Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01 Exécuté par JARDIN (administrateur) sur JARDIN (10-05-2024 23:00:02) Exécuté depuis C:\Users\JARDIN\Desktop\FRST64.exe Profils chargés: JARDIN Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France) Navigateur par défaut non détecté(e)! Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (A-Volute SAS -> A-Volute) C:\Users\JARDIN\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.891.1\DropboxCrashHandler.exe (C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.UserInterface.exe (C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe (C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe (C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe (C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe (C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <8> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14> (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4> (nordvpn s.a. -> nordvpn S.A.) H:\PROGRAMMES\NordVPN.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (ASUSTeK Computer Inc. -> ) C:\Windows\System32\AsusUpdateCheck.exe (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (services.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\NisSrv.exe (services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe (services.exe ->) (nordvpn s.a. -> nordvpn S.A.) H:\PROGRAMMES\NordSec ThreatProtection\nordsec-threatprotection-service.exe (services.exe ->) (nordvpn s.a. -> nordvpn S.A.) H:\PROGRAMMES\nordvpn-service.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_362f239e9bd019fc\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> ) C:\Windows\runSW.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2418.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18723976 2018-08-08] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-21] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1084704 2020-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech) HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1792256 2024-01-25] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [Cobian Reflector] => C:\Program Files\Cobian Reflector\Cobian.Reflector.Application.exe [726864 2024-02-27] (Luis Cobian Dorta -> Luis Cobian, CobianSoft) HKLM-x32\...\Run: [WinampAgent] => H:\PROGRAMMES\Winamp\winampa.exe [86696 2018-10-19] (Winamp SA -> Winamp SA) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [271496 2017-11-02] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11551632 2024-05-07] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [Eaton Systray Launcher] => C:\Program Files (x86)\Eaton\UPSCompanion\mc2.exe [3185752 2022-11-17] (Eaton Corp -> ) [Fichier non signé] HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-01] (Adobe Inc. -> Adobe Inc.) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKLM\Software\Policies\...\system: [DisableAcrylicBackgroundOnLogon] 1 HKU\S-1-5-19\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-20\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [Spotify] => C:\Users\JARDIN\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-31] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech) HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [CCleaner Smart Cleaning] => H:\PROGRAMMES portables\CCleaner Pro Portable 6.12.10459 (Windows)\App\CCleaner\CCleaner64.exe [40747008 2023-05-09] (Piriform Software Ltd) [Fichier non signé] HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [MP3Studio YouTube Downloader] => G:\PROGRAMMES\MP3Studio YouTube Downloader\MP3StudioDownloader.exe [2409360 2023-07-26] (ABLE SUN HOLDINGS LTD -> Able Sun Holdings Ltd.) [Fichier non signé] HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [MicrosoftEdgeAutoLaunch_889041C8F5A0E05EFCD8F5FAEE4B638E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Run: [NordVPN] => H:\PROGRAMMES\NordVPN.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.) HKU\S-1-5-21-762406010-639898116-235539862-1001\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-762406010-639898116-235539862-1001\...\CurrentVersion\Windows: [Run] C:\Users\JARDIN\AppData\Local\YggTorrent - 1er Tracker BitTorrent Francophone.exe <==== ATTENTION HKLM\...