cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-03-2023
Exécuté par Maddie (administrateur) sur MADII (02-04-2023 17:46:09)
Exécuté depuis C:\Users\Madii\Desktop
Profils chargés: Maddie
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2788 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCopyAccelerator.exe
(E:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <6>
(explorer.exe ->) (Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
(services.exe ->) (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_10.75.13001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_10.75.13001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [Genshin Impact Beta_Launcher] => [X]
HKLM-x32\...\Run: [Genshin Impact_Launcher] => [X]
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-11-03] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Genshin Impact_launcher_mihoyo_1_0] => [X]
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [Discord] => C:\Users\Madii\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Madii\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [Snap Camera] => C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe [61858520 2021-09-25] (Snapchat Inc. (Snap Inc.) -> Snap Inc)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [MicrosoftEdgeAutoLaunch_B6E387FBB9F6A57CCCA90B0EAA06A1BA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4056016 2023-03-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [ProtonVPN] => D:\ProtonVPN.exe [8882280 2022-12-05] (Proton Technologies AG -> ProtonVPN)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [Spotify] => C:\Users\Madii\AppData\Roaming\Spotify\Spotify.exe [20422520 2022-12-23] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Run: [WallpaperEngine] => E:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe [3050080 2023-03-01] (Skutta, Kristjan -> )
HKU\S-1-5-21-2096851420-2732745945-4271049708-1001\...\Policies\Explorer: [NoThumbnailCache] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\111.0.5563.147\Installer\chrmstp.exe [2023-04-02] (Google LLC -> Google LLC)
Lsa: [Notification Packages]
Startup: C:\Users\Madii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2023-03-03]
ShortcutTarget: Rainmeter.lnk -> E:\Rainmeter.exe (Firebit OU -> Rainmeter)
Startup: C:\Users\Madii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-01-29]
ShortcutTarget: Twitch.lnk -> C:\Users\Madii\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0E048F90-59F6-4FAA-A50A-7AB16CA9A99F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {10144318-4178-4BD6-9125-8274251FC03A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {17A92F85-B8F4-4882-A462-35A213180E2D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "40573352-e992-4b28-bbec-28148b8f62c2" --version "6.10.10347" --silent
Task: {1F60172B-7F95-4476-AC21-EA1BEDCC82E5} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {21E59563-3BEC-44CC-A506-B6AABCA9815A} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-08] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {276C8E71-C514-4B90-AA7C-5C52B035BAB1} - System32\Tasks\GoogleUpdateTaskMachineUA{47ADE5B0-D858-43D2-94CD-7708E229F414} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-30] (Google Inc -> Google Inc.)
Task: {2803601B-27F0-4864-A21A-B5D51365C826} - System32\Tasks\CCleanerSkipUAC - Madii => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2AC85BD9-7BC3-42F7-8230-699B11895B54} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat (Pas de fichier)
Task: {315A992E-465E-4D1F-B4EB-43DE412589C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {331BA2C8-5F1B-4B3B-A26D-49B7AC098C13} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [133905984 2023-03-10] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {400CB0C5-ABD5-4C18-B31C-E898DB84884B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {45E3AC17-CBAC-4C7C-8128-56251CD9F95A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {514A5EB1-0CDC-425A-95C8-84F2F6A89E61} - System32\Tasks\CCleanerSkipUAC - Maddie => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {57C36ADB-AFCD-459A-BA11-9EC849181A4C} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {59B759DE-001D-450C-BC3E-603A979CE5F3} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1625851025 => C:\Users\Madii\AppData\Local\Programs\Opera GX\launcher.exe [2637208 2023-03-23] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Madii\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {5C63AAEE-FA07-4C19-8252-D0B6268D7449} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Pas de fichier)
Task: {5E173011-E226-4E16-A1DF-C5F13DCA5140} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5E70BB6D-6551-4E4F-ADF2-81E289100EE1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68E59B3E-EF67-461E-A33D-5CB873088240} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [46597976 2022-12-15] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {6DD79373-5578-471A-A6F8-3C7DC4E1B072} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task (Pas de fichier)
Task: {7294A444-B072-4D85-994A-0D75FABF019C} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d93bd5966c3365 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-08] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {84B93DDC-F840-4D31-A03E-6772FDFC502E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8CEB3562-4952-41DB-A241-39AF56CC1188} - System32\Tasks\GoogleUpdateTaskMachineCore{D69C7EFE-D24F-487B-AFCB-0055F09E2098} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-30] (Google Inc -> Google Inc.)
Task: {932672D4-9714-4AF1-AE0F-3A2B3E3D69B3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A5D9ED3D-0812-4EEC-835D-81041D0AA6C3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A8B842DE-19FC-4A69-B17F-B18608FFE25E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADF38892-CEBC-4AF1-975F-C65C7FDE9767} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MpCmdRun.exe [1645904 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC92D31E-615C-48A0-82DF-9B9158CF1483} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308584 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {C1ABD52F-AC98-42BB-ADFC-0026E78FC31D} - System32\Tasks\AdobeAAMUpdater-1.0-MADII-Madii => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {E07B45D2-844F-4900-84C3-9EA026ABCFE6} - System32\Tasks\{3A9FDC3E-D217-4DDD-A2A9-DAE5036F227F} => c:\program files (x86)\google\chrome\application\chrome.exe -> https://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.104&LastError=404
Task: {EB41CC46-D49B-4BD6-A024-57CB2F741972} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EE116BCF-9077-4174-8E90-2EC097EC775C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F4CC9FFF-E06D-4B77-9741-B984FBD6460A} - System32\Tasks\AdobeGCInvoker-1.0-MADII-Madii => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {F7F3B558-D9B0-420E-917D-ADBE363EA5D2} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1857384 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {FC0F6B07-4E46-45AB-9461-6157C460042A} - System32\Tasks\Opera GX scheduled Autoupdate 1624642173 => C:\Users\Madii\AppData\Local\Programs\Opera GX\launcher.exe [2637208 2023-03-23] (Opera Norway AS -> Opera Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Fichier hosts non détecté dans le dossier par défaut
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c81cee11-76ff-4020-a4d3-d590154e3d14}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Madii\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Madii\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-02]
Edge DownloadDir: Default -> C:\Users\Madii\Downloads
Edge HomePage: Default -> hxxp://www.google.be/
Edge Extension: (uBlock Origin) - C:\Users\Madii\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-12-23]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Madii\AppData\Local\Google\Chrome\User Data\Default [2023-04-02]
CHR DownloadDir: C:\Users\Madii\Desktop
CHR HomePage: Default -> hxxp://www.google.be/
CHR StartupUrls: Default -> "hxxps://www.ecosia.org/"
CHR Extension: (Calm Pastel 4) - C:\Users\Madii\AppData\Local\Google\Chrome\User Data\Default\Extensions\agphlafenmgphpemongmogfbganimmom [2023-04-02]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Madii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-04-02]
CHR Extension: (Ninja Cookie) - C:\Users\Madii\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifeafcpcjjgnlcnkffmeegehmnmkefl [2023-04-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-2096851420-2732745945-4271049708-1001) Opera GXStable - "C:\Users\Madii\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-08] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe [1340376 2017-12-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-08] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [678760 2023-02-08] (ASUSTeK COMPUTER INC. -> ASUS)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-03-25] (BattlEye Innovations e.K. -> )
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761408 2023-03-10] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-03-11] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-01-03] (Epic Games Inc. -> Epic Games, Inc.)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3887976 2022-09-26] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-04-08] (Logitech Inc -> Logitech)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [9002208 2023-03-02] (Malwarebytes Inc. -> Malwarebytes)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [11476792 2023-02-06] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S4 ProtonVPN Service; D:\ProtonVPNService.exe [401512 2022-12-05] (Proton Technologies AG -> ProtonVPN)
S4 ProtonVPN WireGuard; D:\ProtonVPN.WireGuardService.exe [328808 2022-12-05] (Proton Technologies AG -> ProtonVPN)
S4 Rockstar Service; D:\Launcher\RockstarService.exe [2720088 2022-11-24] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [6739056 2022-09-21] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [381504 2023-03-10] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2023-01-09] (SteelSeries ApS -> )
S4 TeamViewer; C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe [14545704 2021-12-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\NisSrv.exe [3224328 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe [133544 2023-04-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_abf7e4e84f20581c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-12-26] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> )
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3383936 2021-03-25] (BattlEye Innovations e.K. -> )
R1 CTIAIO; C:\WINDOWS\system32\drivers\CtiAIo64.sys [32320 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-30] (Martin Malik - REALiX -> REALiX(tm))
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35344 2022-09-21] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 ksophon_x64; C:\WINDOWS\system32\drivers\ksophon_x64.sys [9966728 2022-08-10] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2017-10-20] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2017-10-20] (Logitech Inc -> Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2017-10-20] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2017-10-20] (Logitech -> Logitech Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl76a22ba3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7C887955-9309-4240-B9CE-5F10AFA26F3F}\MpKslDrv.sys [211208 2023-04-02] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [69744 2020-04-04] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; D:\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssbthid; C:\WINDOWS\System32\drivers\ssbthid.sys [43824 2017-12-15] (SteelSeries ApS -> )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [42912 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [43960 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_178ca29ac943515a\SteelSeries-Sonar-VAD.sys [93368 2022-12-05] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 UniFairy; C:\WINDOWS\system32\UniFairy.sys [885224 2020-04-30] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49608 2023-04-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [495896 2023-04-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99624 2023-04-02] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2021-10-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-04-02 17:46 - 2023-04-02 17:46 - 000035883 _____ C:\Users\Madii\Desktop\FRST.txt
2023-04-02 17:45 - 2023-04-02 17:46 - 000000000 ____D C:\FRST
2023-04-02 17:43 - 2023-04-02 17:43 - 002379264 _____ (Farbar) C:\Users\Madii\Desktop\FRST64.exe
2023-04-02 17:38 - 2023-04-02 17:38 - 000000576 _____ C:\Users\Madii\Desktop\Espace.txt
2023-04-02 17:38 - 2023-04-02 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2023-04-02 17:36 - 2023-04-02 17:36 - 000003958 _____ C:\GetDeviceStatus.xml
2023-04-02 17:36 - 2023-04-02 17:36 - 000000228 _____ C:\SetMatrixLEDScript.xml
2023-04-02 17:36 - 2023-04-02 17:36 - 000000200 _____ C:\QueryAllDevice.xml
2023-04-02 17:36 - 2023-04-02 17:36 - 000000066 _____ C:\GetDeviceCap.xml
2023-04-02 17:25 - 2023-04-02 17:25 - 000000000 ___HD C:\$WinREAgent
2023-04-02 16:37 - 2023-04-02 16:37 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{47ADE5B0-D858-43D2-94CD-7708E229F414}
2023-04-02 16:37 - 2023-04-02 16:37 - 000003372 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{D69C7EFE-D24F-487B-AFCB-0055F09E2098}
2023-04-02 16:37 - 2023-04-02 16:37 - 000002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-04-02 16:37 - 2023-04-02 16:37 - 000002298 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-04-02 16:37 - 2023-04-02 16:37 - 000000000 ____D C:\Program Files\Google
2023-04-02 16:36 - 2023-04-02 16:36 - 001427176 _____ (Google LLC) C:\Users\Madii\Desktop\ChromeSetup.exe
2023-04-02 16:32 - 2023-04-02 16:32 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2023-04-02 16:32 - 2023-04-02 16:32 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2023-03-20 21:16 - 2023-03-20 21:16 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Maddie
2023-03-20 21:06 - 2023-03-20 21:06 - 000000000 ____D C:\Users\Madii\Documents\Facture IPAD
2023-03-15 22:57 - 2023-02-06 18:44 - 011476792 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\SysWOW64\GameMon.des
2023-03-15 22:52 - 2023-03-15 22:52 - 000000000 ____D C:\Users\Madii\AppData\LocalLow\com2us
2023-03-15 22:52 - 2023-03-15 22:52 - 000000000 ____D C:\Program Files\Common Files\INCA Shared
2023-03-15 22:38 - 2023-03-21 22:49 - 000000000 ____D C:\SteamLibrary
2023-03-15 21:53 - 2023-03-15 21:53 - 000105703 _____ C:\Users\Madii\Desktop\CV.pdf
2023-03-07 15:11 - 2023-03-07 15:11 - 000000000 ____D C:\ProgramData\LockHunter
2023-03-07 15:05 - 2023-03-07 15:05 - 000000000 ____D C:\Users\Madii\AppData\Roaming\LockHunter
2023-03-07 15:05 - 2023-03-07 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LockHunter
2023-03-07 15:05 - 2023-03-07 15:05 - 000000000 ____D C:\Program Files\LockHunter
2023-03-06 19:19 - 2023-03-06 19:19 - 000000000 ____D C:\Users\Madii\AppData\Roaming\Apple Computer
2023-03-06 17:53 - 2023-03-06 17:53 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2023-03-06 17:51 - 2023-03-06 17:53 - 000000000 ____D C:\Program Files\paint.net
2023-03-06 17:39 - 2023-03-06 17:39 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-MADII-Windows-10-Home-(64-bit).dat
2023-03-06 17:39 - 2023-03-06 17:39 - 000000000 ____D C:\RegBackup
2023-03-06 17:38 - 2023-03-06 17:38 - 000003764 _____ C:\WINDOWS\system32\Tasks\Tweaking.com - Windows Repair Tray Icon
2023-03-06 17:38 - 2023-03-06 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2023-03-06 17:38 - 2023-03-06 17:38 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2023-03-06 17:37 - 2023-03-06 17:38 - 000388780 _____ C:\WINDOWS\Tweaking.com - Windows Repair Setup Log.txt
2023-03-05 20:33 - 2023-03-05 20:33 - 000144576 _____ C:\Users\Public\Documents\SIGVERIF.TXT
2023-03-03 21:25 - 2023-03-03 21:25 - 000000515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2023-03-03 21:25 - 2023-03-03 21:25 - 000000000 ____D C:\Users\Madii\Documents\Rainmeter
2023-03-03 21:25 - 2023-03-03 21:25 - 000000000 ____D C:\Users\Madii\AppData\Roaming\Rainmeter
2023-03-03 21:06 - 2023-03-03 21:06 - 000000000 ____D C:\Users\Madii\AppData\LocalLow\DefaultCompany

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-04-02 17:46 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-04-02 17:44 - 2018-03-30 11:37 - 000000000 ____D C:\Users\Madii\AppData\Roaming\discord
2023-04-02 17:42 - 2020-07-31 12:58 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-04-02 17:42 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2023-04-02 17:42 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2023-04-02 17:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-04-02 17:42 - 2018-03-30 11:30 - 000000000 ____D C:\Program Files (x86)\Google
2023-04-02 17:40 - 2022-12-23 14:49 - 000000000 ____D C:\Users\Madii\AppData\Roaming\Spotify
2023-04-02 17:39 - 2021-10-11 19:15 - 000000000 ____D C:\Users\Madii\AppData\Roaming\Samsung Magician
2023-04-02 17:39 - 2020-07-31 12:54 - 000003334 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2023-04-02 17:38 - 2018-03-30 14:21 - 000000000 ____D C:\Program Files\CCleaner
2023-04-02 17:36 - 2023-02-28 22:32 - 000000000 ____D C:\Intel
2023-04-02 17:36 - 2020-07-31 12:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-04-02 17:36 - 2020-07-31 12:49 - 000425392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-04-02 17:36 - 2020-07-31 12:49 - 000008192 ___SH C:\DumpStack.log.tmp
2023-04-02 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-04-02 17:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-04-02 17:36 - 2018-03-29 22:47 - 000000000 ____D C:\ProgramData\NVIDIA
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-04-02 17:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-04-02 17:35 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2023-04-02 17:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-04-02 17:30 - 2020-07-31 12:53 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-04-02 17:21 - 2023-03-01 19:53 - 000000000 ____D C:\Users\Madii\Documents\Cv & lettre
2023-04-02 17:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-04-02 16:35 - 2020-07-15 11:52 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-04-02 16:31 - 2022-10-20 18:45 - 000079352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-04-02 16:31 - 2022-10-20 18:45 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-04-02 16:31 - 2021-12-06 22:50 - 002786768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-04-02 16:31 - 2021-12-06 22:50 - 000476624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-04-02 16:31 - 2021-12-06 22:50 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-04-02 16:31 - 2021-12-06 22:50 - 000202192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-04-02 16:31 - 2021-12-06 22:50 - 000165328 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-04-02 16:31 - 2021-12-06 22:50 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-04-02 16:29 - 2021-06-25 19:29 - 000004190 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1624642173
2023-04-02 16:29 - 2021-06-25 19:29 - 000001418 _____ C:\Users\Madii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2023-04-02 16:29 - 2020-07-31 12:54 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-04-02 16:29 - 2020-07-31 12:54 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-04-02 16:28 - 2023-02-03 20:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2023-04-02 16:28 - 2018-04-07 10:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-03-21 20:10 - 2022-12-22 21:11 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-20 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-03-20 21:16 - 2022-12-22 21:11 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-20 21:16 - 2020-07-31 12:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-20 21:15 - 2023-01-17 21:26 - 000000000 ____D C:\Users\Madii\AppData\Roaming\steelseries-gg-client
2023-03-20 20:51 - 2020-07-31 12:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-20 20:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Performance
2023-03-20 20:24 - 2018-03-30 13:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-20 20:22 - 2018-03-30 14:21 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-15 22:44 - 2022-08-09 20:42 - 000000000 ____D C:\Users\Madii\AppData\Roaming\tof_launcher
2023-03-15 22:38 - 2018-09-08 16:21 - 000000000 ____D C:\Users\Madii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-03-15 14:10 - 2019-06-12 14:02 - 000000000 ____D C:\ProgramData\Origin
2023-03-08 20:47 - 2020-02-13 17:25 - 000000000 ____D C:\Users\Madii\AppData\Roaming\EasyAntiCheat
2023-03-06 19:19 - 2018-06-11 14:44 - 000000000 ____D C:\Users\Madii\AppData\LocalLow\Temp
2023-03-06 19:17 - 2023-02-10 20:51 - 000000000 ____D C:\ProgramData\Hogwarts Legacy
2023-03-06 18:15 - 2018-10-04 21:18 - 000000033 _____ C:\Users\Madii\AppData\Roaming\AdobeWLCMCache.dat
2023-03-06 16:02 - 2018-11-06 16:26 - 000001294 _____ C:\Users\Madii\Desktop\Mdp.txt
2023-03-03 20:39 - 2023-02-08 17:54 - 000000000 ____D C:\Program Files\ASUS

==================== Fichiers à la racine de certains dossiers ========

2021-04-20 09:34 - 2021-04-20 09:34 - 000479232 _____ () C:\Users\Madii\setup.exe
2018-10-04 21:18 - 2023-03-06 18:15 - 000000033 _____ () C:\Users\Madii\AppData\Roaming\AdobeWLCMCache.dat
2018-11-13 14:36 - 2020-03-21 14:31 - 000000113 _____ () C:\Users\Madii\AppData\Roaming\D2Info0
2018-11-13 14:36 - 2020-03-21 14:35 - 000000008 _____ () C:\Users\Madii\AppData\Roaming\DofusAppId0_1
2020-01-29 19:42 - 2020-02-25 20:07 - 000000008 _____ () C:\Users\Madii\AppData\Roaming\DofusAppId0_2
2020-02-02 21:38 - 2020-02-09 21:25 - 000000008 _____ () C:\Users\Madii\AppData\Roaming\DofusAppId0_3
2018-11-13 14:36 - 2018-11-13 14:36 - 000000011 _____ () C:\Users\Madii\AppData\Roaming\RegPorts-0
2022-08-09 20:42 - 2022-08-09 20:42 - 000001004 _____ () C:\Users\Madii\AppData\Roaming\tof_launcher.reg
2019-03-26 21:58 - 2019-03-26 22:01 - 000001456 _____ () C:\Users\Madii\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2018-10-04 21:18 - 2018-10-04 21:18 - 000000000 _____ () C:\Users\Madii\AppData\Local\oobelibMkey.log
2018-11-29 20:40 - 2018-11-29 20:40 - 000007605 _____ () C:\Users\Madii\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


==================== BCD ================================

Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 1

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume4
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {cc439b13-d323-11ea-a619-c7fa08ad8067}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {cc439b15-d323-11ea-a619-c7fa08ad8067}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {cc439b13-d323-11ea-a619-c7fa08ad8067}
nx OptIn
numproc 8
bootmenupolicy Standard
usefirmwarepcisettings No

Chargeur de d‚marrage Windows
-----------------------------
identificateur {cc439b15-d323-11ea-a619-c7fa08ad8067}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{cc439b16-d323-11ea-a619-c7fa08ad8067}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{cc439b16-d323-11ea-a619-c7fa08ad8067}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {cc439b13-d323-11ea-a619-c7fa08ad8067}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {cc439b15-d323-11ea-a619-c7fa08ad8067}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume4
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {cc439b16-d323-11ea-a619-c7fa08ad8067}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité