cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2022
Exécuté par Dylur (administrateur) sur DYURKE-COMPUTER (Extreme Gamer NH5x_7xDCx_DDx) (16-03-2022 21:23:16)
Exécuté depuis C:\Users\Dylur\OneDrive\Bureau
Profils chargés: Dylur
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1586 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCopyAccelerator.exe
(Discord Inc. -> Discord Inc.) C:\Users\Dylur\AppData\Local\Discord\app-1.0.9004\Discord.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxEM.exe
(explorer.exe ->) (Gamers Net Inc -> Mobalytics) C:\Users\Dylur\AppData\Local\Programs\mobalytics-desktop\Mobalytics Desktop.exe <9>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_de0cf7bbf26b8ed4\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4789e47f6228caeb\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_23a1c1315f01c788\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_23a1c1315f01c788\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvcvsig.inf_amd64_30cc90dec1e9a8d2\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (NVIDIA Corporation -> Nvidia Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA RTX Voice\NVIDIA RTX Voice.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe"
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-4245588310-2274567742-2949004428-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2619296 2022-03-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4245588310-2274567742-2949004428-1001\...\Run: [Discord] => C:\Users\Dylur\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4245588310-2274567742-2949004428-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4245588310-2274567742-2949004428-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35646080 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4245588310-2274567742-2949004428-1001\...\Run: [MobalyticsHQ.DesktopApp] => C:\Users\Dylur\AppData\Local\Programs\mobalytics-desktop\Mobalytics Desktop.exe [136115552 2022-03-01] (Gamers Net Inc -> Mobalytics)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\99.0.4844.51\Installer\chrmstp.exe [2022-03-08] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-12-27]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Users\Dylur\OneDrive\Bureau\DriversCloud_Install\drivers_74843_SetupRST.exe (Pas de fichier)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01CE04B9-E4E6-46C9-8EA6-47359D9AA53B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {06C234CC-EECC-400A-B0B0-9871C8B64904} - System32\Tasks\CCleanerSkipUAC - Dylur => C:\Program Files\CCleaner\CCleaner.exe [29764224 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0CD9E08C-1A77-4CD2-B34E-923D28731493} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {19115C7D-C681-4C14-993A-B7B42D5CA2B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-27] (Google LLC -> Google LLC)
Task: {1C22035C-234A-470D-B692-02F92C5A0CED} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-02-14] (Piriform Software Ltd -> Piriform)
Task: {2727BF5B-41DF-49CA-9F65-98D8F83D31AD} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {31C799A9-03D0-4E52-89CF-F73818BAC1E0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {37EAB0A1-EDDC-4AEB-8B60-07212220C3CE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4245588310-2274567742-2949004428-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {45BB558E-2FB6-4FFD-A0AE-32946899280D} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {491DFE22-E09F-46A2-91D2-EEC0AF8F590A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {69A82B26-4B00-48DD-A053-38AC3662819A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {72B8654B-5607-45AD-9CF7-43617AE6D262} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {7682FBEB-A2FB-4BA8-80B7-EF2035348644} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {851D3BC7-3E8A-4523-BD72-92DEAB168055} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8B804F0E-F5AA-46BA-ADEE-AEC1EA46477D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8BC5ACEC-40F9-4BA8-98C5-61465E6937D7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {91CFB590-1350-45B5-AE13-5A6E805E34AA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {99B9CED1-5416-409A-BA44-F3D372441757} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DB23184-F083-4FFB-9B5A-2D8CE91336B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-27] (Google LLC -> Google LLC)
Task: {A112318B-7D2B-4E17-9044-826016A9FAD7} - System32\Tasks\RTXVoice_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA RTX Voice\NVIDIA RTX Voice.exe [5133296 2020-04-08] (NVIDIA Corporation -> Nvidia Corporation)
Task: {A723DFA8-2FEC-4DCF-B67B-1CDF2BE51C44} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B0219AB1-471E-496F-8BF9-2E4E7C1EEDF9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B771532E-C356-4378-ADE0-E5CFFD1B05BB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0194C66-2330-47E1-BF0D-43EB942E336A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E12FF110-83C6-4E2E-BCC0-96E0FFD7A6DA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E698A58F-1D06-4667-AC26-CB7E28B0D093} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a9f5c763-005f-4780-83a6-9bea00ccbe48}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f34623b3-e4d5-418c-8360-1036a86949ca}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\Dylur\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-14]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default [2022-03-14]
CHR Extension: (Slides) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-27]
CHR Extension: (Docs) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-27]
CHR Extension: (Google Drive) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-27]
CHR Extension: (YouTube) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-27]
CHR Extension: (Sheets) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-27]
CHR Extension: (Gmail) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-27]
CHR Profile: C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-12-27]
CHR Profile: C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-03-14]
CHR Extension: (Slides) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-27]
CHR Extension: (Docs) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-27]
CHR Extension: (Google Drive) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-27]
CHR Extension: (YouTube) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-27]
CHR Extension: (Sheets) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-27]
CHR Extension: (Gmail) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-27]
CHR Profile: C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-03-16]
CHR DownloadDir: C:\Users\Dylur\OneDrive\Bureau
CHR DefaultSearchURL: Profile 3 -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=4.0.7&method=topbar
CHR DefaultSearchKeyword: Profile 3 -> ecosia
CHR DefaultSuggestURL: Profile 3 -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Extension: (Slides) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-27]
CHR Extension: (Docs) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-27]
CHR Extension: (Google Drive) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-27]
CHR Extension: (YouTube) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-27]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Tampermonkey) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-01-27]
CHR Extension: (Ecosia Search) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2021-12-16]
CHR Extension: (wanteeed) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-03-06]
CHR Extension: (Sheets) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-14]
CHR Extension: (Material Dark Theme - Space Gray) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hkbfhddllgdpmkmmpofocllfnaeogokm [2022-01-07]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-01-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-27]
CHR Extension: (Gmail) - C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-27]
CHR Profile: C:\Users\Dylur\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-14]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileSyncHelper.exe [3382176 2022-03-16] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\OneDriveUpdaterService.exe [3861400 2022-03-16] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvsig.inf_amd64_30cc90dec1e9a8d2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvcvsig.inf_amd64_30cc90dec1e9a8d2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 ANXUcmCxCD; C:\WINDOWS\System32\drivers\ANXUcmCxCD.sys [101608 2021-01-26] (Analogix Semiconductor, Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKslae955296; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1AD567EB-BEAF-4236-9524-EE3CAC77B287}\MpKslDrv.sys [137464 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [439544 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl3092a1a0; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{229A1923-35F0-43B4-BB37-69F8E412A3F2}\MpKslDrv.sys [X]
S3 MpKsl3d6523bd; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{229A1923-35F0-43B4-BB37-69F8E412A3F2}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-03-16 21:22 - 2022-03-16 21:23 - 000000000 ____D C:\FRST
2022-03-16 12:58 - 2022-03-16 12:58 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2022-03-11 13:35 - 2022-03-11 13:35 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-11 13:34 - 2022-03-11 13:34 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-11 13:34 - 2022-03-11 13:34 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-11 13:33 - 2022-03-11 13:33 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-11 13:32 - 2022-03-11 13:32 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-11 13:20 - 2022-03-11 13:20 - 000000000 ___HD C:\$WinREAgent

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-03-16 21:21 - 2021-11-27 00:58 - 000000000 ____D C:\Program Files (x86)\Google
2022-03-16 21:14 - 2021-11-27 01:04 - 000000000 ____D C:\Users\Dylur\AppData\Roaming\discord
2022-03-16 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-16 21:04 - 2021-11-27 01:04 - 000000000 ____D C:\Users\Dylur\AppData\Local\Discord
2022-03-16 21:02 - 2022-01-11 22:01 - 000000000 ____D C:\Users\Dylur\AppData\Roaming\mobalytics-desktop
2022-03-16 21:01 - 2021-11-27 01:06 - 000000000 ____D C:\ProgramData\Riot Games
2022-03-16 20:47 - 2021-11-27 00:56 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-16 19:17 - 2021-11-27 00:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-16 13:09 - 2021-11-27 01:36 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-03-16 13:09 - 2021-11-27 01:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-03-16 13:09 - 2021-04-15 19:27 - 000000000 ____D C:\Riot Games