\Windows x64\Print Processors\Canon TS6200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEO.DLL [482816 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6200 series: C:\Windows\system32\CNMLMEO.DLL [1303040 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.156\Installer\chrmstp.exe [2024-05-08] (Google LLC -> Google LLC) Startup: C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel.lnk [2017-07-11] ShortcutTarget: Intel.lnk -> C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Templates\Intel.exe (Pas de fichier) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {8A122AB8-713E-4CA8-89E6-2F7BCC8D360A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-11-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "ac367948-baef-4eb2-9768-9bfaa6a06cee" --version "6.18.10824" --silent Task: {F67A1A12-81BD-43D8-B9BB-A4290FA0C3FE} - System32\Tasks\CCleanerSkipUAC - JARDIN => C:\Program Files\CCleaner\CCleaner.exe [37544352 2023-11-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {530BF363-BA34-48E9-8CFF-8CB86CD47B26} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5656192 2024-04-21] (Microsoft Windows -> Microsoft Corporation) Task: {D8915441-CC49-4976-AAFB-A7EEA6D25A42} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {8497820A-9C7B-451A-A217-790D0057C8A3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {BAF6F891-8897-49C3-A676-9C2AFFB2A348} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\JARDIN\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Pas de fichier) Task: {E093170D-BF75-4A4D-81DE-84D527678564} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\JARDIN\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Pas de fichier) Task: {56ADC29B-D758-4BA6-B92E-A5418BAD72D8} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6462.0{E5F74F5C-18B5-4414-AB20-C034535F7670} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) Task: {304B6AD4-47D4-41F1-BBE1-D84440865A9B} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {3F4260DE-718A-4DEE-BC09-DBAB649CEB20} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat [0 2022-09-08] () <==== ATTENTION [zéro octet Fichier/Dossier] <==== ATTENTION Task: {A991DAF6-3E21-47D4-B0DD-22CA5A3A0527} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service" Task: {A991DAF6-3E21-47D4-B0DD-22CA5A3A0527} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service" Task: {01DF06DA-4D4A-4AC5-AF54-79A3DE2766C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpCmdRun.exe [1658408 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D3750071-6A93-4718-A7B2-3860841DA2FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpCmdRun.exe [1658408 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {78F94906-CE34-4206-B0BA-0E1E2B0477F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpCmdRun.exe [1658408 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {909E6189-7888-4948-8AFE-13BC3E2D40B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpCmdRun.exe [1658408 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5A22DCAA-3996-469F-8C1C-424C60B69C42} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {A241B5B0-C2C8-432B-9CD1-99A395CD0175} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4E7BB9A8-2D78-412F-89C8-CE4912FC1842} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {28D6F507-1EF6-4477-AB8B-A0E30E28999B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {29583AF0-3434-462D-A33F-E09BFF5A936F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F3CCB841-0166-4516-BADA-52CAFADC8F83} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {99C30D50-63BB-4B94-A302-91B17A269FB0} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9BE8CCAB-EF55-45C0-91FF-0D6D51C9E4DF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EF06A680-CC89-46ED-B03A-12045ACBBFE6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A7D6CF60-E092-4D6E-84A3-34837DA3EFDA} - System32\Tasks\Samsung_PSSD_Registration_Plus => C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe [869224 2021-08-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3439f4f0-9e0f-4efb-bd1f-1bcd5e10c322}: [DhcpNameServer] 192.168.44.1 Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}: [DhcpDomain] home Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}\C496675626F687D256561616F5548545: [NameServer] 208.67.222.222,208.67.220.220 Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}\C496675626F687D256561616F5548545: [DhcpNameServer] 192.168.1.10 Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}\D4F62696C65602A46424: [NameServer] 208.67.222.222,208.67.220.220 Tcpip\..