788AFEE1A8} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller" Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB} Task: {4F68A6DC-14E7-4311-90CA-492483DD5F5D} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe -Daily (Pas de fichier) Task: {51FBB747-3594-4FEE-A2C9-40D9970296D9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {52B5970F-EF68-4CA2-90DC-FC961BCCF285} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask (Pas de fichier) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5BC56FD2-DFFA-43D1-82BD-508496D8A531} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5BF22872-7250-4945-AFD5-5BD6BB207048} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier) Task: {5F4F2F16-9D53-4B49-8648-D71F1E8952C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6114CA4E-5769-46FA-8A3F-FCF7A3627DEA} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION Task: {632D3DA1-2998-4DC3-8FE2-362A5FA8B554} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Pas de fichier) Task: {68B413EF-AFD1-4EEC-88E1-830A21CE11B8} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Pas de fichier) Task: {6F551C32-9DF5-40E1-B931-C5DE839BF755} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-768028322-443926211-1286405372-1000_0 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [417280 2022-07-30] (Microsoft Windows -> Microsoft Corporation) Task: {7076C05D-7D90-4504-A2E9-751438C8A38D} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {712011B3-C92D-4BB4-B928-3AE871FBF324} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier) Task: {715BC78B-15F1-4987-8928-4A81A74AD9A7} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges (Pas de fichier) Task: {7A243B12-52AF-4C15-BD97-CDD0D31800EC} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier) Task: {7F69F3C3-B519-4A25-8C10-B1704076D686} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {81697EA2-E0D5-4E09-BC96-91DBF1FD369E} - System32\Tasks\{275B388B-80D1-4B1F-B9DA-94BB37982A54} => C:\Users\user\Desktop\YGOPRO\ygopro_vs_links_beta\ygopro_vs_links.exe (Pas de fichier) Task: {839DCCC5-64CC-4672-875A-136260E7377A} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {8A2A1085-6383-4289-A913-D54F34071DC7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8DBFFAE9-87A4-40A9-B6FE-12DB3062CA25} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {90372A51-1F0C-42C6-8FF1-AB434F0A141F} - System32\Tasks\{65FFC26B-9139-4D09-994A-C2F4DCE5E997} => C:\Windows\system32\pcalua.exe -a "C:\Users\user\Downloads\dxwebsetup (1).exe" -d C:\Users\user\Downloads Task: {970902A9-146A-4F71-8131-E8A37EBC3E43} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier) Task: {99707FDB-1AFD-4A32-8228-E43FB4B26181} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier) Task: {9AAE1644-4B88-4045-B614-CB001A143072} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION Task: {A3BAC5AC-2370-4397-9A71-966E8DF83896} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier) Task: {A87B2E59-4602-4392-9A3B-EEC27967183C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Pas de fichier) Task: {A8BBB19E-737B-4FF9-90A6-DA49400C2931} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} Task: {B2B21413-6F2B-411A-9B0A-1EA492F6D50B} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {BACBD726-A41A-4110-B8B8-B5ED6C5680F3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C270E574-11AD-4F38-8C4D-2A80E65CDDCB} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier) Task: {C5F60F5E-5CA2-4B72-9F84-9667B37291DE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier) Task: {CE442965-D112-4881-A0E0-4B94099D2EFF} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier) Task: {D1C7CB1B-F8BD-4C5B-8320-1CE25EED34F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D45024AA-D2C5-4E4C-AF11-9F028B79B144} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D77F392E-73BB-4B26-B44B-71A1941D0565} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier) Task: {DCF5FE0C-9C73-4B9A-B1E8-4CCA4FB855E9} - System32\Tasks\{59675EE7-1E89-41D0-8545-9D9877CB0F32} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.23.85.105/fr/abandoninstall?page=tsPlugin Task: {E5239EB0-93DF-45A0-9EE3-C5DA8FD0B23C} - System32\Tasks\ASUS\i-Setup091702 => C:\Windows\Chipset\AsusSetup.exe [1203032 2013-08-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {E947238C-D06B-4C27-8CDF-397923B6E83F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {EA1EC90C-6A48-4ACA-83DA-5509DE4C44FB} - System32\Tasks\ASUS\i-Setup => C:\Windows\Chipset\AsusSetup.exe [1203032 2013-08-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {EB76306E-921C-4447-B072-16FA235A3677} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Pas de fichier) Task: {F201A68A-A5E2-4C18-9BB7-229F04F5C393} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Pas de fichier) Task: {F26EF856-FA3B-49F1-8A71-E5A6410EBA6C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier) Task: {F5AF300D-380C-4D05-A1E6-0C4AABB8DBF1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier) Task: {F78529BB-7469-46D3-9753-A7DEDB65CEB9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe) Task: {F99EA742-1F42-458B-9AF4-6E282AC36A64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FFAF4E72-B31F-47FA-81EF-E5AA8548D579} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{792C65D8-3F0E-46D2-81A4-53DB7C06DCC0}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{949702A1-FEAA-4F2C-A64E-48A929E02C1D}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-28] FireFox: ======== FF DefaultProfile: orncd9r7.default FF DefaultProfile: ypzkuhxv.default FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\orncd9r7.default [2022-07-31] FF Extension: (AdBlocker for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\orncd9r7.