cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-06-2022
Exécuté par Elfay (administrateur) sur DESKTOP-VAD71RJ (Acer Aspire A315-21) (13-06-2022 13:06:01)
Exécuté depuis C:\Users\Elfay\Downloads
Profils chargés: Elfay
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1706 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.422.7952.temp <3>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7779\Agent.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22042.168.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22042.168.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(Discord Inc. -> Discord Inc.) C:\Users\Elfay\AppData\Local\Discord\app-1.0.9005\Discord.exe <6>
(DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Open Source Developer, Noriyuki Miyazaki -> Crystal Dew World) C:\Users\Elfay\AppData\Local\Temp\Rar$EXa9448.24335\DiskInfo64.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (VMware, Inc. -> ) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212816 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410960 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [117720 2020-03-07] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-572262866-4205587842-2749333905-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19646312 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-572262866-4205587842-2749333905-1001\...\Run: [Opera Browser Assistant] => C:\Users\Elfay\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3152920 2020-11-10] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-572262866-4205587842-2749333905-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-572262866-4205587842-2749333905-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32648144 2022-06-08] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-572262866-4205587842-2749333905-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-06-01] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {002E8037-0C56-4804-8E82-D79C0A121594} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-07-03] (Acer Incorporated -> )
Task: {06DC8DBA-25AE-44E4-8BCD-50B0DF1E12DB} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-07-11] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {0E955D71-A910-4F33-8CCC-BA0CF2DEAEA1} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-elfaye87@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {13F7C2B4-1963-46FD-8CA2-FCF950EB1FDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d6be1884e81c2" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1559835942" /ENABLE
Task: {1796727B-B5DB-4B96-9CD1-366F2427DB45} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {2480814B-B646-4FD6-9D47-A7108FFFB774} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-572262866-4205587842-2749333905-1001 => C:\Users\Elfay\AppData\Local\MEGAsync\MEGAupdater.exe (Pas de fichier)
Task: {27A029D1-8F91-4B0B-A30F-ADFBF3E7FB90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {30FCD415-1641-44BC-AF10-723C862C2216} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {413D5E91-A906-4D81-9515-6E543D89585E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-07-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {517DC0C3-F30C-45A5-BCFC-16C7FDD1377B} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {615E4C2B-8CF1-4C3C-90F1-9611631CFC09} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-07-03] (Acer Incorporated -> )
Task: {64C911D8-AC72-4326-8BE7-3B70B1AF7E68} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {6FC26F52-C23C-419C-AFFA-57E46D9B358F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4925264 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
Task: {734773E2-BEE6-411D-BDBB-F77F4D914089} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [745664 2016-01-12] (@ByELDI -> @ByELDI) [Fichier non signé]
Task: {821B1280-509A-4B29-9D3B-792F9A8E7E4D} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {82E953CB-D8CA-46E6-8DF8-FC3DE94464C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14680792 2019-02-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8A737F6C-93A8-4D43-B7A5-E985A9F226B3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
Task: {8C35C69F-1D52-45BD-8997-349E5059459F} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {932724D5-4C51-432F-A007-51540E8A60C1} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268080 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {9FDD6F16-8731-495F-BAC0-775B33FE473B} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {A7B7BEAF-A567-4BB7-AB53-60D91E1EF526} - System32\Tasks\Opera scheduled Autoupdate 1559835942 => C:\Users\Elfay\AppData\Local\Programs\Opera\launcher.exe [2473216 2022-06-02] (Opera Software AS -> Opera Software)
Task: {B77B2F7D-A511-456D-9540-0CFEF7E96DAB} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-07-03] (Acer Incorporated -> )
Task: {BB45B566-5C1C-4EBB-8DE0-9B081012B1FE} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-07-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C1746367-F49D-45F5-9B85-17F4F14A6884} - System32\Tasks\Opera scheduled assistant Autoupdate 1582385616 => C:\Users\Elfay\AppData\Local\Programs\Opera\launcher.exe [2473216 2022-06-02] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Elfay\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DF55990D-1936-4EBE-8AB8-83164F7810B7} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FA025DC7-0CE6-4540-B759-3D053B26AF83} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-07] (Google Inc -> Google Inc.)
Task: {FFD510C6-F890-4592-B212-1DABC51F1E89} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-10-26] () [Fichier non signé]

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{52f61ad7-ec6e-44c8-a8ef-74cfdf6cbbd7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d7372dc2-854b-4032-8180-56e680fbc33f}: [DhcpNameServer] 192.168.0.254
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Elfay\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-12]

FireFox:
========
FF DefaultProfile: gvjk9sk1.default
FF ProfilePath: C:\Users\Elfay\AppData\Roaming\Mozilla\Firefox\Profiles\gvjk9sk1.default [2021-12-04]
FF Extension: (Français Language Pack) - C:\Users\Elfay\AppData\Roaming\Mozilla\Firefox\Profiles\gvjk9sk1.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2020-07-12]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Elfay\AppData\Roaming\Mozilla\Firefox\Profiles\gvjk9sk1.default\Extensions\sp@avast.com.xpi [2020-07-12]
FF Extension: (Avast Online Security) - C:\Users\Elfay\AppData\Roaming\Mozilla\Firefox\Profiles\gvjk9sk1.default\Extensions\wrc@avast.com.xpi [2020-07-12]
FF Extension: (Firefox ESR configurer for OLDJAWS screen reader ) - C:\Program Files (x86)\Mozilla Firefox\browser\features\jaws-esr@mozilla.org.xpi [2019-12-09] [] [non signé]
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-572262866-4205587842-2749333905-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Elfay\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default [2022-06-13]
CHR Notifications: Default -> hxxps://instant-karma-4.myshopify.com; hxxps://mail.google.com; hxxps://my.ionos.fr; hxxps://www.dsers.com; hxxps://www.instagram.com; hxxps://www.netflix.com
CHR HomePage: Default -> hxxp://google.fr/
CHR Extension: (Image Downloader for IW) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcieicfnbnmlffkgbiemoofinidpgloa [2022-01-24]
CHR Extension: (ASIFY) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehagnkgckkagkbpncoieiknahmngdg [2022-05-31]
CHR Extension: (Alitools assistant shopping) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\eenflijjbchafephdplkdmeenekabdfb [2022-05-31]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-02-09]
CHR Extension: (Readium) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl [2019-12-01]
CHR Extension: (Save image as Type) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabfmnliflodkdafenbcpjdlppllnemd [2020-12-16]
CHR Extension: (Assassin's Creed III) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\geadmffjboclimmeiaimcafapjaefnfn [2019-03-31]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-05-31]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2022-04-04]
CHR Extension: (Commerce Inspector) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\kefmekfmfacbdefimlancoccpocmgmpb [2022-02-12]
CHR Extension: (DSers - AliExpress.com Product Importer) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmanaflgaempokjfbeeabkadnkoidjam [2022-05-31]
CHR Extension: (AliSave | Télécharger les images & videos AliExpress) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbhfcmbdimdbbclfngkjfmgmjhnkjocl [2022-06-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-12-03]
CHR Extension: (Slides) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-03]
CHR Extension: (Docs) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-03]
CHR Extension: (Google Drive) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-03]
CHR Extension: (YouTube) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-03]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-02-03]
CHR Extension: (Sheets) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-03]
CHR Extension: (Avast Online Security) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-03]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2020-02-03]
CHR Extension: (Gmail) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-03]
CHR Profile: C:\Users\Elfay\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-03]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]

Opera:
=======
OPR Profile: C:\Users\Elfay\AppData\Roaming\Opera Software\Opera Stable [2022-06-13]
OPR Notifications: Opera Stable -> hxxps://www.youtube.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Elfay\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-02-19]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Elfay\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-02-07]
OPR Extension: (Installer des extensions Chrome) - C:\Users\Elfay\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-01-07]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-07-03] (Acer Incorporated -> Acer Incorporated)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8434824 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [576336 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [576336 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-13] (Avast Software s.r.o. -> AVAST Software)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15477208 2020-03-07] (VMware, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [38936 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [381616 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255144 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102568 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [44568 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271592 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548976 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [558768 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218088 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317832 2022-05-21] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapmullvad0901; C:\WINDOWS\System32\drivers\tapmullvad0901.sys [39616 2020-02-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2020-03-07] (VMware, Inc. -> VMware, Inc.)
R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [52576 2018-02-28] (VMware, Inc. -> VMware, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Trois mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-06-13 13:00 - 2022-06-13 12:59 - 000360637 _____ C:\Users\Elfay\Desktop\ZHPDiag.txt
2022-06-13 12:32 - 2022-06-13 13:00 - 000441175 _____ C:\Users\Elfay\Desktop\ZHPDiag.html
2022-06-13 11:35 - 2022-06-13 11:35 - 000046095 _____ C:\Users\Elfay\Downloads\Shortcut.txt
2022-06-13 11:34 - 2022-06-13 11:35 - 000056205 _____ C:\Users\Elfay\Downloads\Addition.txt
2022-06-13 11:29 - 2022-06-13 11:29 - 006189924 _____ C:\Users\Elfay\Downloads\crystaldiskinfo-portable-8-16-4.zip
2022-06-13 11:28 - 2022-06-13 13:07 - 000030727 _____ C:\Users\Elfay\Downloads\FRST.txt
2022-06-13 11:28 - 2022-06-13 13:06 - 000000000 ____D C:\FRST
2022-06-13 11:23 - 2022-06-13 12:32 - 000360878 _____ C:\Users\Public\Desktop\ZHPDiag.txt
2022-06-13 11:11 - 2022-06-13 11:11 - 002368000 _____ (Farbar) C:\Users\Elfay\Downloads\FRST64.exe
2022-06-13 11:06 - 2022-06-13 13:05 - 000000000 ____D C:\Users\Elfay\AppData\Roaming\ZHP
2022-06-13 11:06 - 2022-06-13 13:03 - 000000869 _____ C:\Users\Elfay\Desktop\ZHPSuite.lnk
