Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022 Exécuté par frede (administrateur) sur DESKTOP-S115A2U (MSI MS-7A62) (21-08-2022 18:37:05) Exécuté depuis C:\Users\frede\Desktop Profils chargés: frede Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7893\Agent.exe (C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.204.0.1\OverwolfHelper.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.204.0.1\OverwolfHelper64.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe <3> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (explorer.exe ->) (Ambient Software) C:\Program Files\WindowsApps\48405AmbientSoftware.LiveDesktopWallpapers_1.2.17.0_neutral__agy8jafheqhng\LiveWallpaper\LiveWallpaper.exe (explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe (explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <6> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2208.1001.13.0_x64__8wekyb3d8bbwe\XboxAppServices.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (explorer.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_1f4f13287900d9b3\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2208.1001.13.0_x64__8wekyb3d8bbwe\XboxPcApp.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.534.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Micro-Star International CO., LTD. -> ) C:\Program Files\GamingOSD\mysticlight\MysticLightController.exe (svchost.exe ->) (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.) C:\Program Files\GamingOSD\GamingOSD.exe (svchost.exe ->) (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingOSD\MonitorMicroKeyDetector.exe (svchost.exe ->) (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingOSD\WeatherDetector.exe (svchost.exe ->) (Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-05-24] (Autodesk, Inc. -> Autodesk) HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [564928 2021-03-25] (geek software GmbH -> geek software GmbH) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [uTorrent] => C:\Users\frede\AppData\Roaming\uTorrent\uTorrent.exe [2004128 2022-08-16] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32706512 2022-08-19] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [Spotify] => C:\Users\frede\AppData\Roaming\Spotify\Spotify.exe [20062112 2022-07-03] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [ut] => C:\Users\frede\AppData\Roaming\uTorrent\uTorrent.exe [2004128 2022-08-16] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-08-04] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Run: [MicrosoftEdgeAutoLaunch_4ADCAF6337B08BB24359F3288BAFDE06] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-376382875-2748081236-3605589814-1001\...\Policies\Explorer: [] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.101\Installer\chrmstp.exe [2022-08-19] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2021-07-28] ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT) Startup: C:\Users\frede\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2021-09-11] ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon Inc. -> Canon INC.) Startup: C:\Users\frede\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PUSH Wallpaper.lnk [2021-06-09] ShortcutTarget: PUSH Wallpaper.lnk -> C:\Users\frede\AppData\Local\Programs\PUSH Entertainment\Video Wallpaper\pushvideowallpaper.exe (Pas de fichier) GroupPolicy: Restriction - Edge <==== ATTENTION GroupPolicy\User: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1086FFFF-E6FC-4332-8E1E-9F59E4DEEA40} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {1C8C93DA-35E5-4DE7-ABAA-485F869E5B8D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {1EA6DCC7-09FF-49B3-B8F5-E02688548BA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-04] (Google LLC -> Google LLC) Task: {2428969C-0497-45B3-B19D-DFC05DBC7CD4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {31545E56-B19F-45C7-9FBF-1E91B3D08913} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD) Task: {37A2AB97-0DEA-4ACB-BF5F-1818027A2899} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {4B8B4F2D-D04F-482D-A675-F8EFBAECB6BE} - System32\Tasks\CCleanerSkipUAC - frede => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5079BCE4-2E68-44CC-984C-F622168FCAED} - System32\Tasks\MonitorMysticLight => C:\Program Files\GamingOSD\MysticLight\MysticLightController.exe [27856 2021-05-20] (Micro-Star International CO., LTD. -> ) Task: {78DD5EAA-C296-44C1-951F-EC7C34887680} - System32\Tasks\MonitorWeatherDetector => C:\Program Files\GamingOSD\WeatherDetector.exe [41680 2021-05-20] (Micro-Star International CO., LTD. -> MSI) Task: {850B191C-DCCB-4D16-ABAD-785DBBAFD964} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [271520 2021-06-10] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {90E278FC-D597-4230-9D98-D91AD52F11F3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {9B95DEBE-6C62-493B-962A-747E6DC28C1F} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe [458224 2022-07-12] (Voyetra Turtle Beach, Inc. -> ROCCAT) Task: {9DFC7679-D951-498A-9ABF-6F5B6C094244} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A99AB9C4-56DE-46FA-96CC-117AA6D21343} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {AF507FAB-E05D-49FB-9690-5DB2F5DA9F3B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-04] (Google LLC -> Google LLC) Task: {B226150A-D271-4031-AD7B-3554D75C935F} - System32\Tasks\MonitorMicroKey => C:\Program Files\GamingOSD\MonitorMicroKeyDetector.exe [80592 2021-05-20] (Micro-Star International CO., LTD. -> MSI) Task: {B256D8D8-4DAD-41A6-81BC-6C20C796AE6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {BA7DFFA5-70FC-4C9B-819E-DA6218580699} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {D4CA8683-CBE3-4A60-AB44-87B2D5B0D893} - System32\Tasks\GamingOSDAutoStartUp => C:\Program Files\GamingOSD\GamingOSD.exe [9846480 2021-05-20] (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.) Task: {E6CDC89A-CD71-4D22-9F90-1E2682E79C36} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {ECB1D543-4742-466C-A07F-B9D26D7C2673} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-11] (Microsoft Windows -> Microsoft Corporation) Task: {F7724DA4-23DF-41D7-B621-489412D78853} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {F8516C76-1ADC-4A66-B7E9-B055441F4CD8} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-11] (Microsoft Windows -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{404ee035-7fea-4833-8aa4-e4af2193fbf0}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\frede\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-21] Edge HomePage: Default -> hxxps://? Edge StartupUrls: Default -> "hxxps://?" Edge DefaultSearchURL: Default -> hxxps://af.xdock.co?keyword={searchTerms}&pid=490&subid=4901 Edge DefaultSearchKeyword: Default -> yahoo search Edge DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms} FireFox: ======== FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé] FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default [2022-08-21] CHR HomePage: Default -> hxxps://? CHR StartupUrls: Default -> "hxxps://?" CHR Extension: (AdLock - adblocker & privacy protection) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\aemffjkmgcepimloclpkecifcnipnodh [2021-06-04] CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2022-08-10] CHR Extension: (Volume Booster) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2021-08-24] CHR Extension: (wanteeed) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-07-13] CHR Extension: (Mino (anciennement Minty): Coupon automatique) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefnkplkicihcoenmljhbihhaaagjhpp [2022-08-11] CHR Extension: (Google Docs hors connexion) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-12] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-18] CHR Extension: (Instant Gaming) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2022-01-07] CHR Extension: (Twitch Adblock) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljhnljhabgjcihjoihakgdiicdjncpkd [2022-07-22] CHR Extension: (Web Safety) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2022-04-02] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-04] CHR Extension: (ScriptSafe) - C:\Users\frede\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2021-06-04] CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk) S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc -> Autodesk, Inc.) S3 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [279040 2022-07-14] (CleverFiles) [Fichier non signé] U2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-11-26] (Lavasoft Software Canada Inc. -> ) S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2184192 