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2022-07-27] FF Extension: (uBlock Origin) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\orncd9r7.default\Extensions\uBlock0@raymondhill.net.xpi [2022-07-27] FF Extension: (Avast Online Security & Privacy) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\orncd9r7.default\Extensions\wrc@avast.com.xpi [2022-07-27] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\orncd9r7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-07-27] FF Extension: (Pas de nom) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [non trouvé(e)] FF ProfilePath: C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default [2021-10-24] FF Extension: (Czech (CZ) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-cs@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Deutsch (DE) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-de@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (English (US) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-en-US@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Español (España) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-es-ES@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Finnish Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-fi@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Français Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-fr@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Galego (España) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-gl@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Hebrew (IL) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-he@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Magyar (HU) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-hu@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Italiano (IT) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-it@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Japanese Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-ja@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Korean (KR) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-ko@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Nederlands (NL) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-nl@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Polski Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-pl@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Russian (RU) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-ru@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Slovenski jezik Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-sl@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (српски (sr) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-sr@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Svenska (SE) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-sv-SE@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-zh-CN@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\user\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\ypzkuhxv.default\Extensions\langpack-zh-TW@bluegriffon.org.xpi [2021-10-09] [] [non signé] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2022-05-03] (Adobe Systems Incorporated -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [Pas de fichier] FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2022-08-05] CHR Extension: (OCR - Image Reader) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhbhjjkcoghibhibegcmbomkbakkpdbo [2022-07-20] CHR Extension: (Tonarinoyj Translation Applicator) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceehmlgacfneaamnkhmbeiiaehacpeep [2022-06-16] CHR Extension: (uBlock Origin) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-06-19] CHR Extension: (Dark Reader) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-07-01] CHR Extension: (Ichigo Reader🍓: Translate Manga) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lepcfgkehgeiblekejomdmdklmjdmflp [2022-08-01] CHR Extension: (Project Naptha) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf [2022-06-16] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2022-07-25] CHR Extension: (Manga Translator) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooikipggipaohjibkmoiacmmlilgokn [2022-08-03] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] (ASUSTeK Computer Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-05-09] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [6161552 2021-09-12] (Int3 Software AB -> Int3 Software AB) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-03-29] (Hi-Rez Studios) [Fichier non signé] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> ) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-30] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-30] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-05 17:25 - 2022-08-05 17:27 - 000032118 _____ C:\Users\user\Desktop\FRST.txt 2022-08-05 17:24 - 2022-08-05 17:27 - 000000000 ____D C:\FRST 2022-08-05 17:23 - 2022-08-05 17:23 - 002370048 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe 2022-08-05 16:23 - 2022-08-05 16:23 - 000426445 _____ C:\Users\user\Desktop\ZHPDiag.txt 2022-08-05 15:58 - 2022-08-05 15:58 - 000000901 _____ C:\Users\user\Desktop\ZHPSuite.lnk 2022-08-05 15:58 - 2022-08-05 15:58 - 000000000 ____D C:\Users\user\AppData\Local\ZHP 2022-08-05 15:55 - 2022-08-05 15:55 - 003490032 _____ (Nicolas Coolman) C:\Users\user\Desktop\ZHPSuite.exe 2022-08-05 15:18 - 2022-08-05 15:18 - 002556344 _____ (Malwarebytes) C:\Users\user\Downloads\MBSetup (1).exe 2022-08-05 00:07 - 2022-08-05 00:08 - 075017049 _____ C:\Users\user\Downloads\ExtraDoomModv2.2.1.zip 2022-08-03 23:57 - 2022-08-03 23:57 - 006355550 _____ C:\Users\user\Downloads\hydrosphere.zip 2022-08-02 19:37 - 2022-08-02 19:37 - 000004032 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-768028322-443926211-1286405372-1000_0 2022-08-01 21:22 - 2022-08-03 22:23 - 000000113 _____ C:\Users\user\AppData\Roaming\D2Info0 2022-08-01 21:22 - 2022-08-01 21:22 - 000000000 ____D C:\Users\user\AppData\Roaming\[Worker].null 2022-07-31 19:20 - 2022-07-31 19:23 - 268040582 _____ C:\Users\user\Downloads\DKs HD Textures Lite Updated.rar 2022-07-31 14:08 - 2022-07-31 14:08 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk 2022-07-31 14:08 - 2022-07-31 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2022-07-31 14:08 - 2022-07-31 14:08 - 000000000 ____D C:\Program Files\Speccy 2022-07-31 14:07 - 2022-07-31 14:07 - 008995336 _____ (Piriform Software Ltd) C:\Users\user\Downloads\spsetup132.exe 2022-07-31 14:05 - 2022-07-31 14:05 - 000000000 ____D C:\Users\user\Desktop\Crystal disk 2022-07-31 14:04 - 2022-07-31 14:04 - 000000024 _____ C:\Users\user\Desktop\DiskInfo.ini 2022-07-31 13:58 - 2022-07-31 13:58 - 000012053 _____ C:\Users\user\Downloads\vandomizer_v104.zip 2022-07-31 10:30 - 2022-07-31 10:30 - 000806186 _____ C:\Users\user\Downloads\tdrr-lost.zip 2022-07-31 10:18 - 2022-07-31 10:18 - 004666376 _____ C:\Users\user\Downloads\li-gnrcwpn.zip 2022-07-31 10:16 - 2022-07-31 10:16 - 000176621 _____ C:\Users\user\Downloads\li-gnrcwpn-handssg.pk3 2022-07-31 09:50 - 2022-07-31 09:51 - 029251785 _____ C:\Users\user\Downloads\EVP (2).zip 2022-07-31 09:39 - 2022-07-31 09:39 - 029251751 _____ C:\Users\user\Downloads\EVP (1).zip 2022-07-30 23:13 - 2022-07-30 23:13 - 008788490 _____ C:\Users\user\Downloads\Doomunbrokenv1.9b.zip 2022-07-30 22:21 - 2022-07-30 22:22 - 029251858 _____ C:\Users\user\Downloads\EVP.zip 2022-07-30 16:33 - 2022-07-30 16:33 - 000000000 ____D C:\Users\user\Desktop\DHTP PBR 2022-07-30 14:06 - 2022-07-30 14:06 - 006212021 _____ C:\Users\user\Desktop\crystaldiskinfo-portable-8-17-4.zip 2022-07-30 13:01 - 2022-07-30 13:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-07-30 11:06 - 2022-08-04 01:56 - 000000000 ____D C:\Users\user\AppData\Roaming\Ankama Launcher 2022-07-30 11:06 - 2022-08-03 22:23 - 000000000 ____D C:\Users\user\AppData\Roaming\zaap 2022-07-30 11:06 - 2022-07-30 11:06 - 000002105 _____ C:\Users\Public\Desktop\Ankama Launcher.lnk 2022-07-30 11:06 - 2022-07-30 11:06 - 000000000 ____D C:\Users\user\AppData\Local\zaap-updater 2022-07-30 11:06 - 2022-07-30 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ankama 2022-07-30 11:05 - 2022-07-30 11:05 - 000881760 _____ (Ankama) C:\Users\user\Downloads\Ankama Launcher-Setup.exe 2022-07-30 11:05 - 2022-07-30 11:05 - 000000000 ____D C:\Program Files\Ankama 2022-07-30 09:36 - 2022-08-01 15:13 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-07-30 00:07 - 2022-07-30 00:07 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-07-30 00:07 - 2022-07-30 00:07 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-07-30 00:07 - 2022-07-30 00:07 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-07-30 00:07 - 2022-07-30 00:07 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-07-30 00:07 - 2022-07-30 00:07 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-07-30 00:07 - 2022-07-30 00:07 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll 2022-07-30 00:07 - 2022-07-30 00:07 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-07-30 00:07 - 2022-07-30 00:07 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-07-30 00:07 - 2022-07-30 00:07 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-07-30 00:06 - 2022-07-30 00:06 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-07-30 00:06 - 2022-07-30 00:06 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2022-07-30 00:06 - 2022-07-30 00:06 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-07-30 00:06 - 2022-07-30 00:06 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-07-30 00:06 - 2022-07-30 00:06 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2022-07-30 00:05 - 2022-07-30 00:05 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2022-07-30 00:05 - 2022-07-30 00:05 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-07-30 00:05 - 2022-07-30 00:05 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-07-30 00:05 - 2022-07-30 00:05 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-07-30 00:04 - 2022-07-30 00:04 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-07-30 00:04 - 2022-07-30 00:04 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-07-30 00:04 - 2022-07-30 00:04 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-07-30 00:04 - 2022-07-30 00:04 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe 2022-07-30 00:04 - 2022-07-30 00:04 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-07-30 00:04 - 2022-07-30 00:04 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-07-30 00:04 - 2022-07-30 00:04 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2022-07-29 23:42 - 2022-07-29 23:42 - 000000000 ___HD C:\$WinREAgent 2022-07-29 23:30 - 2022-07-29 23:30 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml 2022-07-29 23:30 - 2022-07-29 23:30 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2022-07-29 23:29 - 2022-07-29 23:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-07-29 23:25 - 2020-10-05 14:05 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-07-29 23:25 - 2020-10-05 14:05 