\Interfaces\{c5d08f77-c064-4200-b3e1-df300d3c62e2}\D4F62696C65602A46424: [DhcpNameServer] 192.168.95.169 Edge: ======= Edge Profile: C:\Users\JARDIN\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-10] Edge Extension: (Google Docs hors connexion) - C:\Users\JARDIN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-31] Edge Extension: (Edge relevant text changes) - C:\Users\JARDIN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-31] FireFox: ======== FF DefaultProfile: 3g3isavz.default FF ProfilePath: C:\Users\JARDIN\AppData\Roaming\Waterfox\Profiles\3g3isavz.default [2020-12-18] FF ProfilePath: C:\Users\JARDIN\AppData\Roaming\TomTom\HOME\Profiles\euweyk8t.default [2020-12-18] FF Extension: (Emulator) - C:\Users\JARDIN\AppData\Roaming\TomTom\HOME\Profiles\euweyk8t.default\Extensions\Navcore.9.510.1234792@tomtom.com [2020-12-18] [] [non signé] FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-01-18] [non signé] FF Plugin: @videolan.org/vlc,version=3.0.11 -> H:\PROGRAMMES\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> H:\PROGRAMMES\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> H:\PROGRAMMES\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> H:\PROGRAMMES\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.20 -> H:\PROGRAMMES\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-01] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-01] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default [2024-05-10] CHR DownloadDir: C:\Users\JARDIN\Downloads CHR HomePage: Default -> hxxp://google.fr/ CHR StartupUrls: Default -> "hxxps://google.com/" CHR Extension: (Slides) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-23] CHR Extension: (Google Drive) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-23] CHR Extension: (YouTube) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-23] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-05-09] CHR Extension: (Adobe Acrobat : outils de modif., de conversion et de signature de PDF) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-05-08] CHR Extension: (Sheets) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-23] CHR Extension: (Google Docs hors connexion) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-23] CHR Extension: (Gmail) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-23] CHR Extension: (Enhancer for YouTube™) - C:\Users\JARDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2024-05-09] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-01] (Adobe Inc. -> Adobe Inc.) R2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1097624 2024-05-09] (ASUSTeK Computer Inc. -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-30] (BattlEye Innovations e.K. -> ) R2 CobVSCRequester; C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe [331088 2024-02-27] (Luis Cobian Dorta -> Luis Cobian, CobianSoft) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-03] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2024-05-07] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-06-20] (EasyAntiCheat Oy -> Epic Games, Inc) S2 Eaton UPSCompanion; C:\Program Files (x86)\Eaton\UPSCompanion\mc2.exe [3185752 2022-11-17] (Eaton Corp -> ) [Fichier non signé] S2 GoogleUpdaterInternalService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) S2 GoogleUpdaterService126.0.6462.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6462.0\updater.exe [4794656 2024-05-06] (Google LLC -> Google LLC) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-08-08] (Logitech Inc -> Logitech Inc.) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9405400 2023-12-23] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MpDefenderCoreService.exe [1488888 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NahimicService; C:\Windows\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic) R3 nordsec-threatprotection-service; H:\PROGRAMMES\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.) R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.) R2 nordvpn-service; H:\PROGRAMMES\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_362f239e9bd019fc\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-03-13] (NVIDIA Corporation -> NVIDIA Corporation) R2 RunSwUSB; C:\Windows\runSW.exe [59232 2019-08-19] (Realtek Semiconductor Corp. -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-21] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\NisSrv.exe [3236712 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.1-0\MsMpEng.exe [133600 2024-04-24] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AVoluteSS3Vad; C:\Windows\System32\drivers\AVoluteSS3Vad.sys [93672 2021-10-14] (A-Volute -> Windows (R) Win 7 DDK provider) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyHidFilter; C:\Windows\system32\drivers\LGJoyHidFilter.sys [57368 2018-05-07] (Logitech Inc -> Logitech Inc.) R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-05-07] (Logitech Inc -> Logitech Inc.) S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [51848 2020-12-25] (Eaton Corp -> hxxp://libusb-win32.sourceforge.net) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2023-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsl21491e76; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{512F8666-8607-45E7-9374-7FD442C49A20}\MpKslDrv.sys [271648 2024-05-10] (Microsoft Windows -> Microsoft Corporation) R3 mshield; C:\Windows\System32\DRIVERS\mshield.sys [43112 2024-05-03] (nordvpn s.a. -> Nordvpn S.A.) R2 NDivert; H:\PROGRAMMES\7.23.2.0\Drivers\NDivert.sys [131472 2024-04-08] (nordvpn s.a. -> Nordvpn S.A.) R4 NordDivert10; H:\PROGRAMMES\NordSec ThreatProtection\1.4.23.7\NordDivert1064.sys [101240 2024-05-03] (nordvpn s.a. -> NordVPN/Basil) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) S3 RTCore64; G:\PROGRAMMES\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2024-02-01] (nordvpn s.a. -> The OpenVPN Project) R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20928 2024-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-24] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-24] (Microsoft Windows -> Microsoft Corporation) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 HWiNFO_164; \??\C:\Users\JARDIN\AppData\Local\Temp\HWiNFO64A_164.SYS [X] <==== ATTENTION S1 nordlwf; \SystemRoot\system32\DRIVERS\nordlwf.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-05-10 23:00 - 2024-05-10 23:00 - 000033486 _____ C:\Users\JARDIN\Desktop\FRST.txt 2024-05-10 22:57 - 2024-05-10 23:00 - 000000000 ____D C:\FRST 2024-05-10 22:57 - 2024-05-10 22:57 - 002394112 _____ (Farbar) C:\Users\JARDIN\Desktop\FRST64.exe 2024-05-10 22:56 - 2024-05-10 22:56 - 000328551 _____ C:\Users\JARDIN\Desktop\ZHPDiag.txt 2024-05-10 19:37 - 2024-05-10 19:37 - 000000877 _____ C:\Users\JARDIN\Desktop\ZHPSuite.lnk 2024-05-10 18:22 - 2024-05-10 18:22 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2024-05-09 21:49 - 2024-05-09 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2024-05-09 12:46 - 2024-05-09 12:46 - 000000000 ____D C:\Users\JARDIN\Desktop\RogueKiller 2024-05-07 15:57 - 2024-05-07 15:57 - 000000000 ____D C:\Users\JARDIN\Desktop\Anciennes données de Firefox 2024-05-07 10:03 - 2024-05-03 11:29 - 000043112 _____ (Nordvpn S.A.) C:\Windows\system32\Drivers\mshield.sys 2024-05-07 02:56 - 2024-05-07 02:56 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2024-05-02 18:06 - 2024-05-02 18:06 - 000001051 _____ C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ManorLords.lnk 2024-05-02 11:15 - 2024-05-02 11:15 - 000000000 ____D C:\Users\JARDIN\AppData\Local\ManorLords 2024-04-29 09:19 - 2024-04-29 09:19 - 005233180 _____ C:\Windows\Minidump\042924-46437-01.dmp 2024-04-26 13:03 - 2024-04-26 13:03 - 000000286 _____ C:\Users\JARDIN\Desktop\Vente maison 4 pièces de 93 m² à Sarrians (84260) - 1511765 - iad.url 2024-04-22 18:24 - 2024-04-22 18:24 - 012388016 _____ (Tim Kosse) C:\Users\JARDIN\Downloads\FileZilla_3.67.0_win64-setup.exe 2024-04-21 13:16 - 2024-04-21 13:16 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-04-21 13:16 - 2024-04-21 13:16 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2024-04-21 13:11 - 2024-04-21 13:11 - 000000000 ___HD C:\$WinREAgent 2024-04-08 10:39 - 2024-04-08 10:39 - 000350240 _____ (Mozilla) C:\Users\JARDIN\Downloads\Firefox Installer (1).exe 2024-04-08 09:29 - 2024-04-08 09:29 - 000002017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk 2024-04-05 09:25 - 2024-04-05 09:25 - 004067044 _____ C:\Windows\Minidump\040524-43656-01.dmp 2024-04-01 16:53 - 2024-04-01 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Reflector 2024-03-24 18:42 - 2024-03-24 18:42 - 000001409 _____ C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HorizonForbiddenWest.lnk 2024-03-24 12:11 - 2024-03-13 19:36 - 002031360 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2024-03-24 12:11 - 2024-03-13 19:36 - 002031360 _____ C:\Windows\system32\vulkaninfo.exe 2024-03-24 12:11 - 2024-03-13 19:36 - 001578856 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-03-24 12:11 - 2024-03-13 19:36 - 001578856 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2024-03-24 12:11 - 2024-03-13 19:36 - 001488008 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2024-03-24 12:11 - 2024-03-13 19:36 - 001445224 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2024-03-24 12:11 - 2024-03-13 19:36 - 001445224 _____ C:\Windows\system32\vulkan-1.dll 2024-03-24 12:11 - 2024-03-13 19:36 - 001295208 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2024-03-24 12:11 - 2024-03-13 19:36 - 001295208 _____ C:\Windows\SysWOW64\vulkan-1.dll 2024-03-24 12:11 - 2024-03-13 19:36 - 001226760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2024-03-24 12:11 - 2024-03-13 19:28 - 001046152 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2024-03-24 12:11 - 2024-03-13 19:28 - 000670344 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll 2024-03-24 12:11 - 2024-03-13 19:28 - 000505352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll 2024-03-24 12:11 - 2024-03-13 19:27 - 001543176 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2024-03-24 12:11 - 2024-03-13 19:27 - 001199624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2024-03-24 12:11 - 2024-03-13 19:26 - 002174072 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2024-03-24 12:11 - 2024-03-13 19:26 - 001626760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2024-03-24 12:11 - 2024-03-13 19:26 - 001024136 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2024-03-24 12:11 - 2024-03-13 19:26 - 000841840 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2024-03-24 12:11 - 2024-03-13 19:26 - 000787592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2024-03-24 12:11 - 2024-03-13 19:25 - 016034440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2024-03-24 12:11 - 2024-03-13 19:25 - 012929144 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2024-03-24 12:11 - 2024-03-13 19:25 - 006780960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2024-03-24 12:11 - 2024-03-13 19:25 - 003721224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2024-03-24 12:11 - 2024-03-13 19:25 - 000459912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2024-03-24 12:11 - 2024-03-13 19:24 - 005913096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2024-03-24 12:11 - 2024-03-13 19:24 - 005773344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2024-03-24 12:11 - 2024-03-13 19:23 - 000853104 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2024-03-24 12:11 - 2024-03-13 07:29 - 000119399 _____ C:\Windows\system32\nvinfo.pb 2024-03-23 16:52 - 2024-03-25 11:50 - 000000000 ____D C:\Users\JARDIN\Documents\Horizon Forbidden West Complete Edition 2024-03-23 16:52 - 2024-03-23 16:52 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\Guerrilla Games 2024-03-20 11:59 - 2024-03-20 11:59 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2024-03-20 11:56 - 2024-03-20 11:56 - 000000000 ____D C:\Program Files (x86)\BSD Concept 2024-02-28 17:53 - 2024-02-28 17:53 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\nPerf 2024-02-28 17:50 - 2024-02-28 17:52 - 000000000 ____D C:\Users\JARDIN\AppData\Local\nPerf 2024-02-28 17:49 - 2024-02-28 17:49 - 000000808 _____ C:\Windows\nPerf.lnk 2024-02-28 17:49 - 2024-02-28 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\nPerf 2024-02-28 14:11 - 2024-02-29 12:13 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\Amazon Cloud Drive 2024-02-28 14:11 - 2024-02-28 14:12 - 000000000 ____D C:\Users\JARDIN\AppData\Local\Amazon Drive 2024-02-28 14:11 - 2024-02-28 14:11 - 000001229 _____ C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Photos.lnk 2024-02-28 13:24 - 2024-02-28 13:24 - 000168786 _____ C:\Users\JARDIN\Documents\cc_20240228_122359.reg 2024-02-28 13:12 - 2024-02-28 17:39 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job 2024-02-28 13:12 - 2024-02-28 13:17 - 000000000 ____D C:\Program Files\CCleaner 2024-02-28 13:12 - 2024-02-28 13:15 - 000000000 ____D C:\Program Files\Recuva 2024-02-28 13:12 - 2024-02-28 13:15 - 000000000 ____D C:\Program Files\Defraggler 2024-02-28 13:12 - 2024-02-28 13:12 - 000003376 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\ProgramData\Piriform 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-02-28 13:12 - 2024-02-28 13:12 - 000000000 ____D C:\Program Files\Speccy 2024-02-22 19:16 - 2024-02-22 19:16 - 000000000 ____D C:\Users\JARDIN\AppData\Local\Talos2 2024-02-22 18:18 - 2024-05-02 10:44 - 000000000 ____D C:\Users\JARDIN\AppData\Local\WeMod 2024-02-22 12:35 - 2024-02-22 12:35 - 012376720 _____ (Tim Kosse) C:\Users\JARDIN\Downloads\FileZilla_3.66.5_win64-setup.exe 2024-02-21 10:16 - 2024-02-21 10:16 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem 2024-02-19 10:23 - 2024-02-19 10:23 - 003857780 _____ C:\Windows\Minidump\021924-43843-01.dmp 2024-02-17 10:08 - 2024-02-17 10:09 - 003767916 _____ C:\Windows\Minidump\021724-22578-01.dmp 2024-02-15 19:28 - 2024-02-15 19:28 - 000000000 ____D C:\Users\JARDIN\AppData\Local\IsolatedStorage ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-05-10 22:56 - 2020-12-18 17:03 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\ZHP 2024-05-10 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-05-10 22:38 - 2020-12-18 13:06 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-05-10 18:35 - 2020-12-18 16:14 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\vlc 2024-05-10 18:32 - 2022-02-10 10:28 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-05-10 16:56 - 2024-02-04 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec 2024-05-10 12:25 - 2020-12-18 13:18 - 000000000 ____D C:\ProgramData\NVIDIA 2024-05-10 09:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-05-10 09:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2024-05-10 09:24 - 2020-12-18 16:49 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\Dropbox 2024-05-10 09:24 - 2020-12-18 16:03 - 000000000 ____D C:\Users\JARDIN\AppData\Local\Dropbox 2024-05-10 09:23 - 2022-07-29 09:21 - 000000000 ____D C:\Users\JARDIN\AppData\Local\LogiBolt 2024-05-09 21:49 - 2020-12-18 20:20 - 000000000 ____D C:\Program Files (x86)\Dropbox 2024-05-09 15:17 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2024-05-09 15:13 - 2020-12-18 13:15 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI 2024-05-09 15:13 - 2019-12-07 16:49 - 000791762 _____ C:\Windows\system32\perfh00C.dat 2024-05-09 15:13 - 2019-12-07 16:49 - 000149928 _____ C:\Windows\system32\perfc00C.dat 2024-05-09 15:13 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2024-05-09 15:09 - 2023-04-22 19:01 - 000000000 ____D C:\Program Files (x86)\Orange Update 2024-05-09 15:06 - 2020-12-18 13:06 - 001097624 _____ C:\Windows\system32\AsusUpdateCheck.exe 2024-05-09 15:06 - 2020-12-18 13:06 - 000008192 ___SH C:\DumpStack.log.tmp 2024-05-09 15:06 - 2020-12-18 13:06 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-05-09 15:05 - 2020-12-18 13:06 - 001136496 _____ C:\Windows\system32\wpbbin.exe 2024-05-09 15:05 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2024-05-09 15:04 - 2020-12-18 13:11 - 000000000 ____D C:\Users\JARDIN 2024-05-09 12:30 - 2020-12-18 13:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-05-09 12:21 - 2023-04-30 09:17 - 000000000 ____D C:\Users\JARDIN\AppData\Local\Malwarebytes 2024-05-09 09:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF 2024-05-08 23:49 - 2022-01-23 19:31 - 000000000 ____D C:\Program Files (x86)\Google 2024-05-08 23:49 - 2021-12-16 01:17 - 000000000 ____D C:\Windows\SystemTemp 2024-05-08 23:02 - 2020-12-18 13:12 - 000000000 ____D C:\Users\JARDIN\AppData\Local\Packages 2024-05-08 09:22 - 2020-12-19 01:26 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-05-08 09:22 - 2020-12-19 01:26 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-05-07 11:18 - 2024-02-04 17:23 - 000000000 ____D C:\Users\JARDIN\AppData\Local\NordVPN 2024-05-07 11:17 - 2020-12-18 17:03 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\WeMod 2024-05-07 09:30 - 2020-12-18 16:56 - 000000000 ____D C:\Users\JARDIN\AppData\Roaming\FileZilla 2024-05-07 09:30 - 2020-12-18 15:42 - 000000128 _____ C:\Users\JARDIN\AppData\Local\PUTTY.RND 2024-05-04 19:29 - 2020-12-19 01:26 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-05-03 11:19 - 2020-12-18 16:03 - 000000000 ____D C:\Users\JARDIN\AppData\Local\CrashDumps 2024-05-03 10:34 - 2020-12-18 15:06 - 000000000 ____D C:\Users\JARDIN\AppData\Local\D3DSCache 2024-05-02 10:46 - 2020-12-18 16:46 - 000000128 _____ C:\Users\JARDIN\AppData\Roaming\PUTTY.RND 2024-05-02 10:46 - 2020-12-18 15:42 - 000000128 _____ C:\Users\JARDIN\PUTTY.RND 2024-05-02 10:44 - 2020-12-18 16:33 - 000000000 ____D C:\Users\JARDIN\AppData\Local\SquirrelTemp 2024-04-30 09:22 - 2020-12-18 18:10 - 000000000 ___RD C:\Users\JARDIN\Dropbox 2024-04-29 09:19 - 2021-02-26 10:11 - 000000000 ____D C:\Windows\Minidump 2024-04-29 00:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2024-04-26 21:25 - 2022-01-15 13:37 - 000003580 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-762406010-639898116-235539862-1001 2024-04-26 21:25 - 2020-12-18 13:13 - 000003358 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-762406010-639898116-235539862-1001 2024-04-26 21:25 - 2020-12-18 13:11 - 000002427 _____ C:\Users\JARDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-04-24 18:40 - 2020-12-18 13:06 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-04-23 09:21 - 