2022-06-13 11:06 - 2022-06-13 11:06 - 003483848 _____ (Nicolas Coolman) C:\Users\Elfay\Downloads\ZHPSuite.exe
2022-06-13 11:06 - 2022-06-13 11:06 - 000000000 ____D C:\Users\Elfay\AppData\Local\ZHP
2022-06-13 00:51 - 2022-06-13 00:51 - 000000000 ___HD C:\$SysReset
2022-06-12 21:57 - 2022-06-12 21:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2022-06-12 21:57 - 2022-06-12 21:57 - 000000000 ____D C:\ProgramData\LogiShrd
2022-06-12 21:57 - 2022-06-12 21:57 - 000000000 ____D C:\Program Files\Common Files\LogiShrd
2022-06-12 21:56 - 2022-06-12 21:56 - 004147600 _____ ($Co_Name Inc.) C:\Users\Elfay\Downloads\unifying250.exe
2022-05-28 14:58 - 2022-05-28 14:58 - 000000000 ___HD C:\$WinREAgent
2022-05-23 09:26 - 2022-05-23 09:26 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-05-23 09:25 - 2022-05-23 09:25 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-23 09:25 - 2022-05-23 09:25 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-05-21 07:46 - 2022-05-21 07:46 - 000287056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-05-21 07:46 - 2022-05-21 07:46 - 000218088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-04-24 12:17 - 2022-04-24 12:17 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-21 12:27 - 2022-04-21 12:27 - 000000000 ____D C:\Users\Elfay\Downloads\MoonTime
2022-04-21 12:23 - 2022-04-21 12:23 - 000036429 _____ C:\Users\Elfay\Downloads\MoonTime.zip
2022-04-17 04:23 - 2022-04-17 04:23 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-04-15 18:18 - 2022-04-15 18:18 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-15 18:17 - 2022-04-15 18:17 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-15 18:13 - 2022-04-15 18:13 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-15 18:00 - 2022-04-15 18:00 - 000001803 _____ C:\Users\Elfay\Desktop\Wow - Raccourci.lnk
2022-04-13 23:09 - 2022-04-13 23:09 - 000000000 ____D C:\Users\Elfay\Downloads\Client_3.3.5
2022-04-13 17:44 - 2022-04-13 18:02 - 495332300 _____ C:\Users\Elfay\Downloads\Client_3.3.5.zip
2022-04-08 18:41 - 2022-04-15 03:01 - 000000000 ____D C:\Users\Elfay\Documents\Harry Potter II
2022-04-08 18:41 - 2022-04-08 18:41 - 000001864 _____ C:\Users\Public\Desktop\Harry Potter et la Chambre des Secrets.lnk
2022-04-08 18:39 - 2022-04-08 18:39 - 000000000 ____D C:\Users\Elfay\AppData\Roaming\dgVoodoo
2022-04-06 10:46 - 2022-04-08 18:36 - 000000000 ____D C:\Users\Elfay\Documents\Harry Potter
2022-04-06 10:45 - 2022-04-08 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abandonware-France
2022-04-06 10:45 - 2022-04-06 10:45 - 000001900 _____ C:\Users\Public\Desktop\Harry Potter à l'école des sorciers.lnk
2022-04-06 10:44 - 2022-04-06 10:45 - 334829206 _____ (Abandonware-France ) C:\Users\Elfay\Downloads\setup-03585-Harry_Potter_et_la_Chambre_des_Secrets-PCWin.exe
2022-04-06 10:42 - 2022-04-06 10:44 - 361890171 _____ (Abandonware-France ) C:\Users\Elfay\Downloads\setup-03016-Harry_Potter_a_l'ecole_des_sorciers-PCWin.exe

==================== Trois mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-06-13 13:08 - 2019-02-07 21:21 - 000000000 ____D C:\Users\Elfay\AppData\Roaming\Discord
2022-06-13 13:06 - 2019-11-20 23:23 - 000000000 ____D C:\Users\Elfay\AppData\Local\Battle.net
2022-06-13 12:46 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-13 12:44 - 2019-02-07 21:12 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-13 11:44 - 2021-11-28 20:40 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2022-06-13 11:40 - 2021-04-19 18:35 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-06-13 11:26 - 2019-02-07 21:21 - 000002231 _____ C:\Users\Elfay\Desktop\Discord.lnk
2022-06-13 11:26 - 2019-02-07 21:21 - 000000000 ____D C:\Users\Elfay\AppData\Local\Discord
2022-06-13 11:07 - 2020-11-19 04:05 - 001775186 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-13 11:07 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2022-06-13 11:07 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-06-13 11:07 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-13 11:04 - 2020-11-23 12:36 - 000000000 ____D C:\Program Files (x86)\Steam
2022-06-13 11:04 - 2019-02-07 21:23 - 000000000 ____D C:\Users\Elfay\AppData\Local\AVAST Software
2022-06-13 11:02 - 2020-11-25 02:12 - 000003422 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6be1884e81c2
2022-06-13 11:02 - 2020-11-19 04:08 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-13 11:02 - 2020-11-19 04:08 - 000003538 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1559835942
2022-06-13 11:02 - 2020-11-19 04:08 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-06-13 11:02 - 2020-11-19 04:08 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-06-13 11:02 - 2020-11-19 04:08 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-06-13 11:02 - 2020-11-19 03:57 - 000000000 ____D C:\Users\Elfay
2022-06-13 11:01 - 2020-11-19 04:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-13 11:01 - 2020-11-19 03:55 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-13 11:01 - 2020-11-19 03:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-13 11:01 - 2020-04-21 18:53 - 000000000 ____D C:\ProgramData\VMware
2022-06-13 01:20 - 2020-11-19 04:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-06-13 00:51 - 2019-03-27 04:36 - 000000000 ____D C:\Users\Elfay\AppData\Local\ElevatedDiagnostics
2022-06-13 00:51 - 2019-02-16 17:27 - 000000000 ____D C:\Users\Elfay\AppData\Local\D3DSCache
2022-06-13 00:47 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-06-13 00:47 - 2019-02-07 21:17 - 000000000 ____D C:\ProgramData\AVAST Software
2022-06-13 00:47 - 2018-09-21 13:55 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2022-06-13 00:45 - 2020-11-19 04:08 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-06-12 18:31 - 2019-10-03 12:18 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-06-12 16:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-12 16:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-11 12:03 - 2020-06-29 03:02 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-11 12:03 - 2020-06-29 03:02 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-06-06 13:03 - 2019-06-06 17:45 - 000001409 _____ C:\Users\Elfay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-06-04 16:39 - 2019-02-09 03:19 - 000000000 ____D C:\Users\Elfay\AppData\Local\CrashDumps
2022-06-04 01:01 - 2019-02-09 05:36 - 000000000 ____D C:\ProgramData\Packages
2022-05-31 13:08 - 2021-01-12 22:57 - 000001476 _____ C:\Users\Elfay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2022-05-31 13:08 - 2021-01-12 22:57 - 000001468 _____ C:\Users\Elfay\Desktop\NVIDIA GeForce NOW.lnk
2022-05-31 13:08 - 2020-07-31 18:56 - 000000000 ____D C:\Users\Elfay\AppData\Local\NVIDIA Corporation
2022-05-28 17:41 - 2020-11-19 03:55 - 000473600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-05-28 17:40 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-26 17:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-23 08:46 - 2019-02-08 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-05-23 08:37 - 2019-02-08 19:38 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-05-21 07:47 - 2019-02-07 21:19 - 000381616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-05-21 07:47 - 2019-02-07 21:19 - 000317832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-05-21 07:46 - 2020-10-26 15:38 - 000271592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-05-21 07:46 - 2020-04-21 05:07 - 000548976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-05-21 07:46 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-05-21 07:46 - 2019-02-07 21:19 - 000558768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-05-21 07:46 - 2019-02-07 21:19 - 000255144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-05-21 07:46 - 2019-02-07 21:19 - 000111056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-05-21 07:46 - 2019-02-07 21:19 - 000102568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-05-21 07:46 - 2019-02-07 21:19 - 000086120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-05-21 07:46 - 2019-02-07 21:19 - 000044568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-05-21 07:45 - 2019-09-15 23:07 - 000038936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-05-21 07:45 - 2019-02-07 21:19 - 000857488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-05-21 07:45 - 2019-02-07 21:19 - 000232648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys

==================== Fichiers à la racine de certains dossiers ========

2019-03-26 01:08 - 2019-03-26 01:46 - 000001456 _____ () C:\Users\Elfay\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2019-02-13 23:29 - 2019-02-13 23:29 - 000000410 _____ () C:\Users\Elfay\AppData\Local\oobelibMkey.log

==================== SigCheckExt =========================

2006-12-02 00:37 - 2006-12-02 00:37 - 000904704 _____ (Microsoft Corporation) C:\msdia80.dll
2020-05-22 17:52 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\WINDOWS\system32\divx.dll
2020-05-22 17:52 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\WINDOWS\system32\Lagarith.dll
2020-05-22 17:52 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\WINDOWS\system32\mcdvd_32.dll
2020-05-22 17:52 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg4c32.dll
2020-05-22 17:52 - 2003-05-21 22:50 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3a.dll
2019-11-05 16:45 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2020-05-22 17:52 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\WINDOWS\system32\vp6vfw.dll
2020-05-22 17:52 - 2004-07-03 19:59 - 000524288 _____ C:\WINDOWS\system32\xvidcore.dll
2020-05-22 17:52 - 2004-07-03 20:08 - 000139264 _____ C:\WINDOWS\system32\xvidvfw.dll
2019-11-05 16:45 - 2019-11-05 16:45 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2019-11-05 16:45 - 2019-11-05 16:45 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
2019-02-09 03:19 - 2019-02-09 03:20 - 000012067 ____T C:\WINDOWS\SysWOW64\SIntf16.dll
2019-02-09 03:19 - 2019-02-09 03:20 - 000017212 ____T C:\WINDOWS\SysWOW64\SIntf32.dll
2019-02-09 03:19 - 2019-02-09 03:20 - 000021840 ____T C:\WINDOWS\SysWOW64\SIntfNT.dll
2018-08-30 15:07 - 2018-08-30 15:07 - 000276480 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec32.dll
2018-08-30 15:07 - 2018-08-30 15:07 - 000336896 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec64.dll
2018-08-30 14:24 - 2018-08-30 14:24 - 000487424 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid.dll
2018-08-30 14:24 - 2018-08-30 14:24 - 000596480 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid64.dll
2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2020-03-22 02:28 - 2020-03-22 02:28 - 000516931 _____ (-) C:\Users\Elfay\Downloads\AZ_Minecraft_Launcher_Offline.exe
2022-06-13 11:11 - 2022-06-13 11:11 - 002368000 _____ (Farbar) C:\Users\Elfay\Downloads\FRST64.exe
2019-12-01 19:03 - 2019-12-01 19:03 - 002391732 _____ ( ) C:\Users\Elfay\Downloads\project64-2-3-2.exe
2019-12-01 19:22 - 2019-12-01 19:22 - 100246649 _____ (RomStation ) C:\Users\Elfay\Downloads\romstation-windows-x64.exe
2022-04-06 10:42 - 2022-04-06 10:44 - 361890171 _____ (Abandonware-France ) C:\Users\Elfay\Downloads\setup-03016-Harry_Potter_a_l'ecole_des_sorciers-PCWin.exe
2022-04-06 10:44 - 2022-04-06 10:45 - 334829206 _____ (Abandonware-France ) C:\Users\Elfay\Downloads\setup-03585-Harry_Potter_et_la_Chambre_des_Secrets-PCWin.exe
2020-04-20 02:59 - 2015-11-19 17:16 - 005347164 _____ (Technitium) C:\Users\Elfay\Downloads\TMACv6.0.7_Setup.exe
2022-06-13 11:06 - 2022-06-13 11:06 - 003483848 _____ (Nicolas Coolman) C:\Users\Elfay\Downloads\ZHPSuite.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


==================== BCD ================================

Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{c2c1e380-bd9a-11e8-be92-806e6f6e6963}
{c2c1e381-bd9a-11e8-be92-806e6f6e6963}
{c2c1e382-bd9a-11e8-be92-806e6f6e6963}
timeout 0

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {4c27df89-2a0a-11eb-8725-c8ec13ae5844}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Application logicielle (101fffff)
--------------------------------
identificateur {c2c1e380-bd9a-11e8-be92-806e6f6e6963}
description EFI USB Device

Application logicielle (101fffff)
--------------------------------
identificateur {c2c1e381-bd9a-11e8-be92-806e6f6e6963}
description EFI DVD/CDROM

Application logicielle (101fffff)
--------------------------------
identificateur {c2c1e382-bd9a-11e8-be92-806e6f6e6963}
description EFI Network

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {4c27df8b-2a0a-11eb-8725-c8ec13ae5844}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {4c27df89-2a0a-11eb-8725-c8ec13ae5844}
nx OptIn
bootmenupolicy Standard

Chargeur de d‚marrage Windows
-----------------------------
identificateur {4c27df8b-2a0a-11eb-8725-c8ec13ae5844}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{4c27df8c-2a0a-11eb-8725-c8ec13ae5844}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{4c27df8c-2a0a-11eb-8725-c8ec13ae5844}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {4c27df89-2a0a-11eb-8725-c8ec13ae5844}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {4c27df8b-2a0a-11eb-8725-c8ec13ae5844}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {4c27df8c-2a0a-11eb-8725-c8ec13ae5844}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi


==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité