Publicité
Publicité
Commentaire : Voici le dossier FRST, j'avais déjà essayé de faire la manipulation en créant ces exclusions.
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Exécuté par pierr (administrateur) sur DESKTOP-QCNPQIJ (Gigabyte Technology Co., Ltd. B450M DS3H) (02-03-2022 21:07:40)
Exécuté depuis C:\Users\pierr\AppData\Local\Temp\scoped_dir7228_1630664233
Profils chargés: pierr
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1566 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(C:\Users\pierr\AppData\Local\Programs\Opera\opera.exe ->) (Opera Software AS -> Opera Software) C:\Users\pierr\AppData\Local\Programs\Opera\84.0.4316.21\opera_crashreporter.exe
(DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atieclxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Grammarly, Inc. -> ) C:\Users\pierr\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe
(Opera Software AS -> Opera Software) C:\Users\pierr\AppData\Local\Programs\Opera\opera.exe <39>
(PushBullet Inc -> Pushbullet Inc) C:\Users\pierr\AppData\Local\Pushbullet\bin\pushbullet_client.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Popcorn Time) [Fichier non signé] C:\Program Files (x86)\Popcorn Time\Updater.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(XANDRIE SA -> Qobuz) C:\Users\pierr\AppData\Local\Qobuz\app-6.0.4-b017\Qobuz.exe <5>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33530336 2021-11-17] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Spotify] => C:\Users\pierr\AppData\Roaming\Spotify\Spotify.exe [19227064 2022-01-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [16066560 2021-05-04] () [Fichier non signé]
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Opera Browser Assistant] => C:\Users\pierr\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [utweb] => C:\Users\pierr\AppData\Roaming\uTorrent Web\utweb.exe [5944864 2021-11-30] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Grammarly] => C:\Users\pierr\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe [935408 2022-02-28] (Grammarly, Inc. -> )
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Pushbullet] => C:\Program Files (x86)\Pushbullet\pushbullet.exe [345600 2015-07-01] (Pushbullet inc) [Fichier non signé]
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Tone] => C:\Users\pierr\AppData\Roaming\Tone\Tone.exe --gFSF7X5gFI (Pas de fichier)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35646080 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-17] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Splashtop Wired XDisplay Agent.lnk [2021-11-28]
ShortcutTarget: Splashtop Wired XDisplay Agent.lnk -> C:\Program Files (x86)\Splashtop\Splashtop Wired XDisplay\Agent\SWXDAgent.exe (Splashtop Inc. -> Splashtop Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-11-23]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2710A45D-B65E-43E5-A746-10D4957789A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {2A8FF1A7-10B8-4B92-B15E-C1745EEE11D1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-02-14] (Piriform Software Ltd -> Piriform)
Task: {2ACE9584-98FE-4DBB-B92B-D1559F19945F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-19] (Google LLC -> Google LLC)
Task: {49F2E792-6497-4352-BD68-1AC391A13E64} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {5F84F6FF-830D-4B8B-9C1A-D32AFC4A2BEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-19] (Google LLC -> Google LLC)
Task: {6AEA773D-EBAE-4104-9465-BDAEB87910BE} - System32\Tasks\Opera scheduled Autoupdate 1632378553 => C:\Users\pierr\AppData\Local\Programs\Opera\launcher.exe [2470608 2022-02-24] (Opera Software AS -> Opera Software)
Task: {7209F8FA-FE07-4170-9828-CA3D9BE5636D} - System32\Tasks\Opera scheduled assistant Autoupdate 1632378576 => C:\Users\pierr\AppData\Local\Programs\Opera\launcher.exe [2470608 2022-02-24] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\pierr\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {77A7BA7D-301C-41F3-BDA5-86B392DCBD0D} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [271520 2021-06-15] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {88FA1958-4612-46E9-A26A-D4BDCBE8C8AB} - System32\Tasks\MATLAB R2021b Startup Accelerator => C:\Program Files\MATLAB\R2021b\bin\win64\MATLABStartupAccelerator.exe [50176 2021-05-15] () [Fichier non signé]
Task: {AF5F3CEF-E881-42D5-A98A-B367A6790ED3} - System32\Tasks\CCleanerSkipUAC - pierr => C:\Program Files\CCleaner\CCleaner.exe [29764224 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D200829D-C74D-4278-9D38-DA993F86997D} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {D9F09820-F29A-4E4B-9015-7C11D469DDBF} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\MATLAB R2021b Startup Accelerator.job => C:\Program Files\MATLAB\R2021b\bin\win64\MATLABStartupAccelerator.exe C:\Program Files\MATLAB\R2021bDESKTOP-QCNPQIJ\pierr.Sta
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.188.0.1
Tcpip\..\Interfaces\{96348ee5-a58e-4d3d-84f9-6676ced9abb5}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd3a0508-a20f-4b31-af58-ef8167ebfa6f}: [DhcpNameServer] 10.188.0.1
Edge:
=======
Edge Profile: C:\Users\pierr\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-01]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default [2022-03-02]
CHR HomePage: Default -> hxxps://www.youtube.com/channel/UCaMznB2hnr_IHq5Anr4DN1g
CHR Extension: (Google Traduction) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-31]
CHR Extension: (Slides) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-19]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2021-06-19]
CHR Extension: (BetterTTV) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-02-27]
CHR Extension: (Docs) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-19]
CHR Extension: (Google Drive) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-19]
CHR Extension: (YouTube) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-19]
CHR Extension: (Avira Password Manager) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-03-02]
CHR Extension: (Avira Safe Shopping) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-03-02]
CHR Extension: (Pushbullet) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2021-06-19]
CHR Extension: (Urban Free VPN proxy Unblocker - Best VPN) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2022-01-09]
CHR Extension: (Sheets) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-19]
CHR Extension: (Protection Web Avira) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-03-02]
CHR Extension: (Google Play Films et séries) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2021-06-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-21]
CHR Extension: (Click&Clean) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-06-19]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-02-02]
CHR Extension: (Imagus) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2021-06-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-19]
CHR Extension: (Click&Clean App) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2021-06-19]
CHR Extension: (Gmail) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-19]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
Opera:
=======
OPR Profile: C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable [2022-03-02]
OPR Notifications: Opera Stable -> hxxps://www.facebook.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Google Traduction) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-18]
OPR Extension: (Rich Hints Agent) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-02-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-23]
OPR Extension: (Correcteur orthographique & grammatical — LanguageTool) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\oldceeleldhonbafppcapldpdifcinji [2022-02-28]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8912272 2021-06-25] (BattlEye Innovations e.K. -> )
R2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10609304 2022-03-01] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-08-25] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-03-01] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2562776 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481312 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2021-06-21] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2021-06-21] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6133448 2022-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 spacedeskService; C:\WINDOWS\System32\spacedeskService.exe [3636680 2021-11-18] (Datronicsoft Inc. -> )
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2020-08-27] (Popcorn Time) [Fichier non signé]
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [129696 2021-12-06] (Skutta, Kristjan -> )
S4 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\amdkmdag.sys [80481136 2021-12-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R4 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [315632 2021-06-15] (Bluestack Systems, Inc -> Bluestack System Inc.)
R0 envirtahci; C:\WINDOWS\System32\drivers\envirtahci.sys [784048 2019-09-23] (Enmotus Inc. -> AMD)
R0 lci_proxywddm; C:\WINDOWS\System32\drivers\lci_proxywddm.sys [122576 2019-11-06] (Splashtop Inc. -> LuminonCore)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2021-08-03] (MyTestCertificate -> Oracle Corporation)
R3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2019-09-23] (Logitech -> Logitech Inc.)
R3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2019-09-23] (Logitech -> Logitech Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-03-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-03-01] (Malwarebytes Inc -> Malwarebytes)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [12400 2021-11-23] (Macrovision Europe Ltd) [Fichier non signé]
R3 spacedeskDriverBus; C:\WINDOWS\System32\drivers\spacedeskDriverBus.sys [94696 2021-11-17] (Datronicsoft Inc. -> datronicsoft Inc.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2014-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S4 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S4 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2021-09-15] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R4 avusbflt; System32\Drivers\avusbflt.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 21:06 - 2022-03-02 21:08 - 000000000 ____D C:\FRST
2022-03-02 10:43 - 2022-03-02 10:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2022-03-02 10:42 - 2022-03-02 10:42 - 000000000 ____H C:\ProgramData\rebootpending.txt
2022-03-02 00:16 - 2022-03-02 00:16 - 000000000 ____D C:\Users\Public\Security Sessions
2022-03-02 00:14 - 2022-03-02 00:14 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2022-03-02 00:12 - 2022-03-02 00:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2022-03-02 00:12 - 2019-03-20 18:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2022-03-02 00:08 - 2022-03-02 00:16 - 000000000 ____D C:\Users\pierr\AppData\Local\Avira
2022-03-02 00:07 - 2022-03-02 12:28 - 000000000 ____D C:\Program Files (x86)\Avira
2022-03-02 00:07 - 2022-03-02 10:44 - 000000000 ____D C:\ProgramData\Avira
2022-03-01 23:10 - 2022-03-01 23:10 - 000000000 ____D C:\Users\pierr\AppData\Local\mbam
2022-03-01 23:06 - 2022-03-01 23:06 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-03-01 23:06 - 2022-03-01 23:06 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-03-01 23:06 - 2022-03-01 23:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-03-01 23:06 - 2022-03-01 23:05 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-03-01 23:05 - 2022-03-02 11:05 - 000000000 ____D C:\Program Files\CCleaner
2022-03-01 23:05 - 2022-03-01 23:05 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-03-01 23:05 - 2022-03-01 23:05 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - pierr
2022-03-01 23:02 - 2022-03-01 23:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-03-01 23:02 - 2022-03-01 23:02 - 000000000 ____D C:\Program Files\Malwarebytes
2022-03-01 21:21 - 2022-03-01 21:21 - 000068096 _____ C:\Users\pierr\Downloads\FICHE CREATION.xls
2022-03-01 19:20 - 2022-03-01 19:20 - 000497407 _____ C:\Users\pierr\Downloads\Defender-Control-v1.6-main.zip
2022-03-01 19:15 - 2022-03-01 19:15 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-03-01 19:15 - 2022-03-01 19:15 - 000000000 ____D C:\Windows10Upgrade
2022-03-01 17:19 - 2022-03-01 19:25 - 000000442 __RSH C:\ProgramData\ntuser.pol
2022-02-28 23:05 - 2022-02-28 23:05 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-02-28 23:05 - 2022-02-28 23:05 - 000011821 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-28 23:04 - 2022-02-28 23:04 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-02-28 23:04 - 2022-02-28 23:04 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-28 23:03 - 2022-02-28 23:03 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-02-28 23:03 - 2022-02-28 23:03 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-28 22:34 - 2022-02-28 22:34 - 000000000 ___HD C:\$WinREAgent
2022-02-28 20:14 - 2022-02-28 20:14 - 001220086 _____ C:\Users\pierr\Downloads\convention_14901_PIERRE_HAMEL_signe LC-AK_removed.pdf
2022-02-28 20:11 - 2022-02-28 20:11 - 000449654 _____ C:\Users\pierr\Downloads\Votre attestation responsabilité civile vie privée (1).pdf
2022-02-28 20:11 - 2022-02-28 20:11 - 000019481 _____ C:\Users\pierr\Downloads\RIB (1).pdf
2022-02-28 09:31 - 2022-02-28 20:36 - 000000000 ____D C:\Users\pierr\AppData\Roaming\EldenRing
2022-02-28 09:27 - 2022-02-28 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elden Ring
2022-02-27 22:54 - 2022-02-27 22:54 - 000031216 _____ C:\Users\pierr\Downloads\1fb8223e20fbe64f5c761cfd04605a17a4e2bd9c.dlc
2022-02-27 22:39 - 2022-02-27 22:39 - 002674236 _____ C:\Users\pierr\Downloads\La complainte de la butte (Papo-Ch._m4a
2022-02-27 22:38 - 2022-02-27 22:38 - 001993996 _____ C:\Users\pierr\Downloads\20190311_232336 (1).m4a
2022-02-27 22:36 - 2022-02-27 22:36 - 011966818 _____ C:\Users\pierr\Downloads\ReplaceMusic
2022-02-27 22:27 - 2022-02-27 22:27 - 001993996 _____ C:\Users\pierr\Downloads\20190311_232336.m4a
2022-02-27 21:15 - 2022-02-27 21:15 - 000000000 ____D C:\Users\pierr\Downloads\ELDEN RING [DODI Repack]
2022-02-27 21:13 - 2022-02-27 21:13 - 000395729 _____ C:\Users\pierr\Downloads\DODILOVEURNG.torrent
2022-02-24 21:02 - 2022-02-24 21:02 - 000000000 ____D C:\Users\pierr\AppData\Local\Yandex
2022-02-20 15:51 - 2022-02-20 15:51 - 000022870 _____ C:\Users\pierr\Downloads\Classeur 6.xlsx
2022-02-16 13:57 - 2022-02-16 13:57 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\DARKSiDERS
2022-02-16 13:57 - 2022-02-16 13:57 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Laplacian
2022-02-16 12:57 - 2022-02-16 12:57 - 000000000 ____D C:\ProgramData\WZUpdateNotifier.exe
2022-02-16 12:56 - 2022-02-16 12:56 - 000000000 ____D C:\Users\pierr\AppData\Roaming\DOGE
2022-02-16 12:55 - 2022-02-16 12:55 - 000000000 ____D C:\Users\pierr\AppData\Local\motogp21
2022-02-16 12:53 - 2022-02-16 12:53 - 000000772 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotoGP 21.lnk
2022-02-15 21:31 - 2022-02-16 11:07 - 000000000 ____D C:\Users\pierr\Downloads\Cyanotype.Daydream.The.Girl.Who.Dreamed.The.World-DARKSiDERS
2022-02-15 21:30 - 2022-02-15 21:30 - 000014663 _____ C:\Users\pierr\Downloads\cyanotype_daydream_l.torrent
2022-02-15 16:29 - 2022-02-15 16:29 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\NBGI
2022-02-15 16:29 - 2022-02-15 16:29 - 000000000 ____D C:\Users\pierr\AppData\Local\FromSoftware
2022-02-15 16:23 - 2022-02-28 09:29 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2022-02-15 16:18 - 2022-02-28 09:30 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-02-15 14:58 - 2022-02-19 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2022-02-15 14:28 - 2022-02-15 14:28 - 000000000 ____D C:\Users\pierr\AppData\Local\Tone
2022-02-15 09:52 - 2022-02-15 09:52 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-02-15 09:07 - 2022-02-19 08:27 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\MATLAB
2022-02-15 09:07 - 2022-02-15 09:07 - 000000000 ____D C:\ProgramData\Oracle
2022-02-15 09:06 - 2022-02-15 09:06 - 000000000 ____D C:\Users\pierr\AppData\Local\MathWorks
2022-02-14 17:52 - 2022-02-14 17:52 - 000422083 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (3).pdf
2022-02-14 17:51 - 2022-02-14 17:51 - 000422778 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (2).pdf
2022-02-14 17:51 - 2022-02-14 17:51 - 000422778 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (1).pdf
2022-02-14 15:38 - 2022-02-14 15:38 - 000092119 _____ C:\Users\pierr\Downloads\convention_14901_PIERRE_HAMEL(1).pdf
2022-02-11 22:14 - 2022-02-11 22:14 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-11 22:14 - 2022-02-11 22:14 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-02 19:31 - 2022-03-02 12:28 - 000000000 ____D C:\Users\pierr\AppData\Local\Pushbullet
2022-02-02 19:30 - 2022-02-02 19:30 - 001737872 _____ (Pushbullet Inc ) C:\Users\pierr\Downloads\pushbullet_installer.exe
2022-02-02 19:30 - 2022-02-02 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pushbullet
2022-02-02 19:30 - 2022-02-02 19:30 - 000000000 ____D C:\Program Files (x86)\Pushbullet
2022-02-02 16:06 - 2022-02-02 16:06 - 000037194 _____ C:\Users\pierr\Downloads\EDT_M1_S1_2021_2022_v2.pdf
2022-02-02 15:45 - 2022-02-02 15:45 - 000079558 _____ C:\Users\pierr\Downloads\Calendrier_M1PA_2021_2022_v1.pdf
2022-01-31 19:19 - 2022-01-31 19:19 - 000035518 _____ C:\Users\pierr\Downloads\TP2 jonction PN ln(I).ods
2022-01-31 19:19 - 2022-01-31 19:19 - 000032255 _____ C:\Users\pierr\Downloads\TP2 Jonction PN Graph SI.ods
2022-01-31 19:19 - 2022-01-31 19:19 - 000031823 _____ C:\Users\pierr\Downloads\TP jonction PN Ge.ods
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 21:11 - 2021-06-19 00:07 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-02 21:09 - 2021-06-19 10:22 - 000000000 ____D C:\Program Files (x86)\Steam
2022-03-02 21:02 - 2021-06-19 00:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-02 20:21 - 2021-06-19 10:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-03-02 20:04 - 2021-07-03 16:17 - 000000000 ____D C:\Users\pierr\AppData\Local\CrashDumps
2022-03-02 18:44 - 2021-08-02 07:12 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Qobuz
2022-03-02 13:04 - 2021-12-21 19:03 - 000001423 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grammarly.lnk
2022-03-02 11:23 - 2021-08-08 16:38 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-02 11:22 - 2021-11-17 18:12 - 000000000 ____D C:\Program Files\DS4Windows
2022-03-02 11:07 - 2021-06-19 19:48 - 000000000 ____D C:\Users\pierr\AppData\Roaming\DS4Windows
2022-03-02 10:43 - 2021-06-19 00:06 - 000000000 ____D C:\WINDOWS\INF
2022-03-02 10:42 - 2021-06-19 01:00 - 000000000 ____D C:\Users\pierr\AppData\Local\D3DSCache
2022-03-02 10:42 - 2021-06-19 00:07 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-02 07:57 - 2021-06-19 00:18 - 000490016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-02 07:55 - 2021-06-19 00:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-02 07:55 - 2021-06-19 00:18 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-02 07:55 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-02 07:54 - 2021-06-18 23:55 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-02 00:32 - 2021-06-19 00:07 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-02 00:32 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-02 00:02 - 2021-06-19 00:18 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-03-01 23:32 - 2021-12-13 14:07 - 000000000 ____D C:\Users\pierr\AppData\Roaming\uTorrent
2022-03-01 23:30 - 2021-06-19 00:37 - 000000000 ____D C:\WINDOWS\Panther
2022-03-01 23:29 - 2021-06-22 14:18 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-03-01 23:29 - 2021-06-22 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-03-01 23:28 - 2021-11-23 23:32 - 000002754 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2022-03-01 23:28 - 2021-11-23 23:32 - 000002752 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2022-03-01 23:28 - 2021-11-23 23:32 - 000002752 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2022-03-01 23:28 - 2021-11-17 18:05 - 000000000 ____D C:\Program Files\WinRAR
2022-03-01 23:28 - 2021-06-22 14:17 - 000000000 ____D C:\Program Files (x86)\WinRAR
2022-03-01 16:56 - 2021-06-19 00:07 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-02-28 23:30 - 2021-06-19 00:39 - 002320522 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 23:30 - 2021-06-19 00:17 - 000416792 _____ C:\WINDOWS\system32\prfh0804.dat
2022-02-28 23:30 - 2021-06-19 00:17 - 000132500 _____ C:\WINDOWS\system32\prfc0804.dat
2022-02-28 23:30 - 2021-06-19 00:15 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-28 23:30 - 2021-06-19 00:15 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-28 23:21 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-28 23:21 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-28 23:20 - 2021-06-18 23:55 - 000000000 ____D C:\WINDOWS\servicing
2022-02-28 23:18 - 2021-06-18 23:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-28 20:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-28 09:08 - 2021-08-30 19:10 - 000000000 ____D C:\Games
2022-02-27 21:51 - 2021-12-13 14:05 - 000000000 ____D C:\Users\pierr\AppData\Local\BitTorrentHelper
2022-02-27 21:17 - 2021-06-19 00:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-27 21:09 - 2022-01-15 13:40 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-88331676-2151300063-2310376185-1001
2022-02-27 21:09 - 2021-06-19 01:03 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-88331676-2151300063-2310376185-1001
2022-02-27 21:09 - 2021-06-19 00:57 - 000002417 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-27 20:59 - 2021-09-23 07:29 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1632378553
2022-02-27 20:59 - 2021-09-23 07:29 - 000001405 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-02-24 15:47 - 2021-08-24 19:51 - 002236864 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-02-24 15:47 - 2021-08-24 19:51 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-02-24 15:46 - 2021-11-18 16:47 - 000119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000337360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000218576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000198120 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-02-19 18:38 - 2021-12-13 14:04 - 000000000 ____D C:\Users\pierr\AppData\Roaming\uTorrent Web
2022-02-19 18:37 - 2021-12-13 14:04 - 000000000 ____D C:\Users\pierr\AppData\Local\_
2022-02-19 18:37 - 2021-06-20 14:57 - 000000000 ____D C:\Users\pierr\AppData\Roaming\qBittorrent
2022-02-19 12:46 - 2021-06-19 10:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 12:00 - 2021-06-21 22:45 - 000000000 ____D C:\ProgramData\Origin
2022-02-18 09:40 - 2021-06-21 22:45 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Origin
2022-02-18 09:39 - 2021-06-21 22:44 - 000000000 ____D C:\Users\pierr\AppData\Local\Origin
2022-02-17 09:36 - 2021-06-19 10:17 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-16 22:24 - 2021-06-19 00:57 - 000000000 ____D C:\Users\pierr
2022-02-16 10:02 - 2021-06-24 17:07 - 000000000 ____D C:\Users\pierr\AppData\Local\PlaceholderTileLogoFolder
2022-02-16 00:07 - 2021-06-19 01:00 - 000000000 ____D C:\Users\pierr\AppData\Local\Packages
2022-02-15 17:11 - 2021-09-06 11:59 - 000000000 ____D C:\Users\pierr\AppData\Roaming\RetroBat
2022-02-15 17:09 - 2021-07-06 23:08 - 000000000 ____D C:\Users\pierr\AppData\Roaming\vlc
2022-02-15 09:42 - 2022-01-14 09:31 - 000000000 ____D C:\Users\pierr\AppData\Roaming\MathWorks
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-12 10:51 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-11 22:14 - 2021-06-19 00:22 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-11 21:21 - 2021-06-19 10:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 21:18 - 2021-06-19 10:40 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-11 21:15 - 2021-06-19 00:23 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2022-02-10 17:31 - 2021-06-19 00:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-08 14:18 - 2021-08-02 07:11 - 000000000 ____D C:\Users\pierr\AppData\Local\Qobuz
==================== Fichiers à la racine de certains dossiers ========
2022-02-16 12:57 - 2022-02-16 12:57 - 000000000 ____D () C:\ProgramData\WZUpdateNotifier.exe
2021-08-03 10:14 - 2021-08-03 10:14 - 000000064 _____ () C:\Users\pierr\AppData\Roaming\changzhi_leidian.data
2021-08-03 10:14 - 2021-08-03 10:14 - 000000024 _____ () C:\Users\pierr\AppData\Roaming\changzhi_leidianmac.data
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par pierr (administrateur) sur DESKTOP-QCNPQIJ (Gigabyte Technology Co., Ltd. B450M DS3H) (02-03-2022 21:07:40)
Exécuté depuis C:\Users\pierr\AppData\Local\Temp\scoped_dir7228_1630664233
Profils chargés: pierr
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1566 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(C:\Users\pierr\AppData\Local\Programs\Opera\opera.exe ->) (Opera Software AS -> Opera Software) C:\Users\pierr\AppData\Local\Programs\Opera\84.0.4316.21\opera_crashreporter.exe
(DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atieclxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Grammarly, Inc. -> ) C:\Users\pierr\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe
(Opera Software AS -> Opera Software) C:\Users\pierr\AppData\Local\Programs\Opera\opera.exe <39>
(PushBullet Inc -> Pushbullet Inc) C:\Users\pierr\AppData\Local\Pushbullet\bin\pushbullet_client.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Popcorn Time) [Fichier non signé] C:\Program Files (x86)\Popcorn Time\Updater.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(XANDRIE SA -> Qobuz) C:\Users\pierr\AppData\Local\Qobuz\app-6.0.4-b017\Qobuz.exe <5>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33530336 2021-11-17] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Spotify] => C:\Users\pierr\AppData\Roaming\Spotify\Spotify.exe [19227064 2022-01-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [16066560 2021-05-04] () [Fichier non signé]
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Opera Browser Assistant] => C:\Users\pierr\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [utweb] => C:\Users\pierr\AppData\Roaming\uTorrent Web\utweb.exe [5944864 2021-11-30] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Grammarly] => C:\Users\pierr\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe [935408 2022-02-28] (Grammarly, Inc. -> )
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Pushbullet] => C:\Program Files (x86)\Pushbullet\pushbullet.exe [345600 2015-07-01] (Pushbullet inc) [Fichier non signé]
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [Tone] => C:\Users\pierr\AppData\Roaming\Tone\Tone.exe --gFSF7X5gFI (Pas de fichier)
HKU\S-1-5-21-88331676-2151300063-2310376185-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35646080 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-17] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Splashtop Wired XDisplay Agent.lnk [2021-11-28]
ShortcutTarget: Splashtop Wired XDisplay Agent.lnk -> C:\Program Files (x86)\Splashtop\Splashtop Wired XDisplay\Agent\SWXDAgent.exe (Splashtop Inc. -> Splashtop Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-11-23]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2710A45D-B65E-43E5-A746-10D4957789A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {2A8FF1A7-10B8-4B92-B15E-C1745EEE11D1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-02-14] (Piriform Software Ltd -> Piriform)
Task: {2ACE9584-98FE-4DBB-B92B-D1559F19945F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-19] (Google LLC -> Google LLC)
Task: {49F2E792-6497-4352-BD68-1AC391A13E64} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {5F84F6FF-830D-4B8B-9C1A-D32AFC4A2BEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-19] (Google LLC -> Google LLC)
Task: {6AEA773D-EBAE-4104-9465-BDAEB87910BE} - System32\Tasks\Opera scheduled Autoupdate 1632378553 => C:\Users\pierr\AppData\Local\Programs\Opera\launcher.exe [2470608 2022-02-24] (Opera Software AS -> Opera Software)
Task: {7209F8FA-FE07-4170-9828-CA3D9BE5636D} - System32\Tasks\Opera scheduled assistant Autoupdate 1632378576 => C:\Users\pierr\AppData\Local\Programs\Opera\launcher.exe [2470608 2022-02-24] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\pierr\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {77A7BA7D-301C-41F3-BDA5-86B392DCBD0D} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [271520 2021-06-15] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {88FA1958-4612-46E9-A26A-D4BDCBE8C8AB} - System32\Tasks\MATLAB R2021b Startup Accelerator => C:\Program Files\MATLAB\R2021b\bin\win64\MATLABStartupAccelerator.exe [50176 2021-05-15] () [Fichier non signé]
Task: {AF5F3CEF-E881-42D5-A98A-B367A6790ED3} - System32\Tasks\CCleanerSkipUAC - pierr => C:\Program Files\CCleaner\CCleaner.exe [29764224 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D200829D-C74D-4278-9D38-DA993F86997D} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {D9F09820-F29A-4E4B-9015-7C11D469DDBF} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\MATLAB R2021b Startup Accelerator.job => C:\Program Files\MATLAB\R2021b\bin\win64\MATLABStartupAccelerator.exe C:\Program Files\MATLAB\R2021bDESKTOP-QCNPQIJ\pierr.Sta
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.188.0.1
Tcpip\..\Interfaces\{96348ee5-a58e-4d3d-84f9-6676ced9abb5}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd3a0508-a20f-4b31-af58-ef8167ebfa6f}: [DhcpNameServer] 10.188.0.1
Edge:
=======
Edge Profile: C:\Users\pierr\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-01]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default [2022-03-02]
CHR HomePage: Default -> hxxps://www.youtube.com/channel/UCaMznB2hnr_IHq5Anr4DN1g
CHR Extension: (Google Traduction) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-31]
CHR Extension: (Slides) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-19]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2021-06-19]
CHR Extension: (BetterTTV) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-02-27]
CHR Extension: (Docs) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-19]
CHR Extension: (Google Drive) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-19]
CHR Extension: (YouTube) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-19]
CHR Extension: (Avira Password Manager) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-03-02]
CHR Extension: (Avira Safe Shopping) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-03-02]
CHR Extension: (Pushbullet) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2021-06-19]
CHR Extension: (Urban Free VPN proxy Unblocker - Best VPN) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2022-01-09]
CHR Extension: (Sheets) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-19]
CHR Extension: (Protection Web Avira) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-03-02]
CHR Extension: (Google Play Films et séries) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2021-06-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-21]
CHR Extension: (Click&Clean) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-06-19]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-02-02]
CHR Extension: (Imagus) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2021-06-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-19]
CHR Extension: (Click&Clean App) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2021-06-19]
CHR Extension: (Gmail) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-19]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
Opera:
=======
OPR Profile: C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable [2022-03-02]
OPR Notifications: Opera Stable -> hxxps://www.facebook.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Google Traduction) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-18]
OPR Extension: (Rich Hints Agent) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-02-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-23]
OPR Extension: (Correcteur orthographique & grammatical — LanguageTool) - C:\Users\pierr\AppData\Roaming\Opera Software\Opera Stable\Extensions\oldceeleldhonbafppcapldpdifcinji [2022-02-28]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8912272 2021-06-25] (BattlEye Innovations e.K. -> )
R2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10609304 2022-03-01] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-08-25] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-03-01] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2562776 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481312 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2021-06-21] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2021-06-21] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6133448 2022-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 spacedeskService; C:\WINDOWS\System32\spacedeskService.exe [3636680 2021-11-18] (Datronicsoft Inc. -> )
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2020-08-27] (Popcorn Time) [Fichier non signé]
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [129696 2021-12-06] (Skutta, Kristjan -> )
S4 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0374618.inf_amd64_fa56475c8cff0067\B371320\amdkmdag.sys [80481136 2021-12-08] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R4 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [315632 2021-06-15] (Bluestack Systems, Inc -> Bluestack System Inc.)