2020-12-18 13:12 - 000000000 ____D C:\ProgramData\Packages 2024-04-22 19:04 - 2020-12-18 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2024-04-22 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat 2024-04-22 09:26 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-04-22 00:14 - 2020-12-18 13:06 - 000566616 _____ C:\Windows\system32\FNTCACHE.DAT 2024-04-22 00:13 - 2023-12-16 01:20 - 000000000 ____D C:\Windows\InboxApps 2024-04-22 00:13 - 2020-11-27 11:05 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2024-04-22 00:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2024-04-21 13:16 - 2020-12-18 13:10 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-04-21 12:57 - 2020-12-18 22:07 - 000000000 ____D C:\Windows\system32\MRT 2024-04-21 12:55 - 2020-12-18 22:07 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-04-20 19:37 - 2024-02-04 17:20 - 000000000 ____D C:\Program Files\NordUpdater 2024-04-20 19:26 - 2022-10-20 13:14 - 000108136 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2024-04-20 19:26 - 2022-10-20 13:14 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2024-04-20 19:26 - 2021-11-23 15:07 - 000206440 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2024-04-20 19:26 - 2021-11-02 14:07 - 002708984 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2024-04-20 19:26 - 2021-11-02 14:07 - 000710248 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2024-04-20 19:26 - 2021-11-02 14:07 - 000218616 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2024-04-20 19:26 - 2021-11-02 14:07 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll ==================== Fichiers à la racine de certains dossiers ======== 2020-12-18 15:42 - 2014-06-20 17:41 - 000021368 _____ (Schneider Electric) C:\Users\JARDIN\en_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000021368 _____ (Schneider Electric) C:\Users\JARDIN\es_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000021880 _____ (Schneider Electric) C:\Users\JARDIN\fr_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000021880 _____ (Schneider Electric) C:\Users\JARDIN\grm_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000021368 _____ (Schneider Electric) C:\Users\JARDIN\it_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000020344 _____ (Schneider Electric) C:\Users\JARDIN\jp_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 001079808 _____ (Microsoft Corporation) C:\Users\JARDIN\mfc80u.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000626688 _____ (Microsoft Corporation) C:\Users\JARDIN\msvcr80.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 013923704 _____ (Schneider Electric) C:\Users\JARDIN\PCPE Setup.exe 2020-12-18 15:42 - 2014-06-20 17:41 - 000021368 _____ (Schneider Electric) C:\Users\JARDIN\pt_res.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000018808 _____ () C:\Users\JARDIN\ResourceReader.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000020856 _____ (Schneider Electric) C:\Users\JARDIN\ru_res.dll 2020-12-18 15:42 - 2017-03-18 23:00 - 000045216 ___SH (Microsoft Corporation) C:\Users\JARDIN\wnxvnt.exe 2023-08-24 17:07 - 2023-08-24 17:07 - 003343008 _____ (Nicolas Coolman) C:\Users\JARDIN\ZHPCleaner.exe 2020-12-18 15:42 - 2014-06-20 17:41 - 000019832 _____ (Schneider Electric) C:\Users\JARDIN\zh_res.dll 2020-12-18 16:46 - 2017-08-08 23:00 - 000000087 _____ () C:\Users\JARDIN\AppData\Roaming\1de0de73-de3e-46c6-81b0-f6455f081644 2022-04-09 11:51 - 2023-06-07 17:08 - 003354624 _____ () C:\Users\JARDIN\AppData\Roaming\emp.bin 2020-12-18 16:46 - 2019-09-15 09:23 - 000000078 _____ () C:\Users\JARDIN\AppData\Roaming\FC.dat 2020-12-18 16:46 - 2016-05-16 16:07 - 000000557 _____ () C:\Users\JARDIN\AppData\Roaming\JARDIN.MTBF.txt 2020-12-18 16:46 - 2019-01-18 20:21 - 000000132 _____ () C:\Users\JARDIN\AppData\Roaming\Préfs Format GIF Adobe CS6 2020-12-18 16:46 - 2017-05-27 10:09 - 000000132 _____ () C:\Users\JARDIN\AppData\Roaming\Préfs Format PNG Adobe CS6 2020-12-18 16:46 - 2024-05-02 10:46 - 000000128 _____ () C:\Users\JARDIN\AppData\Roaming\PUTTY.RND 2020-12-18 16:46 - 2016-05-16 16:19 - 000000907 _____ () C:\Users\JARDIN\AppData\Roaming\__AvidCloudManager.log 2020-12-18 16:46 - 2016-05-15 12:19 - 000000907 _____ () C:\Users\JARDIN\AppData\Roaming\__AvidCloudManagerPrevious.log 2020-12-18 15:42 - 2015-02-14 15:45 - 000001456 _____ () C:\Users\JARDIN\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2020-12-18 15:42 - 2013-12-13 20:28 - 000114984 _____ () C:\Users\JARDIN\AppData\Local\ars.cache 2020-12-18 15:42 - 2017-07-04 13:20 - 002434088 _____ () C:\Users\JARDIN\AppData\Local\AutoHideIP.Setup.exe 2020-12-18 15:42 - 2017-06-23 22:51 - 000000331 ____H () C:\Users\JARDIN\AppData\Local\CacheConfig.dat 2020-12-18 15:42 - 2013-12-13 20:28 - 000251899 _____ () C:\Users\JARDIN\AppData\Local\census.cache 2020-12-18 15:42 - 2023-09-24 12:35 - 000027648 _____ () C:\Users\JARDIN\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-12-18 15:42 - 2013-12-13 17:17 - 000000036 _____ () C:\Users\JARDIN\AppData\Local\housecall.guid.cache 2020-12-18 15:42 - 2024-03-20 11:59 - 000000205 _____ () C:\Users\JARDIN\AppData\Local\oobelibMkey.log 2020-12-18 15:42 - 2024-05-07 09:30 - 000000128 _____ () C:\Users\JARDIN\AppData\Local\PUTTY.RND 2021-03-17 20:24 - 2021-03-17 20:24 - 000001808 _____ () C:\Users\JARDIN\AppData\Local\recently-used.xbel 2020-12-18 15:42 - 2017-07-30 23:05 - 000007602 _____ () C:\Users\JARDIN\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2020-12-02 05:41 - 2020-12-02 05:41 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\d3dref9.dll 2020-11-27 10:44 - 2021-05-28 10:24 - 000006656 _____ C:\Windows\system32\lpcio.dll 2018-10-25 18:18 - 2018-10-25 18:18 - 000372736 _____ (Intel(R) Corporation) C:\Windows\system32\Ncs2Setp.dll 2020-11-27 12:01 - 2020-11-27 12:01 - 002263552 _____ (Legolash2o) C:\Windows\system32\WinToolkitRunOnce.exe 2020-11-25 20:37 - 2020-11-25 20:37 - 000332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D2D1Debug2.dll 2020-06-23 17:54 - 2020-06-23 17:54 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11sdklayers.dll 2020-06-23 17:54 - 2020-06-23 17:54 - 000698368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_1sdklayers.dll 2020-06-23 17:54 - 2020-06-23 17:54 - 000936960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_2sdklayers.dll 2020-12-02 05:14 - 2020-12-02 05:14 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dref9.dll 2022-06-05 19:30 - 2016-03-11 20:15 - 000120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 001079808 _____ (Microsoft Corporation) C:\Users\JARDIN\mfc80u.dll 2020-12-18 15:42 - 2014-06-20 17:41 - 000626688 _____ (Microsoft Corporation) C:\Users\JARDIN\msvcr80.dll 2023-08-24 17:07 - 2023-08-24 17:07 - 003343008 _____ (Nicolas Coolman) C:\Users\JARDIN\ZHPCleaner.exe 2024-05-10 22:57 - 2024-05-10 22:57 - 002394112 _____ (Farbar) C:\Users\JARDIN\Desktop\FRST64.exe 2020-12-18 13:22 - 2020-12-18 13:22 - 001035926 _____ C:\Users\JARDIN\Downloads\mozbackup_mozbackup_1.5.1_install_anglais_14932.exe 2020-12-18 15:42 - 2017-07-04 13:20 - 002434088 _____ C:\Users\JARDIN\AppData\Local\AutoHideIP.Setup.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {c3497fda-4120-11eb-a019-ba97f827fe97} {c3497fdc-4120-11eb-a019-ba97f827fe97} {b1a61f32-61f8-11ee-9bcd-806e6f6e6963} {b1a61f33-61f8-11ee-9bcd-806e6f6e6963} {b1a61f34-61f8-11ee-9bcd-806e6f6e6963} timeout 1 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume5 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {c3497fdd-4120-11eb-a019-ba97f827fe97} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {b1a61f32-61f8-11ee-9bcd-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {b1a61f33-61f8-11ee-9bcd-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {b1a61f34-61f8-11ee-9bcd-806e6f6e6963} description UEFI:Network Device Application logicielle (101fffff) -------------------------------- identificateur {c3497fda-4120-11eb-a019-ba97f827fe97} description Hard Drive Application logicielle (101fffff) -------------------------------- identificateur {c3497fdc-4120-11eb-a019-ba97f827fe97} description USB Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {c3497fdf-4120-11eb-a019-ba97f827fe97} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {c3497fdd-4120-11eb-a019-ba97f827fe97} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {c3497fdf-4120-11eb-a019-ba97f827fe97} device ramdisk=[\Device\HarddiskVolume8]\Recovery\WindowsRE\Winre.wim,{c3497fe0-4120-11eb-a019-ba97f827fe97} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume8]\Recovery\WindowsRE\Winre.wim,{c3497fe0-4120-11eb-a019-ba97f827fe97} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {c3497fdd-4120-11eb-a019-ba97f827fe97} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {c3497fdf-4120-11eb-a019-ba97f827fe97} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume5 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {c3497fe0-4120-11eb-a019-ba97f827fe97} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume8 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================