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-07-29 23:25 - 2020-10-05 14:05 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-07-29 23:25 - 2020-10-05 14:05 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-07-29 23:25 - 2020-10-05 14:05 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-07-29 23:25 - 2020-10-05 14:05 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-07-29 23:25 - 2020-10-05 14:05 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-07-29 23:25 - 2020-10-05 14:05 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-07-29 23:25 - 2020-10-05 14:05 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-07-29 23:25 - 2020-10-05 14:05 - 000351128 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 001507224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 001161112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 000673520 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 000555248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 000543128 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-07-29 23:25 - 2020-10-05 14:03 - 000047424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 007707544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 006860184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 004174064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 002508528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 002098072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 001731824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445671.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 001585560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445671.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 000813464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-07-29 23:25 - 2020-10-05 14:02 - 000657304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-07-29 23:25 - 2020-10-05 14:00 - 005972824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2022-07-29 23:22 - 2022-07-29 23:22 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-07-29 23:22 - 2022-07-29 23:22 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-07-29 21:36 - 2022-07-29 21:36 - 000000000 ____D C:\Users\user\AppData\Local\OneDrive 2022-07-29 20:23 - 2022-07-29 20:23 - 000000000 ____D C:\Users\user\AppData\Local\Comms 2022-07-28 11:59 - 2022-07-28 11:24 - 000000000 ____D C:\Windows.old 2022-07-28 11:55 - 2022-07-28 11:55 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2022-07-28 11:55 - 2022-07-28 11:55 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines 2022-07-28 11:53 - 2022-07-28 11:53 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\WINDOWS\system32\msmq 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\WINDOWS\system32\BestPractices 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\Program Files\Reference Assemblies 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\Program Files\MSBuild 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\Program Files (x86)\MSBuild 2022-07-28 11:48 - 2022-07-28 11:48 - 000000000 ____D C:\inetpub 2022-07-28 11:35 - 2022-07-29 20:26 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-768028322-443926211-1286405372-1000 2022-07-28 11:34 - 2022-07-31 14:13 - 000000000 ____D C:\Users\user\AppData\Local\PlaceholderTileLogoFolder 2022-07-28 11:34 - 2022-07-29 20:26 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-768028322-443926211-1286405372-1000 2022-07-28 11:34 - 2022-07-28 11:34 - 000000000 ___RD C:\Users\user\OneDrive 2022-07-28 11:34 - 2022-07-28 11:34 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-07-28 11:30 - 2022-07-30 15:27 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache 2022-07-28 11:27 - 2022-07-31 09:31 - 000000000 ____D C:\ProgramData\Packages 2022-07-28 11:27 - 2022-07-28 11:27 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-07-28 11:27 - 2022-07-28 11:27 - 000000000 ____D C:\Users\user\AppData\Local\Publishers 2022-07-28 11:26 - 2022-07-31 09:31 - 000000000 ____D C:\Users\user\AppData\Local\Packages 2022-07-28 11:26 - 2022-07-28 11:27 - 000000000 ____D C:\Users\user\AppData\Local\ConnectedDevicesPlatform 2022-07-28 11:26 - 2022-07-28 11:26 - 000000020 ___SH C:\Users\user\ntuser.ini 2022-07-28 11:26 - 2022-07-28 11:26 - 000000000 ___RD C:\Users\user\3D Objects 2022-07-28 11:23 - 2022-07-30 15:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-07-28 11:23 - 2022-07-30 09:57 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-07-28 11:23 - 2022-07-28 11:36 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-07-28 11:23 - 2022-07-28 11:24 - 000004598 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2022-07-28 11:23 - 2022-07-28 11:24 - 000004258 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003902 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003850 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003816 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003816 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003816 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003816 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003702 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-28 11:23 - 2022-07-28 11:24 - 000003616 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{D391FBF9-81BB-44A6-916A-46AC4C169DB9} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003288 _____ C:\WINDOWS\system32\Tasks\{65FFC26B-9139-4D09-994A-C2F4DCE5E997} 2022-07-28 11:23 - 2022-07-28 11:24 - 000003156 _____ C:\WINDOWS\system32\Tasks\{275B388B-80D1-4B1F-B9DA-94BB37982A54} 2022-07-28 11:23 - 2022-07-28 11:23 