R0 envirtahci; C:\WINDOWS\System32\drivers\envirtahci.sys [784048 2019-09-23] (Enmotus Inc. -> AMD)
R0 lci_proxywddm; C:\WINDOWS\System32\drivers\lci_proxywddm.sys [122576 2019-11-06] (Splashtop Inc. -> LuminonCore)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2021-08-03] (MyTestCertificate -> Oracle Corporation)
R3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2019-09-23] (Logitech -> Logitech Inc.)
R3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2019-09-23] (Logitech -> Logitech Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-03-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-03-01] (Malwarebytes Inc -> Malwarebytes)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [12400 2021-11-23] (Macrovision Europe Ltd) [Fichier non signé]
R3 spacedeskDriverBus; C:\WINDOWS\System32\drivers\spacedeskDriverBus.sys [94696 2021-11-17] (Datronicsoft Inc. -> datronicsoft Inc.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2014-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S4 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S4 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2021-09-15] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R4 avusbflt; System32\Drivers\avusbflt.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 21:06 - 2022-03-02 21:08 - 000000000 ____D C:\FRST
2022-03-02 10:43 - 2022-03-02 10:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2022-03-02 10:42 - 2022-03-02 10:42 - 000000000 ____H C:\ProgramData\rebootpending.txt
2022-03-02 00:16 - 2022-03-02 00:16 - 000000000 ____D C:\Users\Public\Security Sessions
2022-03-02 00:14 - 2022-03-02 00:14 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2022-03-02 00:12 - 2022-03-02 00:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2022-03-02 00:12 - 2019-03-20 18:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2022-03-02 00:08 - 2022-03-02 00:16 - 000000000 ____D C:\Users\pierr\AppData\Local\Avira
2022-03-02 00:07 - 2022-03-02 12:28 - 000000000 ____D C:\Program Files (x86)\Avira
2022-03-02 00:07 - 2022-03-02 10:44 - 000000000 ____D C:\ProgramData\Avira
2022-03-01 23:10 - 2022-03-01 23:10 - 000000000 ____D C:\Users\pierr\AppData\Local\mbam
2022-03-01 23:06 - 2022-03-01 23:06 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-03-01 23:06 - 2022-03-01 23:06 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-03-01 23:06 - 2022-03-01 23:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-03-01 23:06 - 2022-03-01 23:05 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-03-01 23:05 - 2022-03-02 11:05 - 000000000 ____D C:\Program Files\CCleaner
2022-03-01 23:05 - 2022-03-01 23:05 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-03-01 23:05 - 2022-03-01 23:05 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - pierr
2022-03-01 23:02 - 2022-03-01 23:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-03-01 23:02 - 2022-03-01 23:02 - 000000000 ____D C:\Program Files\Malwarebytes
2022-03-01 21:21 - 2022-03-01 21:21 - 000068096 _____ C:\Users\pierr\Downloads\FICHE CREATION.xls
2022-03-01 19:20 - 2022-03-01 19:20 - 000497407 _____ C:\Users\pierr\Downloads\Defender-Control-v1.6-main.zip
2022-03-01 19:15 - 2022-03-01 19:15 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2022-03-01 19:15 - 2022-03-01 19:15 - 000000000 ____D C:\Windows10Upgrade
2022-03-01 17:19 - 2022-03-01 19:25 - 000000442 __RSH C:\ProgramData\ntuser.pol
2022-02-28 23:05 - 2022-02-28 23:05 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-02-28 23:05 - 2022-02-28 23:05 - 000011821 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-28 23:04 - 2022-02-28 23:04 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-02-28 23:04 - 2022-02-28 23:04 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-28 23:03 - 2022-02-28 23:03 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-02-28 23:03 - 2022-02-28 23:03 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-28 22:34 - 2022-02-28 22:34 - 000000000 ___HD C:\$WinREAgent
2022-02-28 20:14 - 2022-02-28 20:14 - 001220086 _____ C:\Users\pierr\Downloads\convention_14901_PIERRE_HAMEL_signe LC-AK_removed.pdf
2022-02-28 20:11 - 2022-02-28 20:11 - 000449654 _____ C:\Users\pierr\Downloads\Votre attestation responsabilité civile vie privée (1).pdf
2022-02-28 20:11 - 2022-02-28 20:11 - 000019481 _____ C:\Users\pierr\Downloads\RIB (1).pdf
2022-02-28 09:31 - 2022-02-28 20:36 - 000000000 ____D C:\Users\pierr\AppData\Roaming\EldenRing
2022-02-28 09:27 - 2022-02-28 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elden Ring
2022-02-27 22:54 - 2022-02-27 22:54 - 000031216 _____ C:\Users\pierr\Downloads\1fb8223e20fbe64f5c761cfd04605a17a4e2bd9c.dlc
2022-02-27 22:39 - 2022-02-27 22:39 - 002674236 _____ C:\Users\pierr\Downloads\La complainte de la butte (Papo-Ch._m4a
2022-02-27 22:38 - 2022-02-27 22:38 - 001993996 _____ C:\Users\pierr\Downloads\20190311_232336 (1).m4a
2022-02-27 22:36 - 2022-02-27 22:36 - 011966818 _____ C:\Users\pierr\Downloads\ReplaceMusic
2022-02-27 22:27 - 2022-02-27 22:27 - 001993996 _____ C:\Users\pierr\Downloads\20190311_232336.m4a
2022-02-27 21:15 - 2022-02-27 21:15 - 000000000 ____D C:\Users\pierr\Downloads\ELDEN RING [DODI Repack]
2022-02-27 21:13 - 2022-02-27 21:13 - 000395729 _____ C:\Users\pierr\Downloads\DODILOVEURNG.torrent
2022-02-24 21:02 - 2022-02-24 21:02 - 000000000 ____D C:\Users\pierr\AppData\Local\Yandex