2017-05-29] (DIAL GmbH) [Fichier non signé] S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-07-17] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-08-19] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-12-09] (Epic Games Inc. -> Epic Games, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8680192 2022-08-12] (Malwarebytes Inc. -> Malwarebytes) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD) R2 PDF24; C:\Program Files\PDF24\pdf24.exe [564928 2021-03-25] (geek software GmbH -> geek software GmbH) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-06-11] (Even Balance, Inc. -> ) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14657832 2021-07-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [331648 2021-06-05] (Twitch Interactive, Inc. -> ) R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-11-26] (Lavasoft Software Canada Inc. -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_1f4f13287900d9b3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_1f4f13287900d9b3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-06-09] (Activision Publishing Inc -> Activision Blizzard, Inc.) S3 atvi-geirdriful; C:\ProgramData\Battle.net_components\geirdrifulfore\geirdriful.sys [1965320 2022-05-06] (Activision Publishing Inc -> Activision Blizzard, Inc.) R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2021-10-08] (Bitdefender SRL -> Bitdefender) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [315632 2021-06-10] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 dokan1; C:\Windows\System32\DRIVERS\dokan1.sys [138760 2021-01-14] (ADAPP SASU -> Dokan Project) S4 EasyAntiCheat_EOSSys; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.sys [11967488 2022-08-21] (EasyAntiCheat Oy -> EasyAntiCheat Oy) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 HidHide; C:\Windows\System32\drivers\HidHide.sys [61408 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) R3 JBL_Quantum_Duo; C:\Windows\System32\drivers\JBLQuantumDuo.sys [3824752 2019-11-17] (Microsoft Windows Hardware Compatibility Publisher -> HARMAN TECHNOLOGY CO., LTD.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-08-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [192960 2022-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74704 2022-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181992 2022-08-20] (Malwarebytes Inc. -> Malwarebytes) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) S3 adlocknetdrv; \??\C:\Windows\System32\drivers\adlocknetdrv.sys [X] S3 NTIOLib_CC_Clock; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-21 18:37 - 2022-08-21 18:37 - 000029225 _____ C:\Users\frede\Desktop\FRST.txt 2022-08-21 18:36 - 2022-08-21 18:37 - 000000000 ____D C:\FRST 2022-08-21 18:35 - 2022-08-21 18:35 - 000390499 _____ C:\Users\frede\Desktop\ZHPDiag.txt 2022-08-21 18:32 - 2022-08-21 18:32 - 002371072 _____ (Farbar) C:\Users\frede\Downloads\FRST64.exe 2022-08-21 18:32 - 2022-08-21 18:32 - 002371072 _____ (Farbar) C:\Users\frede\Desktop\FRST64.exe 2022-08-21 18:29 - 2022-08-21 18:29 - 003557576 _____ (Nicolas Coolman) C:\Users\frede\Downloads\ZHPSuite.exe 2022-08-21 18:29 - 2022-08-21 18:29 - 003557576 _____ (Nicolas Coolman) C:\Users\frede\Desktop\ZHPSuite.exe 2022-08-21 16:54 - 2022-08-21 16:54 - 004202404 _____ C:\Windows\Minidump\082122-4859-01.dmp 2022-08-21 16:49 - 2022-08-21 16:49 - 000025632 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_88252396867925.dll 2022-08-20 19:54 - 2022-08-20 19:54 - 000192960 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-08-20 19:54 - 2022-08-20 19:54 - 000181992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-08-20 19:54 - 2022-08-20 19:54 - 000074704 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-08-20 02:12 - 2022-08-21 16:54 - 2246256850 _____ C:\Windows\MEMORY.DMP 2022-08-20 02:12 - 2022-08-20 02:12 - 003392492 _____ C:\Windows\Minidump\082022-4734-01.dmp 2022-08-19 22:09 - 2022-08-19 22:09 - 000000000 ____D C:\Users\frede\AppData\Local\MultiVersus 2022-08-19 22:06 - 2022-08-19 22:08 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2022-08-19 22:06 - 2022-08-19 22:06 - 000000000 ____D C:\Users\frede\AppData\Local\Rumbleverse 2022-08-16 20:32 - 2022-08-16 20:32 - 000000000 ____D C:\Users\frede\AppData\LocalLow\uTorrent.WebView2 2022-08-16 14:57 - 2022-08-16 14:57 - 000389217 _____ C:\Users\frede\Downloads\DOMAINE_BONY_GACHOT_tarifs_cavistes_2022.docm 2022-08-16 14:04 - 2022-08-16 14:04 - 000389217 _____ C:\Users\frede\Downloads\BONY_GACHOT_tarifs_cavistes_2022.docm 2022-08-12 16:38 - 2022-08-12 16:38 - 003303624 _____ (Nicolas Coolman) C:\Users\frede\Downloads\ZHPCleaner.exe 2022-08-12 16:38 - 2022-08-12 16:38 - 003303624 _____ (Nicolas Coolman) C:\Users\frede\Desktop\ZHPCleaner.exe 2022-08-12 16:33 - 2022-08-12 16:33 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-08-11 11:41 - 2022-08-11 11:41 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-11 11:41 - 2022-08-11 11:41 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-11 11:41 - 2022-08-11 11:41 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-11 11:41 - 2022-08-11 11:41 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-11 11:41 - 2022-08-11 11:41 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-11 11:41 - 2022-08-11 11:41 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-11 11:41 - 2022-08-11 11:41 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-11 11:41 - 2022-08-11 11:41 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-11 11:37 - 2022-08-11 11:37 - 000000000 ___HD C:\$WinREAgent 2022-08-11 11:32 - 2022-08-11 11:32 - 000000000 ____D C:\NasCacheDirectory 2022-08-09 18:56 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-08-09 18:55 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-09 18:55 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-09 18:55 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-09 18:55 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-09 18:55 - 2022-07-28 09:27 - 001471992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-09 18:55 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-09 18:55 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1.dll 2022-08-09 18:55 - 2022-07-28 09:27 - 001213432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-09 18:55 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-09 18:55 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-09 18:55 - 2022-07-28 09:24 - 000865776 _____ C:\Windows\system32\nvofapi64.dll 2022-08-09 18:55 - 2022-07-28 09:24 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-08-09 18:55 - 2022-07-28 09:24 - 000687608 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-08-09 18:55 - 2022-07-28 09:23 - 002127872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-08-09 18:55 - 2022-07-28 09:23 - 001607680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-08-09 18:55 - 2022-07-28 09:23 - 001536504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-08-09 18:55 - 2022-07-28 09:23 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-08-09 18:55 - 2022-07-28 09:23 - 000714752 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-08-09 18:55 - 2022-07-28 09:22 - 010269688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 008803832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 005362672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 003066872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 001059328 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-08-09 18:55 - 2022-07-28 09:22 - 000456176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-08-09 18:55 - 2022-07-28 09:21 - 005735920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-08-09 18:55 - 2022-07-28 09:21 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-08-09 18:55 - 2022-07-28 09:20 - 006367440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-08-09 18:55 - 2022-07-22 06:25 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-08-09 15:35 - 2022-08-19 16:38 - 000000000 ____D C:\Users\frede\Desktop\angelie photo disque dur 2022-08-09 15:35 - 2022-08-19 10:29 - 000000000 ____D C:\Users\frede\AppData\Local\DiskDrill 2022-08-09 15:35 - 2022-08-09 15:35 - 000000000 ____D C:\Users\frede\AppData\Local\CrashRpt 2022-08-09 15:31 - 2022-08-09 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleverFiles Disk Drill (x64) 2022-08-09 15:31 - 2022-08-09 15:31 - 000000000 ____D C:\Program Files\Dokan 2022-08-09 15:31 - 2022-08-09 15:31 - 000000000 ____D C:\Program Files\CleverFiles 2022-08-09 15:31 - 2021-01-14 13:49 - 000138760 _____ (Dokan Project) C:\Windows\system32\Drivers\dokan1.sys 2022-08-09 15:17 - 2022-08-09 15:17 - 000000000 ____D C:\Users\frede\AppData\Roaming\EaseUS 2022-08-09 15:17 - 2022-08-09 15:17 - 000000000 ____D C:\ProgramData\SystemAcCrux 2022-08-09 15:17 - 2022-08-09 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS 2022-08-09 15:16 - 2022-08-09 15:16 - 051992456 _____ (EaseUS ) C:\Users\frede\Downloads\drw_free_cnet_setup.exe 2022-08-09 15:16 - 2022-08-09 15:16 - 000000000 ____D C:\Program Files\EaseUS 2022-08-09 15:13 - 2022-08-09 15:13 - 000000000 ____D C:\Users\frede\AppData\Roaming\QtProject 2022-08-09 15:12 - 2022-08-19 12:58 - 000000000 ____D C:\Program Files\MiniToolPowerDataRecovery 2022-08-09 15:12 - 2022-08-09 15:12 - 083431800 _____ (MiniTool Software Limited ) C:\Users\frede\Downloads\pdr-free.exe 2022-08-09 15:12 - 2022-08-09 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Power Data Recovery 2022-08-09 15:09 - 2022-08-09 15:09 - 004969304 _____ (Stellar Information Technology Pvt Ltd. ) C:\Users\frede\Downloads\StellarDataRecoveryFree.exe 2022-08-09 15:08 - 2022-08-09 15:08 - 001516431 _____ C:\Users\frede\Downloads\PuranFileRecoveryX86.zip 2022-08-09 15:07 - 2022-08-09 15:08 - 001540994 _____ C:\Users\frede\Downloads\PuranFileRecoveryX64.zip 2022-08-09 15:05 - 2022-08-09 15:06 - 002371185 _____ (Puran Software ) C:\Users\frede\Downloads\PuranFileRecoverySetup.exe 2022-08-09 15:04 - 2022-08-09 15:04 - 030342056 _____ (CleverFiles) C:\Users\frede\Downloads\disk-drill-win.exe 2022-08-09 14:22 - 2022-08-09 14:22 - 000000000 ____D C:\Users\frede\AppData\Roaming\Wondershare 2022-08-09 14:22 - 2022-08-09 14:22 - 000000000 ____D C:\ProgramData\Piriform 2022-08-09 14:21 - 2022-08-09 15:33 - 000000000 ____D C:\Program Files\Wondershare 2022-08-09 14:21 - 2022-08-09 15:32 - 000000000 ____D C:\ProgramData\Wondershare 2022-08-09 14:21 - 2022-08-09 14:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2022-08-09 14:21 - 2022-08-09 14:21 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2022-08-09 14:20 - 2022-08-09 14:21 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2022-08-09 14:20 - 2022-08-09 14:20 - 001264928 _____ C:\Users\frede\Downloads\recoverit_setup_full4159.exe 2022-08-09 14:19 - 2022-08-09 14:19 - 011897288 _____ (Piriform Software Ltd) C:\Users\frede\Downloads\rcsetup153.exe 2022-08-09 14:04 - 2022-08-09 14:04 - 000000000 ___HD C:\4DefaultTempSaveScan 2022-08-09 14:03 - 2022-08-09 14:03 - 000000000 ____D C:\Users\frede\AppData\Roaming\TSMonitor 2022-08-09 14:02 - 2022-08-09 14:02 - 002317152 _____ (Tenorshare Co., Ltd.) C:\Users\frede\Downloads\4ddig-for-windows.exe 2022-08-09 14:02 - 2022-08-09 14:02 - 000000000 ____D C:\Program Files (x86)\Tenorshare 2022-08-03 18:55 - 2022-08-03 18:55 - 000000000 ____D C:\Users\frede\AppData\Local\Buff 2022-07-17 22:10 - 2022-07-17 22:10 - 000000000 ___SH C:\Users\Public\Shared Files 2022-07-17 22:00 - 2022-07-17 22:00 - 000000000 ____D C:\Users\frede\AppData\Local\FortniteGame 2022-07-17 22:00 - 2022-07-17 22:00 - 000000000 ____D C:\Users\frede\AppData\Local\CrashReportClient 2022-07-16 13:04 - 2022-07-16 13:04 - 000109513 _____ C:\Users\frede\Downloads\Bordereaux-affranchissement.pdf 2022-07-14 20:56 - 2022-07-14 20:56 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-14 20:56 - 2022-07-14 20:56 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-14 20:56 - 2022-07-14 20:56 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-14 20:56 - 2022-07-14 20:56 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-14 20:56 - 2022-07-14 20:56 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-14 20:56 - 2022-07-14 20:56 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-14 20:56 - 2022-07-14 20:56 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-14 20:56 - 2022-07-14 20:56 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-14 20:56 - 2022-07-14 20:56 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-14 20:55 - 2022-07-14 20:55 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-14 00:43 - 2022-07-14 00:44 - 000000000 ____D C:\Users\frede\Documents\Need for Speed Heat 2022-07-14 00:43 - 2022-07-14 00:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2022-07-14 00:35 - 2022-08-12 18:59 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-07-12 20:50 - 2022-07-12 20:50 - 000000000 ____D C:\Users\frede\AppData\Roaming\LucasArts 2022-07-12 20:49 - 2022-07-14 00:07 - 000000000 ____D C:\Users\frede\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games 2022-07-12 20:48 - 2022-07-12 20:48 - 000000000 ____D C:\Amazon Games 2022-07-12 19:10 - 2022-07-14 00:07 - 000000000 ____D C:\Users\frede\AppData\Local\Amazon Games 2022-07-12 19:10 - 2022-07-12 19:10 - 001848960 _____ (Amazon) C:\Users\frede\Downloads\AmazonGamesSetup.exe 2022-07-12 19:10 - 2022-07-12 19:10 - 000000000 ____D C:\Users\frede\AppData\Roaming\electron-platform 2022-07-01 21:36 - 2022-07-01 21:36 - 000000000 ____D C:\Users\frede\AppData\Local\SolidDocuments 2022-06-30 21:57 - 2022-08-19 12:28 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-06-30 21:57 - 2022-06-30 21:57 - 000000000 ____D C:\Program Files\Adobe 2022-06-30 21:56 - 2022-06-30 21:57 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-06-29 18:09 - 2022-07-02 00:42 - 000000000 ____D C:\Program Files (x86)\PokerStars.FR 2022-06-29 18:09 - 2022-07-02 00:41 - 000000000 ____D C:\Users\frede\AppData\Local\PokerStars.FR 2022-06-29 18:08 - 2022-06-29 18:08 - 002343896 _____ (Rational Intellectual Holdings Ltd.) C:\Users\frede\Downloads\PokerStarsInstallFR.exe 2022-06-29 01:02 - 2022-06-29 01:02 - 000000000 ____D C:\Users\frede\.ms-ad 2022-06-28 19:55 - 2022-06-28 19:55 - 004860552 _____ (Husdawg, LLC) C:\Users\frede\Downloads\Detection (1).exe 2022-06-28 19:52 - 2022-06-28 19:52 - 004860552 _____ (Husdawg, LLC) C:\Users\frede\Downloads\Detection.exe 2022-06-22 17:48 - 2022-06-22 18:01 - 000092665 _____ C:\Users\frede\Downloads\FR-Pre-task Pokerstars - EUROPE.pptx 2022-06-18 21:13 - 2022-08-12 16:34 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-06-17 12:22 - 2022-06-17 12:22 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-06-17 12:22 - 2022-06-17 12:22 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-06-17 12:22 - 2022-06-17 12:22 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-06-16 19:14 - 2022-06-16 19:16 - 000000000 ____D C:\Users\frede\AppData\Local\Sniper Elite 5 2022-06-15 19:16 - 2022-06-15 19:16 - 000188584 _____ C:\Users\frede\Downloads\[ OxTorrent.si ] Les Animaux Fantastiques _ les Secrets de Dumbledore MULTi 4K ULTRA HD x265 2022.torrent 2022-06-15 19:10 - 2022-06-15 19:10 - 000087362 _____ C:\Users\frede\Downloads\[ OxTorrent.si ] The Suicide Squad MULTi 4K ULTRA HD x265 2021.torrent 2022-06-15 16:52 - 2022-06-15 16:52 - 000000290 __RSH C:\ProgramData\ntuser.pol 2022-06-15 13:34 - 2022-06-15 13:34 - 019707024 _____ (Zoom Video Communications, Inc.) C:\Users\frede\Downloads\ZoomInstaller.exe 2022-06-15 13:34 - 2022-06-15 13:34 - 000000000 ____D C:\Users\frede\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2022-06-15 13:34 - 2022-06-15 13:34 - 000000000 ____D C:\Users\frede\AppData\Local\Zoom 2022-06-11 19:15 - 2022-06-11 19:15 - 000000000 ____D C:\Users\frede\Documents\Ubisoft 2022-06-10 17:19 - 2022-06-10 17:19 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-06-10 17:19 - 2022-06-10 17:19 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2022-05-30 20:23 - 2022-05-30 20:23 - 001113744 _____ C:\Users\frede\Downloads\classification-covid-carte-des-pays-au-04-02.pdf 2022-05-30 20:23 - 2022-05-30 20:23 - 001043040 _____ C:\Users\frede\Downloads\04-02-deplacements-pays-verts.pdf 2022-05-30 20:22 - 2022-05-30 20:22 - 000254354 _____ C:\Users\frede\Downloads\16-06-2021-attestation-de-deplacement-depuis-la-france-metropolitaine-orange.pdf 2022-05-30 20:22 - 2022-05-30 20:22 - 000100717 _____ C:\Users\frede\Downloads\01-07-2021-attestation-de-deplacement-depuis-la-france-metropolitaine-rouge.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-21 18:36 - 2021-06-04 17:29 - 000000000 ____D C:\Users\frede\AppData\Local\Battle.net 2022-08-21 18:35 - 2022-04-02 21:06 - 000000000 ____D C:\Users\frede\AppData\Roaming\ZHP 2022-08-21 18:32 - 2021-06-05 11:31 - 000000000 ____D C:\Program Files\CCleaner 2022-08-21 18:31 - 2021-11-05 18:59 - 000000000 ____D C:\Program Files (x86)\Call of Duty Vanguard 2022-08-21 18:30 - 2022-04-02 21:06 - 000000000 ____D C:\Users\frede\AppData\Local\ZHP 2022-08-21 18:28 - 2021-06-04 17:18 - 000000000 ____D C:\Program Files (x86)\Steam 2022-08-21 18:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-21 18:12 - 2021-06-04 17:15 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-21 17:42 - 2021-06-04 17:12 - 000000000 ____D C:\Users\frede\AppData\Local\D3DSCache 2022-08-21 17:42 - 2021-06-04 17:09 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-21 17:00 - 2021-06-04 17:10 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-21 17:00 - 2019-12-07 16:49 - 000791756 _____ C:\Windows\system32\perfh00C.dat 2022-08-21 17:00 - 2019-12-07 16:49 - 000149922 _____ C:\Windows\system32\perfc00C.dat 2022-08-21 17:00 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-21 16:55 - 2022-05-22 15:12 - 000000000 ____D C:\Users\frede\AppData\Local\Overwolf 2022-08-21 16:55 - 2021-08-09 00:29 - 000000000 ____D C:\Windows\Minidump 2022-08-21 16:55 - 2021-06-04 17:13 - 000000000 ___RD C:\Users\frede\OneDrive 2022-08-21 16:54 - 2021-07-27 14:23 - 000000000 ____D C:\Program Files\TeamViewer 2022-08-21 16:54 - 2021-06-04 17:09 - 000000000 ____D C:\Users\frede 2022-08-21 16:54 - 2021-06-04 17:05 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-21 16:54 - 2021-06-04 17:05 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-21 16:54 - 2021-06-04 17:05 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-21 01:41 - 2021-06-05 13:13 - 000000000 ____D C:\Users\frede\AppData\Roaming\discord 2022-08-21 01:09 - 2021-06-05 13:13 - 000000000 ____D C:\Users\frede\AppData\Local\Discord 2022-08-21 00:17 - 2021-06-05 11:44 - 000000000 ____D C:\ProgramData\Riot Games 2022-08-20 19:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-20 19:53 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-08-20 13:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-20 13:47 - 2021-06-04 17:05 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-19 22:08 - 2021-10-06 17:22 - 000000000 ____D C:\Users\frede\AppData\Roaming\EasyAntiCheat 2022-08-19 22:06 - 2021-06-11 22:33 - 000000000 ____D C:\Users\frede\AppData\Local\UnrealEngine 2022-08-19 22:02 - 2021-07-30 18:45 - 000000000 ____D C:\Program Files\Epic Games 2022-08-19 19:13 - 2021-06-04 17:15 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-19 16:40 - 2021-06-14 22:37 - 000000000 ____D C:\Users\frede\AppData\Local\CrashDumps 2022-08-19 16:40 - 2021-06-04 19:07 - 000000000 ____D C:\Users\frede\AppData\Roaming\uTorrent 2022-08-19 12:28 - 2021-06-09 09:58 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-08-19 12:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-08-18 18:04 - 2021-06-04 17:31 - 000000000 ____D C:\Program Files (x86)\Hearthstone 2022-08-18 18:03 - 2021-06-04 17:30 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare 2022-08-18 15:46 - 2021-06-05 11:31 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-08-16 20:35 - 2021-06-04 19:07 - 000000000 ____D C:\Users\frede\AppData\Local\BitTorrentHelper 2022-08-16 11:47 - 2022-05-22 15:34 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-08-12 22:53 - 2021-06-11 22:39 - 000000000 ____D C:\Users\frede\AppData\Roaming\Origin 2022-08-12 22:53 - 2021-06-11 22:39 - 000000000 ____D C:\ProgramData\Origin 2022-08-12 22:44 - 2021-06-11 22:39 - 000000000 ____D C:\Users\frede\AppData\Local\Origin 2022-08-12 18:59 - 2021-06-11 22:43 - 000000000 ____D C:\Program Files (x86)\Origin 2022-08-12 18:57 - 2021-06-04 17:26 - 000000000 ____D C:\Users\frede\AppData\Local\Ubisoft Game Launcher 2022-08-12 16:34 - 2021-06-05 11:34 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-08-12 16:34 - 2021-06-05 11:33 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-08-12 16:33 - 2021-06-05 11:33 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-08-12 16:33 - 2021-06-05 11:33 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-08-12 16:33 - 2021-06-05 11:33 - 000000000 ____D C:\Program Files\Malwarebytes 2022-08-12 16:26 - 2021-06-21 09:03 - 000000000 ____D C:\Users\frede\AppData\Local\ElevatedDiagnostics 2022-08-12 16:24 - 2021-06-04 17:05 - 001147192 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-12 16:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-12 16:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-11 22:04 - 2021-12-11 00:42 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-376382875-2748081236-3605589814-1001 2022-08-11 22:04 - 2021-06-04 17:13 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-376382875-2748081236-3605589814-1001 2022-08-11 22:04 - 2021-06-04 17:09 - 000002417 _____ C:\Users\frede\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-11 15:23 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-11 11:41 - 2021-06-04 17:08 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-11 11:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-11 11:33 - 2021-06-05 11:26 - 000000000 ____D C:\Windows\system32\MRT 2022-08-11 11:31 - 2021-06-05 11:26 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-09 23:47 - 2021-06-04 17:05 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-09 23:47 - 2021-06-04 17:05 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-09 18:58 - 2021-06-04 18:00 - 000000000 ____D C:\Users\frede\AppData\Local\NVIDIA 2022-08-09 15:31 - 2021-06-04 17:56 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-09 15:10 - 2021-12-18 18:58 - 000000000 ____D C:\Users\frede\AppData\Roaming\vlc 2022-08-03 19:16 - 2021-11-20 23:37 - 000144856 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 002754000 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 000402904 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 000234960 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-08-03 19:16 - 2021-06-23 01:09 - 000067032 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-07-28 09:20 - 2021-06-04 17:09 - 007483424 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-07-27 21:53 - 2021-07-30 18:48 - 000000000 ____D C:\Users\frede\Documents\My Games 2022-07-23 15:19 - 2021-06-04 17:29 - 000000000 ____D C:\Program Files (x86)\Battle.net 2022-07-22 06:25 - 2021-06-04 17:09 - 000130216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys ==================== Fichiers à la racine de certains dossiers ======== 2021-06-11 19:47 - 2021-06-11 19:47 - 000000064 _____ () C:\Users\frede\AppData\Roaming\changzhi_leidian.data ==================== SigCheckExt ========================= 2021-06-23 01:09 - 2022-08-03 19:16 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2021-06-11 16:37 - 2021-06-12 12:09 - 000006656 _____ C:\Windows\system32\lpcio.dll 2000-04-04 11:52 - 2000-04-04 11:52 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll 2022-08-21 18:32 - 2022-08-21 18:32 - 002371072 _____ (Farbar) C:\Users\frede\Desktop\FRST64.exe 2022-08-12 16:38 - 2022-08-12 16:38 - 003303624 _____ (Nicolas Coolman) C:\Users\frede\Desktop\ZHPCleaner.exe 2022-08-21 18:29 - 2022-08-21 18:29 - 003557576 _____ (Nicolas Coolman) C:\Users\frede\Desktop\ZHPSuite.exe 2022-08-21 18:32 - 2022-08-21 18:32 - 002371072 _____ (Farbar) C:\Users\frede\Downloads\FRST64.exe 2021-06-06 14:34 - 2015-02-17 20:57 - 003478528 _____ (PhotoFiltre) C:\Users\frede\Downloads\PhotoFiltre7.exe 2022-08-09 15:05 - 2022-08-09 15:06 - 002371185 _____ (Puran Software ) C:\Users\frede\Downloads\PuranFileRecoverySetup.exe 2022-08-12 16:38 - 2022-08-12 16:38 - 003303624 _____ (Nicolas Coolman) C:\Users\frede\Downloads\ZHPCleaner.exe 2022-08-21 18:29 - 2022-08-21 18:29 - 003557576 _____ (Nicolas Coolman) C:\Users\frede\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {84aab318-c54e-11eb-a5c4-894225224f78} {84aab319-c54e-11eb-a5c4-894225224f78} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {84aab31b-c54e-11eb-a5c4-894225224f78} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {84aab318-c54e-11eb-a5c4-894225224f78} description Hard Drive Application logicielle (101fffff) -------------------------------- identificateur {84aab319-c54e-11eb-a5c4-894225224f78} description CD/DVD Drive Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {84aab31d-c54e-11eb-a5c4-894225224f78} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {84aab31b-c54e-11eb-a5c4-894225224f78} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {84aab31d-c54e-11eb-a5c4-894225224f78} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{84aab31e-c54e-11eb-a5c4-894225224f78} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-fr inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{84aab31e-c54e-11eb-a5c4-894225224f78} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {84aab31b-c54e-11eb-a5c4-894225224f78} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {84aab31d-c54e-11eb-a5c4-894225224f78} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {84aab31e-c54e-11eb-a5c4-894225224f78} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================