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2022-07-28 11:23 - 2022-07-28 11:23 - 000007623 _____ C:\WINDOWS\diagerr.xml 2022-07-28 11:23 - 2022-07-28 11:23 - 000004588 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-07-28 11:23 - 2022-07-28 11:23 - 000004052 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:23 - 000003910 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:23 - 000003606 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-28 11:23 - 2022-07-28 11:23 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-28 11:23 - 2022-07-28 11:23 - 000003528 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore 2022-07-28 11:23 - 2022-07-28 11:23 - 000003488 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A9EEFB17-46EE-458F-A0D5-AE67D72B8F96} 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2022-07-28 11:23 - 2022-07-28 11:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS 2022-07-28 11:23 - 2016-05-25 19:06 - 000003410 _____ C:\WINDOWS\system32\Tasks\{533E72F0-4AC0-4140-B1EC-FF788AFEE1A8} 2022-07-28 11:23 - 2016-05-25 19:06 - 000003340 _____ C:\WINDOWS\system32\Tasks\{D86EE1C9-C50A-4CA8-BC64-6E0B73590769} 2022-07-28 11:23 - 2016-05-25 19:06 - 000003208 _____ C:\WINDOWS\system32\Tasks\{59675EE7-1E89-41D0-8545-9D9877CB0F32} 2022-07-28 11:08 - 2022-07-30 13:14 - 001976610 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-07-28 11:08 - 2022-07-29 20:26 - 000002451 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Voisinage réseau 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Voisinage d'impression 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Modèles 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Mes documents 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Menu Démarrer 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Documents\Mes vidéos 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Documents\Mes images 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\Documents\Ma musique 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2022-07-28 11:08 - 2022-07-28 11:08 - 000000000 _SHDL C:\Users\user\AppData\Local\Historique 2022-07-28 11:03 - 2022-07-31 09:27 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-28 11:03 - 2022-07-31 09:27 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-07-28 11:03 - 2022-07-28 11:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2022-07-28 11:00 - 2022-08-04 19:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-07-28 11:00 - 2022-07-30 15:21 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-28 11:00 - 2022-07-30 09:41 - 005263648 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-07-28 10:01 - 2022-07-28 11:26 - 000000000 ___DC C:\WINDOWS\Panther 2022-07-28 09:58 - 2022-07-28 09:58 - 000000000 ___HD C:\$Windows.~WS 2022-07-27 16:21 - 2022-07-27 16:21 - 016719752 _____ (Advanced System Repair, Inc.) C:\Users\user\Downloads\Advanced-System-Repair-Pro-RepairTool.W1.exe 2022-07-27 16:17 - 2022-07-30 09:54 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-07-27 16:06 - 2022-07-28 11:03 - 000000000 ____D C:\WINDOWS\system32\DAX2 2022-07-27 16:04 - 2022-07-28 09:54 - 000002120 _____ C:\WINDOWS\epplauncher.mif 2022-07-25 08:34 - 2022-07-25 08:34 - 000000000 ____D C:\Users\user\Desktop\Docs 2022-07-21 17:19 - 2022-07-28 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2022-07-21 17:19 - 2022-07-21 17:19 - 001443872 _____ (CPUID, Inc. ) C:\Users\user\Downloads\hwmonitor_1.46.exe 2022-07-21 17:19 - 2022-07-21 17:19 - 000000890 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2022-07-21 17:19 - 2022-07-21 17:19 - 000000000 ____D C:\Program Files\CPUID 2022-07-21 17:16 - 2022-07-21 17:16 - 001414608 _____ (CPUID, Inc. ) C:\Users\user\Downloads\hwmonitor_1.44.exe 2022-07-20 11:44 - 2022-07-20 11:44 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_NvModuleTracker_01011.Wdf 2022-07-20 11:43 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys 2022-07-16 20:25 - 2022-07-16 20:25 - 002178832 _____ C:\Users\user\Downloads\zDE-V2_5.wad 2022-07-09 19:15 - 2022-07-30 10:00 - 000000000 ____D C:\Users\user\AppData\Roaming\kingdom_rush 2022-06-24 13:19 - 2022-06-24 13:22 - 000000000 ____D C:\Users\user\AppData\Roaming\Selaco-Demo 2022-06-23 17:22 - 2022-06-23 17:22 - 000000000 ____D C:\Users\user\AppData\LocalLow\Dillon Rogers 2022-06-23 14:54 - 2022-06-23 14:54 - 067347783 _____ C:\Users\user\Downloads\Dmus_P5.zip 2022-06-23 14:53 - 2022-06-23 14:57 - 333885315 _____ C:\Users\user\Downloads\DMus_DUSK.zip 2022-06-23 12:54 - 2022-06-23 13:01 - 853845837 _____ C:\Users\user\Downloads\DraugraKs BADASS EDITION Build.rar 2022-06-22 15:55 - 2022-06-22 17:21 - 000000000 ____D C:\Users\user\AppData\Local\Doom Builder 2022-06-22 15:54 - 2022-06-22 15:54 - 014751200 _____ (ZZYZX ) C:\Users\user\Downloads\UltimateDoomBuilder-Setup-latest-x64.exe 2022-06-16 15:06 - 2022-08-05 16:24 - 000000000 ____D C:\Program Files\Google 2022-06-16 15:06 - 2022-08-04 23:26 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-06-16 15:05 - 2022-06-16 15:05 - 001414600 _____ (Google LLC) C:\Users\user\Downloads\ChromeSetup.exe 2022-05-17 22:24 - 2022-05-17 22:24 - 002026478 _____ C:\Users\user\Downloads\Justification_absence_09_mai_CORDONNIER_Johan_L1_Info_Maths.zip 2022-05-16 15:16 - 2022-05-16 15:17 - 065224516 _____ C:\Users\user\Downloads\m12-hdoom_techdemo8a.pk3 2022-05-11 22:15 - 2022-05-11 22:23 - 1547087552 _____ C:\Users\user\Downloads\Retro Rewind v2.1.zip 2022-05-11 22:11 - 2022-05-11 22:11 - 000000000 ____D C:\Users\user\Documents\3DS 2022-05-09 18:21 - 2022-05-09 18:21 - 000000000 ____D C:\Users\user\AppData\Roaming\EasyAntiCheat 2022-05-09 18:21 - 2022-05-09 18:21 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-05 17:23 - 2018-11-21 17:35 - 000000000 ____D C:\Users\user\AppData\Roaming\discord 2022-08-05 17:20 - 2014-08-19 19:24 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-05 17:01 - 2021-02-20 00:39 - 000000000 ____D C:\Users\user\AppData\Local\Discord 2022-08-05 16:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-05 16:55 - 2014-08-19 19:59 - 000000000 ____D C:\Program Files (x86)\Steam 2022-08-05 16:26 - 2019-10-03 09:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-08-05 16:23 - 2015-08-12 19:42 - 000000000 ____D C:\Users\user\AppData\Roaming\ZHP 2022-08-05 15:43 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-08-05 15:43 - 2015-08-14 11:47 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps 2022-08-05 15:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-05 15:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-05 15:21 - 2019-05-03 18:26 - 000000000 ____D C:\Users\user\AppData\Local\mbam 2022-08-05 15:19 - 2018-04-22 11:34 - 000000000 ____D C:\Program Files\Malwarebytes 2022-08-05 12:25 - 2014-08-19 09:06 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-04 19:28 - 2020-12-20 14:46 - 000000000 ____D C:\ProjectIgnis 2022-08-04 10:33 - 2014-08-30 17:23 - 000000000 ____D C:\Users\user\AppData\Local\Battle.net 2022-08-04 10:22 - 2016-10-29 22:06 - 000000000 ____D C:\Program Files (x86)\StarCraft II 2022-08-03 22:40 - 2017-04-11 16:04 - 000000008 _____ C:\Users\user\AppData\Roaming\DofusAppId0_1 2022-08-03 22:23 - 2017-04-11 16:04 - 000000000 ____D C:\Users\user\AppData\Roaming\Dofus 2022-08-02 13:46 - 2017-04-11 16:05 - 000000008 _____ C:\Users\user\AppData\Roaming\DofusAppId0_2 2022-08-01 21:57 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-01 15:13 - 2015-06-23 21:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2022-07-31 21:37 - 2017-07-24 18:08 - 000000000 ____D C:\Program Files\Recuva 2022-07-31 11:31 - 2021-02-17 19:34 - 000000000 ____D C:\Users\user\Documents\Doom Fichiers 2022-07-30 15:22 - 2016-09-23 22:18 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2022-07-30 14:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-07-30 13:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-07-30 13:14 - 2019-12-07 16:49 - 000866332 _____ C:\WINDOWS\system32\perfh00C.dat 2022-07-30 13:14 - 2019-12-07 16:49 - 000183126 _____ C:\WINDOWS\system32\perfc00C.dat 2022-07-30 11:15 - 2014-11-29 10:58 - 000000000 ____D C:\Users\user\AppData\Local\Ankama 2022-07-30 09:57 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender 2022-07-30 09:54 - 2017-02-18 23:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-07-30 09:53 - 2017-02-18 23:02 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-07-30 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-07-30 09:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-07-30 09:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2022-07-29 23:29 - 2014-08-19 09:05 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-07-29 23:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help 2022-07-29 23:28 - 2014-08-19 09:00 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-07-29 21:45 - 2014-08-30 17:22 - 000000000 ____D C:\Program Files (x86)\Battle.net 2022-07-29 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-07-29 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2022-07-29 20:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-07-28 12:00 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2022-07-28 11:59 - 2022-02-26 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software 2022-07-28 11:59 - 2022-02-26 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de graphisme 2022-07-28 11:59 - 2021-11-06 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cygwin 2022-07-28 11:59 - 2021-03-18 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2022-07-28 11:59 - 2020-10-17 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scrivener 2022-07-28 11:59 - 2019-12-07 16:49 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2022-07-28 11:59 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup 2022-07-28 11:59 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2022-07-28 11:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Web 2022-07-28 11:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-07-28 11:59 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-07-28 11:59 - 2019-09-02 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron 2022-07-28 11:59 - 2017-07-24 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva 2022-07-28 11:59 - 2016-09-23 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios 2022-07-28 11:59 - 2016-07-23 11:28 - 000000000 ____D C:\WINDOWS\system32\Macromed 2022-07-28 11:59 - 2016-07-23 11:27 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2022-07-28 11:59 - 2016-06-05 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III 2022-07-28 11:59 - 2016-01-14 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0 2022-07-28 11:59 - 2015-10-09 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II - Legacy of the Void Beta 2022-07-28 11:59 - 2015-04-04 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm 2022-07-28 11:59 - 2015-03-17 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet PhotoLooks 2022-07-28 11:59 - 2015-03-13 21:59 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2022-07-28 11:59 - 2015-02-18 12:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-07-28 11:59 - 2015-01-27 13:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2022-07-28 11:59 - 2014-11-23 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy 2022-07-28 11:59 - 2014-11-03 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-28 11:59 - 2014-10-28 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2022-07-28 11:59 - 2014-08-30 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net 2022-07-28 11:59 - 2014-08-19 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2022-07-28 11:59 - 2014-08-19 09:05 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-07-28 11:59 - 2011-04-12 11:27 - 000000000 ___RD C:\Users\Public\Recorded TV 2022-07-28 11:59 - 2011-04-12 11:27 - 000000000 ____D C:\WINDOWS\ShellNew 2022-07-28 11:59 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2022-07-28 11:59 - 2009-07-14 05:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2022-07-28 11:59 - 2009-07-14 05:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2022-07-28 11:56 - 2020-04-30 14:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2022-07-28 11:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2022-07-28 11:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\IME 2022-07-28 11:55 - 2022-03-25 14:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019 2022-07-28 11:55 - 2021-12-04 21:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022 2022-07-28 11:55 - 2019-12-07 11:14 - 000000000 __SHD C:\Program Files\Windows Sidebar 2022-07-28 11:55 - 2019-12-07 11:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2022-07-28 11:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\schemas 2022-07-28 11:55 - 2015-08-11 16:39 - 000000000 ____D C:\Program Files\Realtek 2022-07-28 11:55 - 2014-12-25 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bodom-Child - RaBBi 2022-07-28 11:55 - 2014-08-19 10:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2022-07-28 11:55 - 2014-08-19 09:16 - 000000000 ____D C:\Program Files\ASUS 2022-07-28 11:55 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Microsoft Games 2022-07-28 11:55 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\DVD Maker 2022-07-28 11:48 - 2021-10-06 15:30 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll 2022-07-28 11:48 - 2021-10-06 15:30 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe 2022-07-28 11:48 - 2021-10-06 15:30 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll 2022-07-28 11:48 - 2021-10-06 15:30 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000605696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe 2022-07-28 11:48 - 2021-10-06 15:29 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll 2022-07-28 11:48 - 2021-10-06 15:29 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll 2022-07-28 11:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2022-07-28 11:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2022-07-28 11:48 - 2019-12-07 11:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys 2022-07-28 11:48 - 2019-12-07 11:10 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe 2022-07-28 11:48 - 2019-12-07 11:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb 2022-07-28 11:48 - 2019-12-07 11:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe 2022-07-28 11:48 - 2019-12-07 11:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2022-07-28 11:48 - 2019-12-07 11:10 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof 2022-07-28 11:48 - 2019-12-07 11:10 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof 2022-07-28 11:41 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\OCR 2022-07-28 11:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate 2022-07-28 11:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2022-07-28 11:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool 2022-07-28 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT 2022-07-28 11:23 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries 2022-07-28 11:23 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-07-28 11:13 - 2016-06-05 14:13 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2022-07-28 11:13 - 2014-11-03 20:56 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-28 11:13 - 2014-08-20 15:51 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-07-28 11:09 - 2018-11-21 17:35 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2022-07-28 11:08 - 2014-08-19 09:05 - 001882020 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2022-07-28 11:03 - 2015-08-11 16:39 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2022-07-28 10:34 - 2009-07-14 06:45 - 000032656 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-07-28 10:34 - 2009-07-14 06:45 - 000032656 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-07-20 11:44 - 2020-04-28 19:35 - 000001330 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2022-07-18 10:14 - 2014-10-28 20:24 - 000000000 ____D C:\Users\user\AppData\Roaming\Audacity 2022-07-17 09:08 - 2017-04-29 13:23 - 000000000 ____D C:\Users\user\Documents\my games 2022-07-14 01:16 - 2021-12-04 13:02 - 000000000 ____D C:\Program Files\dotnet 2022-07-14 01:16 - 2015-01-25 17:41 - 000000000 ____D C:\ProgramData\Package Cache 2022-07-14 01:15 - 2021-12-04 21:50 - 000000000 ____D C:\Program Files (x86)\dotnet 2022-07-14 01:12 - 2015-02-18 12:56 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======== 2015-08-16 20:26 - 2017-05-13 10:05 - 000000000 _____ () C:\Users\user\ZHPDiag3.exe 2022-08-01 21:22 - 2022-08-03 22:23 - 000000113 _____ () C:\Users\user\AppData\Roaming\D2Info0 2017-04-11 16:04 - 2022-08-03 22:40 - 000000008 _____ () C:\Users\user\AppData\Roaming\DofusAppId0_1 2017-04-11 16:05 - 2022-08-02 13:46 - 000000008 _____ () C:\Users\user\AppData\Roaming\DofusAppId0_2 2017-04-12 17:26 - 2018-01-21 22:23 - 000000008 _____ () C:\Users\user\AppData\Roaming\DofusAppId0_3 2018-01-20 11:10 - 2018-01-20 11:24 - 000000008 _____ () C:\Users\user\AppData\Roaming\DofusAppId0_4 2021-12-26 12:03 - 2021-12-26 12:03 - 000003584 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-04-05 11:49 - 2021-04-05 11:49 - 000000000 _____ () C:\Users\user\AppData\Local\oobelibMkey.log 2015-02-18 13:33 - 2015-02-18 13:33 - 000007659 _____ () C:\Users\user\AppData\Local\recently-used.xbel ==================== SigCheckExt ========================= 2006-12-01 23:37 - 2006-12-01 23:37 - 000904704 _____ (Microsoft Corporation) C:\msdia80.dll 2014-10-25 15:42 - 2014-10-25 15:42 - 000275360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DreamScene.dll 2013-02-26 08:55 - 2013-02-26 08:55 - 000071680 _____ (Beepa P/L) C:\WINDOWS\system32\frapsv64.dll 2014-08-19 09:15 - 2014-08-19 09:15 - 000016896 _____ (ASUS) C:\WINDOWS\AsTaskSched.dll 2015-03-17 18:22 - 2004-03-29 18:23 - 000090112 _____ (MindVision Software) C:\WINDOWS\unvise32.exe 2014-08-19 09:26 - 2013-08-05 05:50 - 000053248 ____R (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll 2013-02-26 08:55 - 2013-02-26 08:55 - 000065536 _____ (Beepa P/L) C:\WINDOWS\SysWOW64\frapsvid.dll 2013-08-27 14:00 - 2013-08-27 14:00 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll 2008-04-10 16:42 - 2008-04-10 16:42 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2013-04-11 13:55 - 2013-04-11 13:55 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2013-04-11 13:55 - 2013-04-11 13:55 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2013-04-11 13:55 - 2013-04-11 13:55 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2010-03-16 14:35 - 2010-03-17 15:57 - 004167680 _____ C:\WINDOWS\SysWOW64\PhotoLooksRenderer.dll 2014-10-09 21:00 - 2010-08-30 08:34 - 000536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll 2016-12-12 12:06 - 2016-12-12 12:06 - 000252416 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec32.dll 2016-12-12 12:06 - 2016-12-12 12:06 - 000306688 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec64.dll 2016-12-12 12:10 - 2016-12-12 12:10 - 000854016 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid.dll 2016-12-12 12:11 - 2016-12-12 12:11 - 000964608 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid64.dll 2018-02-25 13:14 - 2018-02-25 13:14 - 000074701 _____ C:\WINDOWS\SysWOW64\Uninstal.exe 2013-04-26 12:24 - 2013-04-26 12:24 - 000041984 ____R (Intel Corporation) C:\WINDOWS\system32\Drivers\USB3Ver.dll 2015-08-16 20:26 - 2017-05-13 10:05 - 000000000 _____ C:\Users\user\ZHPDiag3.exe 2022-08-05 17:23 - 2022-08-05 17:23 - 002370048 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe 2022-08-05 15:55 - 2022-08-05 15:55 - 003490032 _____ (Nicolas Coolman) C:\Users\user\Desktop\ZHPSuite.exe 2021-10-09 16:37 - 2021-10-09 16:39 - 265190163 _____ (Disruptive Innovations SAS ) C:\Users\user\Downloads\bluegriffon-3.1.win-x86_64.exe 2022-02-13 21:21 - 2022-02-13 21:21 - 003038248 _____ (crosire) C:\Users\user\Downloads\ReShade_Setup_4.9.1.exe 2021-11-06 20:50 - 2021-11-06 20:50 - 001351699 _____ C:\Users\user\Downloads\setup-x86_64.exe 2022-06-22 15:54 - 2022-06-22 15:54 - 014751200 _____ (ZZYZX ) C:\Users\user\Downloads\UltimateDoomBuilder-Setup-latest-x64.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {0303c033-0e5c-11ed-adc6-929436fb8dfd} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {f86b22da-0e53-11ed-9447-d3c6bca59ac5} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {0303c033-0e5c-11ed-adc6-929436fb8dfd} nx OptIn bootmenupolicy Standard Installation de Windows ----------------------- identificateur {cbd971bf-b7b8-4885-951a-fa03044f5d71} device ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{9725f7da-00fe-11ec-a26b-74da38ff5941} bootstatdevice partition=C: custom:11000083 partition=C: path \windows\system32\winload.exe description Windows Rollback locale fr-FR bootstatfilepath \$WINDOWS.~BT\Sources\SafeOS\bootstat.dat inherit {bootloadersettings} restartonfailure Yes osdevice ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{9725f7da-00fe-11ec-a26b-74da38ff5941} custom:21000152 partition=C: systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {dff0b611-26f5-11e4-9cb7-82ee4067c489} device ramdisk=[C:]\Recovery\dff0b611-26f5-11e4-9cb7-82ee4067c489\Winre.wim,{dff0b612-26f5-11e4-9cb7-82ee4067c489} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\dff0b611-26f5-11e4-9cb7-82ee4067c489\Winre.wim,{dff0b612-26f5-11e4-9cb7-82ee4067c489} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {f86b22da-0e53-11ed-9447-d3c6bca59ac5} device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{f86b22db-0e53-11ed-9447-d3c6bca59ac5} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{f86b22db-0e53-11ed-9447-d3c6bca59ac5} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {0303c033-0e5c-11ed-adc6-929436fb8dfd} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {f86b22da-0e53-11ed-9447-d3c6bca59ac5} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {dff0b60f-26f5-11e4-9cb7-82ee4067c489} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {9725f7da-00fe-11ec-a26b-74da38ff5941} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {dff0b612-26f5-11e4-9cb7-82ee4067c489} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\dff0b611-26f5-11e4-9cb7-82ee4067c489\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {f86b22db-0e53-11ed-9447-d3c6bca59ac5} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume3 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================