2022-02-20 15:51 - 2022-02-20 15:51 - 000022870 _____ C:\Users\pierr\Downloads\Classeur 6.xlsx
2022-02-16 13:57 - 2022-02-16 13:57 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\DARKSiDERS
2022-02-16 13:57 - 2022-02-16 13:57 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Laplacian
2022-02-16 12:57 - 2022-02-16 12:57 - 000000000 ____D C:\ProgramData\WZUpdateNotifier.exe
2022-02-16 12:56 - 2022-02-16 12:56 - 000000000 ____D C:\Users\pierr\AppData\Roaming\DOGE
2022-02-16 12:55 - 2022-02-16 12:55 - 000000000 ____D C:\Users\pierr\AppData\Local\motogp21
2022-02-16 12:53 - 2022-02-16 12:53 - 000000772 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotoGP 21.lnk
2022-02-15 21:31 - 2022-02-16 11:07 - 000000000 ____D C:\Users\pierr\Downloads\Cyanotype.Daydream.The.Girl.Who.Dreamed.The.World-DARKSiDERS
2022-02-15 21:30 - 2022-02-15 21:30 - 000014663 _____ C:\Users\pierr\Downloads\cyanotype_daydream_l.torrent
2022-02-15 16:29 - 2022-02-15 16:29 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\NBGI
2022-02-15 16:29 - 2022-02-15 16:29 - 000000000 ____D C:\Users\pierr\AppData\Local\FromSoftware
2022-02-15 16:23 - 2022-02-28 09:29 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2022-02-15 16:18 - 2022-02-28 09:30 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-02-15 14:58 - 2022-02-19 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2022-02-15 14:28 - 2022-02-15 14:28 - 000000000 ____D C:\Users\pierr\AppData\Local\Tone
2022-02-15 09:52 - 2022-02-15 09:52 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-02-15 09:07 - 2022-02-19 08:27 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\MATLAB
2022-02-15 09:07 - 2022-02-15 09:07 - 000000000 ____D C:\ProgramData\Oracle
2022-02-15 09:06 - 2022-02-15 09:06 - 000000000 ____D C:\Users\pierr\AppData\Local\MathWorks
2022-02-14 17:52 - 2022-02-14 17:52 - 000422083 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (3).pdf
2022-02-14 17:51 - 2022-02-14 17:51 - 000422778 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (2).pdf
2022-02-14 17:51 - 2022-02-14 17:51 - 000422778 _____ C:\Users\pierr\Downloads\Poster (24 janvier) (1).pdf
2022-02-14 15:38 - 2022-02-14 15:38 - 000092119 _____ C:\Users\pierr\Downloads\convention_14901_PIERRE_HAMEL(1).pdf
2022-02-11 22:14 - 2022-02-11 22:14 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-11 22:14 - 2022-02-11 22:14 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-02 19:31 - 2022-03-02 12:28 - 000000000 ____D C:\Users\pierr\AppData\Local\Pushbullet
2022-02-02 19:30 - 2022-02-02 19:30 - 001737872 _____ (Pushbullet Inc ) C:\Users\pierr\Downloads\pushbullet_installer.exe
2022-02-02 19:30 - 2022-02-02 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pushbullet
2022-02-02 19:30 - 2022-02-02 19:30 - 000000000 ____D C:\Program Files (x86)\Pushbullet
2022-02-02 16:06 - 2022-02-02 16:06 - 000037194 _____ C:\Users\pierr\Downloads\EDT_M1_S1_2021_2022_v2.pdf
2022-02-02 15:45 - 2022-02-02 15:45 - 000079558 _____ C:\Users\pierr\Downloads\Calendrier_M1PA_2021_2022_v1.pdf
2022-01-31 19:19 - 2022-01-31 19:19 - 000035518 _____ C:\Users\pierr\Downloads\TP2 jonction PN ln(I).ods
2022-01-31 19:19 - 2022-01-31 19:19 - 000032255 _____ C:\Users\pierr\Downloads\TP2 Jonction PN Graph SI.ods
2022-01-31 19:19 - 2022-01-31 19:19 - 000031823 _____ C:\Users\pierr\Downloads\TP jonction PN Ge.ods
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 21:11 - 2021-06-19 00:07 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-02 21:09 - 2021-06-19 10:22 - 000000000 ____D C:\Program Files (x86)\Steam
2022-03-02 21:02 - 2021-06-19 00:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-02 20:21 - 2021-06-19 10:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-03-02 20:04 - 2021-07-03 16:17 - 000000000 ____D C:\Users\pierr\AppData\Local\CrashDumps
2022-03-02 18:44 - 2021-08-02 07:12 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Qobuz
2022-03-02 13:04 - 2021-12-21 19:03 - 000001423 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grammarly.lnk
2022-03-02 11:23 - 2021-08-08 16:38 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-02 11:22 - 2021-11-17 18:12 - 000000000 ____D C:\Program Files\DS4Windows
2022-03-02 11:07 - 2021-06-19 19:48 - 000000000 ____D C:\Users\pierr\AppData\Roaming\DS4Windows
2022-03-02 10:43 - 2021-06-19 00:06 - 000000000 ____D C:\WINDOWS\INF
2022-03-02 10:42 - 2021-06-19 01:00 - 000000000 ____D C:\Users\pierr\AppData\Local\D3DSCache
2022-03-02 10:42 - 2021-06-19 00:07 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-02 07:57 - 2021-06-19 00:18 - 000490016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-02 07:55 - 2021-06-19 00:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-02 07:55 - 2021-06-19 00:18 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-02 07:55 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-02 07:54 - 2021-06-18 23:55 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-02 00:32 - 2021-06-19 00:07 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-02 00:32 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-02 00:02 - 2021-06-19 00:18 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-03-01 23:32 - 2021-12-13 14:07 - 000000000 ____D C:\Users\pierr\AppData\Roaming\uTorrent
2022-03-01 23:30 - 2021-06-19 00:37 - 000000000 ____D C:\WINDOWS\Panther
2022-03-01 23:29 - 2021-06-22 14:18 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-03-01 23:29 - 2021-06-22 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-03-01 23:28 - 2021-11-23 23:32 - 000002754 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2022-03-01 23:28 - 2021-11-23 23:32 - 000002752 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2022-03-01 23:28 - 2021-11-23 23:32 - 000002752 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2022-03-01 23:28 - 2021-11-17 18:05 - 000000000 ____D C:\Program Files\WinRAR
2022-03-01 23:28 - 2021-06-22 14:17 - 000000000 ____D C:\Program Files (x86)\WinRAR
2022-03-01 16:56 - 2021-06-19 00:07 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-02-28 23:30 - 2021-06-19 00:39 - 002320522 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 23:30 - 2021-06-19 00:17 - 000416792 _____ C:\WINDOWS\system32\prfh0804.dat
2022-02-28 23:30 - 2021-06-19 00:17 - 000132500 _____ C:\WINDOWS\system32\prfc0804.dat
2022-02-28 23:30 - 2021-06-19 00:15 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-28 23:30 - 2021-06-19 00:15 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-28 23:21 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-28 23:21 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-28 23:20 - 2021-06-19 00:07 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-28 23:20 - 2021-06-18 23:55 - 000000000 ____D C:\WINDOWS\servicing
2022-02-28 23:18 - 2021-06-18 23:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-28 20:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-28 09:08 - 2021-08-30 19:10 - 000000000 ____D C:\Games
2022-02-27 21:51 - 2021-12-13 14:05 - 000000000 ____D C:\Users\pierr\AppData\Local\BitTorrentHelper
2022-02-27 21:17 - 2021-06-19 00:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-27 21:09 - 2022-01-15 13:40 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-88331676-2151300063-2310376185-1001
2022-02-27 21:09 - 2021-06-19 01:03 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-88331676-2151300063-2310376185-1001
2022-02-27 21:09 - 2021-06-19 00:57 - 000002417 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-27 20:59 - 2021-09-23 07:29 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1632378553
2022-02-27 20:59 - 2021-09-23 07:29 - 000001405 _____ C:\Users\pierr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-02-24 15:47 - 2021-08-24 19:51 - 002236864 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-02-24 15:47 - 2021-08-24 19:51 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-02-24 15:46 - 2021-11-18 16:47 - 000119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000337360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000218576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000198120 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-02-24 15:46 - 2021-08-24 19:51 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-02-19 18:38 - 2021-12-13 14:04 - 000000000 ____D C:\Users\pierr\AppData\Roaming\uTorrent Web
2022-02-19 18:37 - 2021-12-13 14:04 - 000000000 ____D C:\Users\pierr\AppData\Local\_
2022-02-19 18:37 - 2021-06-20 14:57 - 000000000 ____D C:\Users\pierr\AppData\Roaming\qBittorrent
2022-02-19 12:46 - 2021-06-19 10:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 12:00 - 2021-06-21 22:45 - 000000000 ____D C:\ProgramData\Origin
2022-02-18 09:40 - 2021-06-21 22:45 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Origin
2022-02-18 09:39 - 2021-06-21 22:44 - 000000000 ____D C:\Users\pierr\AppData\Local\Origin
2022-02-17 09:36 - 2021-06-19 10:17 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-16 22:24 - 2021-06-19 00:57 - 000000000 ____D C:\Users\pierr
2022-02-16 10:02 - 2021-06-24 17:07 - 000000000 ____D C:\Users\pierr\AppData\Local\PlaceholderTileLogoFolder
2022-02-16 00:07 - 2021-06-19 01:00 - 000000000 ____D C:\Users\pierr\AppData\Local\Packages
2022-02-15 17:11 - 2021-09-06 11:59 - 000000000 ____D C:\Users\pierr\AppData\Roaming\RetroBat
2022-02-15 17:09 - 2021-07-06 23:08 - 000000000 ____D C:\Users\pierr\AppData\Roaming\vlc
2022-02-15 09:42 - 2022-01-14 09:31 - 000000000 ____D C:\Users\pierr\AppData\Roaming\MathWorks
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-12 10:52 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-12 10:51 - 2021-06-19 00:07 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-11 22:14 - 2021-06-19 00:22 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-11 21:21 - 2021-06-19 10:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 21:18 - 2021-06-19 10:40 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-11 21:15 - 2021-06-19 00:23 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2022-02-10 17:31 - 2021-06-19 00:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-08 14:18 - 2021-08-02 07:11 - 000000000 ____D C:\Users\pierr\AppData\Local\Qobuz
==================== Fichiers à la racine de certains dossiers ========
2022-02-16 12:57 - 2022-02-16 12:57 - 000000000 ____D () C:\ProgramData\WZUpdateNotifier.exe
2021-08-03 10:14 - 2021-08-03 10:14 - 000000064 _____ () C:\Users\pierr\AppData\Roaming\changzhi_leidian.data
2021-08-03 10:14 - 2021-08-03 10:14 - 000000024 _____ () C:\Users\pierr\AppData\Roaming\changzhi_leidianmac.data
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================