2022-03-16 13:05 - 2021-11-27 00:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-16 13:04 - 2021-12-26 15:08 - 000000000 ____D C:\Program Files\CCleaner
2022-03-16 13:02 - 2021-12-11 00:14 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4245588310-2274567742-2949004428-1001
2022-03-16 13:02 - 2021-11-30 17:46 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-03-16 13:02 - 2021-11-27 01:15 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-03-16 13:02 - 2021-11-27 01:15 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-16 13:02 - 2021-11-27 00:57 - 000000000 ___RD C:\Users\Dylur\OneDrive
2022-03-16 12:59 - 2021-11-27 00:55 - 000000000 __SHD C:\Users\Dylur\IntelGraphicsProfiles
2022-03-16 12:57 - 2021-11-27 00:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-16 12:57 - 2021-02-06 01:15 - 000000000 ____D C:\Intel
2022-03-16 12:55 - 2021-02-06 01:01 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-14 23:18 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-14 23:14 - 2021-11-27 00:55 - 000000000 ____D C:\Users\Dylur\AppData\Local\Packages
2022-03-14 23:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-14 19:26 - 2021-11-27 00:55 - 000000000 ____D C:\Users\Dylur\AppData\Local\D3DSCache
2022-03-14 19:17 - 2021-12-17 01:58 - 000000000 ____D C:\Users\Dylur\AppData\Local\CrashDumps
2022-03-14 18:23 - 2022-01-30 13:29 - 000000000 ____D C:\WINDOWS\Minidump
2022-03-14 18:18 - 2022-02-05 00:22 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AZ Launcher - Minecraft.lnk
2022-03-14 18:18 - 2021-12-01 17:01 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2022-03-14 18:18 - 2021-11-27 01:14 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-03-14 18:18 - 2021-11-27 01:14 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-03-14 18:07 - 2021-11-27 00:37 - 001770938 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-03-14 18:07 - 2019-12-07 15:49 - 000793022 _____ C:\WINDOWS\system32\perfh00C.dat
2022-03-14 18:07 - 2019-12-07 15:49 - 000150152 _____ C:\WINDOWS\system32\perfc00C.dat
2022-03-14 18:07 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-03-14 18:05 - 2021-11-27 01:14 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2022-03-14 18:05 - 2021-11-27 01:14 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-03-14 18:05 - 2021-11-27 00:59 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-03-14 17:34 - 2021-11-27 00:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-12 01:40 - 2021-11-27 00:26 - 000441704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-12 01:36 - 2021-11-27 00:52 - 000000000 ____D C:\Users\Dylur
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-12 01:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-12 01:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-11 23:18 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-11 19:44 - 2021-12-02 23:50 - 000000000 ____D C:\Users\Dylur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-03-11 13:42 - 2021-12-05 15:07 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 13:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-11 13:32 - 2021-11-27 00:34 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-11 13:26 - 2021-11-27 01:11 - 000000000 ____D C:\Program Files\Microsoft Office
2022-03-11 12:44 - 2021-11-29 17:49 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-03-11 12:44 - 2021-11-29 17:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-09 13:12 - 2021-11-27 00:28 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-09 13:12 - 2021-11-27 00:28 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-03-07 13:31 - 2021-12-02 22:19 - 000000000 ____D C:\Users\Dylur\AppData\Local\Overwolf
2022-03-07 13:27 - 2021-12-02 23:42 - 000000000 ____D C:\Users\Dylur\AppData\Local\Bluestacks
2022-02-24 03:16 - 2022-01-02 20:36 - 002236864 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-02-24 03:16 - 2022-01-02 20:36 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-02-24 03:15 - 2022-01-02 20:36 - 000337360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-02-24 03:15 - 2022-01-02 20:36 - 000218576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-02-24 03:15 - 2022-01-02 20:36 - 000198120 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-02-24 03:15 - 2022-01-02 20:36 - 000119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-02-24 03:15 - 2022-01-02 20:36 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-02-19 14:10 - 2021-11-27 01:23 - 000000000 ____D C:\Users\Dylur\AppData\Local\ElevatedDiagnostics
2022-02-18 20:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-18 19:25 - 2021-12-26 15:08 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-14 21:06 - 2021-12-05 15:07 - 000600944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2022-02-14 21:06 - 2021-12-05 15:07 - 000482120 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll

==================== Fichiers à la racine de certains dossiers ========

2022-02-05 00:25 - 2022-02-05 00:25 - 000000850 _____ () C:\Users\Dylur\AppData\Roaming\AdobeWLCMR2Cache.dat
2021-12-26 15:15 - 2022-01-14 13:17 - 000007597 _____ () C:\Users\Dylur\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité