Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par batke (administrateur) sur DESKTOP-GN2V6HE (Micro-Star International Co., Ltd. MS-7C96) (10-10-2023 09:31:32)
Exécuté depuis C:\Users\batke\Downloads\FRST64.exe
Profils chargés: batke
Plate-forme: Microsoft Windows 10 Professionnel pour les Stations de travail Version 22H2 19045.3448 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Discord Inc. -> Discord Inc.) C:\Users\batke\AppData\Local\Discord\app-1.0.9018\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Razer USA Ltd. -> Razer Inc.) [Fichier non signé] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2339.13.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Star Rail_launcher_hoyoverse_PC_1_1] => [X]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [CanvaAutoLaunchAvailabilityCheckAgent] => C:\Users\batke\AppData\Local\Programs\Canva\Canva.exe [158011528 2023-06-05] (Canva -> Canva Pty Ltd)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2674280 2023-06-27] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [MicrosoftEdgeAutoLaunch_E7C1D02F25D5C79A7DDF71E8A0C04D2D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [64539056 2023-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Uninstall 23.189.0910.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\23.189.0910.0001" [0 2023-10-10] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\MountPoints2: {3b818c0b-b354-11ed-9718-047c165065d9} - "E:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\MountPoints2: {a36fefbc-cb1c-11ed-971d-047c165065d9} - "F:\HonorSuiteOnlineInstaller.exe"
HKLM\...\Windows x64\Print Processors\Canon MG2200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB6.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2200 series: C:\Windows\system32\CNMLMB6.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.150\Installer\chrmstp.exe [2023-10-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1EBF87A4-A70A-4B46-8B2D-AB11DD252B16} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-02-08] (Piriform Software Ltd -> Piriform)
Task: {CE445395-0F60-4A97-A4C6-D888251422C9} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d40adbb0-1244-4672-b7f7-f43353dc26f7" --version "6.09.10300" --silent
Task: {F3827DD3-1497-498B-BC59-311C500BC93A} - System32\Tasks\CCleanerSkipUAC - batke => C:\Program Files\CCleaner\CCleaner.exe [32631096 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {059A4330-C3A2-414A-BAD0-1D00EB978F05} - System32\Tasks\GoogleUpdateTaskMachineCore{AC6E3B2C-FE0D-427C-A408-9AD84A5912CC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-11] (Google LLC -> Google LLC)
Task: {1F188E13-B2A5-4562-95B0-E6A3683394F5} - System32\Tasks\GoogleUpdateTaskMachineUA{19B5F38D-0AFD-4514-883D-379467310106} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-11] (Google LLC -> Google LLC)
Task: {F02F2BE7-99F6-40D5-8827-2CB865C4CB08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CA5A8F7-10CE-4438-8682-76F61235F57E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4BDF4D2C-0B4F-4DE5-BEFD-177015247938} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDDBF319-BF95-4647-B7C4-1E9883CF54D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41EF98CD-A566-4910-816C-7C9A04080947} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-09-29] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {779DEE67-6A66-41A8-A75D-1B7314C6DA64} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [717728 2023-09-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {7C424ABC-9389-4392-867D-D679F19B368B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {198A5682-F856-486B-873C-63A0FDE0BF31} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {14E3D41E-0213-4F86-888D-B863C6991ABD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4CC7A42A-9EAA-49DF-B76D-B45626946DC0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8FB2173-D6D1-4508-86AE-BEE1CB6B2C8C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA81A904-BBE7-472B-A7D9-74A8B8F51B5E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {43CD7B29-36B1-4434-BB50-76BDC7669C76} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E29F6A2F-66FA-4F68-9BAB-BB17161F2D7C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CAD4EA7-FFCD-4A2B-998F-93B6842F3C49} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9f018668-9573-470c-b5cf-ca5a6fff73b3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcfbe9da-1e01-4be7-8f9a-41a78c5f8e44}: [DhcpNameServer] 192.168.52.197
Edge:
=======
Edge Profile: C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-03]
Edge Extension: (Google Docs hors connexion) - C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-20]
Edge Extension: (Edge relevant text changes) - C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-20]
FireFox:
========
FF DefaultProfile: d7fzarft.default
FF ProfilePath: C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\d7fzarft.default [2023-02-22]
FF ProfilePath: C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release [2023-10-09]
FF DownloadDir: C:\Users\Public\Downloads
FF Session Restore: Mozilla\Firefox\Profiles\wbav4nov.default-release -> est activé.
FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\@windscribeff.xpi [2023-02-22]
FF Extension: (AdBlocker Ultimate) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (AdGuard AdBlocker) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\adguardadblocker@adguard.com.xpi [2023-09-21]
FF Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\hotspot-shield@anchorfree.com.xpi [2023-02-22]
FF Extension: (I don't care about cookies) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-09-28]
FF Extension: (uBlock Origin) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-09-27]
FF Extension: (TWP - Translate Web Pages) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-09-21]
FF Extension: (Video DownloadHelper) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-31]
FF Extension: (mine vocaloid) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{c24a718b-727e-4736-b951-b283e6ee88fb}.xpi [2023-02-22]
Chrome:
=======
CHR Profile: C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default [2023-10-10]
CHR Extension: (uBlock Origin) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-09-23]
CHR Extension: (Twitch ™ adblock Plus) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\efdkmejbldmccndljocbkmpankbjhaao [2023-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-09]
CHR Extension: (Morpheon Dark) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2023-08-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-11]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1001272 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11500136 2023-06-27] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2023-04-21] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2348000 2023-08-24] (GOG sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7173088 2023-08-24] (GOG sp. z o.o -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9278784 2023-08-16] (Malwarebytes Inc. -> Malwarebytes)
S3 MicrosoftEdgeElevationService1d999dbd811827a; C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.60\elevation_service.exe [1786408 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1244144 2023-07-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1869904 2023-10-09] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [310688 2023-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [280064 2023-02-15] (Microsoft Corporation) [Fichier non signé]
S3 hn_usbccgpfilter; C:\Windows\System32\drivers\hn_usbccgpfilter.sys [19328 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
U5 hn_usbdev; C:\Windows\System32\Drivers\hn_usbdev.sys [116864 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3716608 2023-09-17] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rzjstk; C:\Windows\System32\drivers\rzjstk.sys [36568 2015-08-13] (Razer Inc. -> Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\drivers\rzkeypadendpt.sys [46280 2015-08-13] (Razer Inc. -> Razer Inc)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-10 09:31 - 2023-10-10 09:32 - 000022083 _____ C:\Users\batke\Downloads\FRST.txt
2023-10-10 09:31 - 2023-10-10 09:31 - 000000000 ____D C:\FRST
2023-10-10 09:30 - 2023-10-10 09:30 - 002383360 _____ (Farbar) C:\Users\batke\Downloads\FRST64.exe
2023-10-10 09:15 - 2023-10-10 09:15 - 004194656 _____ (Crystal Dew World ) C:\Users\batke\Downloads\CrystalDiskMark8_0_4c.exe
2023-10-09 11:52 - 2023-10-09 12:08 - 706453451 _____ C:\Users\batke\Downloads\Sex.Education.S04E08.FiNAL.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-08 13:10 - 2023-10-08 13:24 - 471121325 _____ C:\Users\batke\Downloads\Sex.Education.S04E07.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-07 18:45 - 2023-10-07 18:46 - 001001308 _____ C:\Users\batke\Downloads\cv color -1.pdf.pdf
2023-10-07 13:05 - 2023-10-07 13:22 - 480319352 _____ C:\Users\batke\Downloads\Sex.Education.S04E06.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-06 17:43 - 2023-10-06 18:05 - 786767358 _____ C:\Users\batke\Downloads\Goblin.Slayer.Goblins.Crown.2020.FANSUB.VOSTFR.WEBRip.x264-Wawacity.ninja.mp4
2023-10-06 14:59 - 2023-10-06 14:59 - 000758599 _____ C:\Users\batke\Downloads\Contrat de travail.pdf
2023-10-06 11:59 - 2023-10-06 12:06 - 227117529 _____ C:\Users\batke\Downloads\Invasion.2021.S02E04.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-04 13:20 - 2023-10-04 13:20 - 008791352 _____ (Malwarebytes) C:\Users\batke\Downloads\adwcleaner (1).exe
2023-10-04 09:26 - 2023-10-04 09:32 - 212401339 _____ C:\Users\batke\Downloads\Invasion.2021.S02E03.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-03 07:36 - 2023-10-03 07:43 - 279335082 _____ C:\Users\batke\Downloads\Invasion.2021.S02E02.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-03 07:18 - 2023-10-03 07:18 - 000015114 _____ C:\Users\batke\OneDrive\Documents\cc_20231003_071800.reg
2023-10-03 00:14 - 2023-10-03 00:22 - 305179514 _____ C:\Users\batke\Downloads\Invasion.2021.S02E01.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-02 09:24 - 2023-10-02 09:31 - 299818075 _____ C:\Users\batke\Downloads\Invasion.S01E10.FiNAL.VOSTFR.WEBRip.H264-Wawacity.work.mp4
2023-09-30 10:16 - 2023-09-30 10:24 - 348733885 _____ C:\Users\batke\Downloads\Sex.Education.S04E05.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-29 17:12 - 2023-09-29 17:12 - 000172745 _____ C:\Users\batke\Downloads\attestation_des_periodes_inscription (1).pdf
2023-09-29 13:32 - 2023-09-29 13:32 - 000172752 _____ C:\Users\batke\Downloads\attestation_des_periodes_inscription.pdf
2023-09-29 13:31 - 2023-09-29 13:31 - 000074724 _____ C:\Users\batke\Downloads\avis_de_situation.pdf
2023-09-29 00:15 - 2023-10-04 09:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-28 12:15 - 2023-09-28 14:35 - 4105805005 _____ C:\Users\batke\Downloads\Sous.la.peau.2013.MULTI.VFI.1080p.HDLight.x264.AC3.Wawacity.blue.mkv
2023-09-27 00:26 - 2023-09-27 00:38 - 397935383 _____ C:\Users\batke\Downloads\Sex.Education.S04E04.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-26 10:42 - 2023-09-26 10:42 - 000546902 _____ C:\Users\Public\Downloads\PRF_LOW_CODE_NO_CODE_2509_au_230224.pdf
2023-09-23 00:38 - 2023-09-23 00:48 - 404114110 _____ C:\Users\batke\Downloads\Sex.Education.S04E03.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 19:44 - 2023-09-22 19:58 - 430405593 _____ C:\Users\batke\Downloads\Sex.Education.S04E02.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 15:18 - 2023-09-22 15:29 - 465959562 _____ C:\Users\batke\Downloads\Sex.Education.S04E01.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 13:57 - 2023-09-22 13:57 - 000267955 _____ C:\Users\batke\Downloads\image.jpeg
2023-09-21 11:11 - 2023-09-21 11:20 - 333530567 _____ C:\Users\batke\Downloads\Foundation.S02E10.FiNAL.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-19 13:29 - 2023-09-19 13:42 - 516425908 _____ C:\Users\batke\Downloads\The.Walking.Dead.Daryl.Dixon.S01E02.FASTSUB.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-18 19:34 - 2023-09-18 19:34 - 000000000 ____D C:\Users\batke\OneDrive\Documents\Larian Studios
2023-09-18 19:34 - 2023-09-18 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin - Enhanced Edition [GOG.com]
2023-09-18 17:56 - 2023-09-18 18:30 - 1301622664 _____ C:\Users\batke\Downloads\Blue.Beetle.2023.TRUEFRENCH.HDRip.H264.Wawacity.rocks.mp4
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\Users\batke\AppData\Local\GOG.com
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2023-09-17 18:49 - 2023-09-18 19:34 - 000000000 ____D C:\ProgramData\GOG.com
2023-09-17 18:49 - 2023-09-17 18:49 - 000530944 _____ (GOG Sp. z o.o.) C:\Users\batke\Downloads\GOG_Galaxy_Divinity_Original_Sin_-_Enhanced_Edition.exe
2023-09-15 22:18 - 2023-09-15 22:18 - 000000000 ___HD C:\$WinREAgent
2023-09-14 18:05 - 2023-09-14 18:14 - 366100566 _____ C:\Users\batke\Downloads\Foundation.S02E09.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-09-12 12:55 - 2023-09-12 13:06 - 507419330 _____ C:\Users\batke\Downloads\The.Walking.Dead.Daryl.Dixon.S01E01.FASTSUB.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-12 09:26 - 2023-09-12 09:52 - 1169918151 _____ C:\Users\batke\Downloads\Barbie.2023.TRUEFRENCH.HDRip.H264.Wawacity.rocks.mp4
2023-09-11 15:51 - 2023-09-11 16:18 - 912679346 _____ C:\Users\batke\Downloads\Divine.Gate.S01E02.VOSTFR.1080p.WEB-DL.x264-Wakanim-Wawacity.homes.mp4
2023-09-11 14:45 - 2023-09-11 15:10 - 939235829 _____ C:\Users\batke\Downloads\Divine.Gate.S01E01.VOSTFR.1080p.WEB-DL.x264-Wakanim-Wawacity.homes.mp4
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-10 08:57 - 2023-08-11 09:45 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-10 08:57 - 2023-02-22 18:58 - 000000000 ____D C:\Users\batke\AppData\Local\Discord
2023-10-10 08:57 - 2022-09-08 05:13 - 000000000 ____D C:\Windows\SystemTemp
2023-10-10 08:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-10 00:49 - 2023-03-04 12:49 - 000000000 ____D C:\Program Files\CCleaner
2023-10-10 00:47 - 2023-02-22 15:45 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1256261342-4141152254-2228272740-1002
2023-10-10 00:47 - 2023-02-22 15:44 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1256261342-4141152254-2228272740-1002
2023-10-10 00:47 - 2023-02-22 15:44 - 000002466 _____ C:\Users\batke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-10 00:03 - 2023-08-11 04:47 - 000000000 ____D C:\Program Files\Star Rail
2023-10-09 22:03 - 2023-02-16 18:00 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-09 22:02 - 2023-08-11 13:11 - 001869904 _____ (ANTICHEATEXPERT.COM) C:\Windows\system32\Drivers\ACE-BASE.sys
2023-10-09 22:02 - 2023-03-23 13:43 - 000000000 ____D C:\Users\batke\AppData\Local\HoYoverse
2023-10-09 21:52 - 2023-07-27 13:35 - 000000000 ____D C:\Genshin Impact
2023-10-09 18:28 - 2023-02-22 16:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-09 14:29 - 2023-02-22 21:40 - 000000000 ____D C:\Users\batke\AppData\Roaming\vlc
2023-10-09 09:57 - 2023-02-22 18:49 - 000000000 ____D C:\Users\batke\AppData\Roaming\discord
2023-10-09 09:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-09 09:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-10-08 09:11 - 2023-08-11 10:45 - 000000000 ____D C:\Users\batke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2023-10-08 09:08 - 2023-02-15 09:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-05 18:07 - 2023-02-24 12:53 - 000000000 ____D C:\Users\serie salon
2023-10-05 17:18 - 2023-02-15 09:21 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-10-04 23:36 - 2023-02-22 15:39 - 000000000 ____D C:\Users\batke
2023-10-04 13:16 - 2023-08-16 09:49 - 000000000 ____D C:\Users\batke\AppData\Local\Malwarebytes
2023-10-04 09:16 - 2023-02-15 09:20 - 000269152 _____ C:\Windows\system32\FNTCACHE.DAT
2023-10-04 09:15 - 2023-02-22 19:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-04 09:15 - 2023-02-15 09:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-10-04 09:15 - 2023-02-15 09:20 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-04 09:15 - 2023-02-15 09:20 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-04 07:09 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-10-04 07:06 - 2023-02-22 19:14 - 000000000 ____D C:\Users\batke\AppData\Roaming\Microsoft\MMC
2023-10-03 07:17 - 2023-02-22 18:17 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-03 07:17 - 2023-02-22 18:14 - 000000000 ____D C:\Users\batke\AppData\Local\CrashDumps
2023-10-02 07:02 - 2023-02-22 18:09 - 000000000 ____D C:\Users\batke\AppData\Local\PlaceholderTileLogoFolder
2023-10-02 07:02 - 2023-02-22 15:42 - 000000000 ____D C:\Users\batke\AppData\Local\Packages
2023-10-02 07:02 - 2023-02-15 09:30 - 000000000 ____D C:\ProgramData\Packages
2023-09-29 09:35 - 2023-02-22 19:24 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-28 11:39 - 2023-02-26 18:02 - 000000000 ____D C:\Users\batke\AppData\Roaming\obs-studio
2023-09-25 15:12 - 2023-02-15 09:26 - 001771426 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-25 15:12 - 2022-10-19 10:27 - 000791886 _____ C:\Windows\system32\perfh00C.dat
2023-09-25 15:12 - 2022-10-19 10:27 - 000150052 _____ C:\Windows\system32\perfc00C.dat
2023-09-19 00:52 - 2023-08-11 09:46 - 000003960 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{19B5F38D-0AFD-4514-883D-379467310106}
2023-09-19 00:52 - 2023-08-11 09:46 - 000003836 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{AC6E3B2C-FE0D-427C-A408-9AD84A5912CC}
2023-09-18 19:34 - 2023-02-15 10:00 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-17 02:24 - 2023-03-28 09:52 - 003716608 _____ (miHoYo) C:\Windows\system32\HoYoKProtect.sys
2023-09-16 01:23 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-09-16 01:21 - 2019-12-07 16:54 - 000000000 ___SD C:\Windows\system32\AppV
2023-09-16 01:21 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-09-15 22:27 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-09-15 22:23 - 2023-02-15 09:22 - 003014144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-09-15 22:16 - 2023-02-15 09:38 - 000000000 ____D C:\Windows\system32\MRT
2023-09-15 22:14 - 2023-02-15 09:38 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2023-09-05 10:27 - 2023-09-05 10:27 - 000000024 _____ () C:\Users\batke\AppData\Roaming\C23W6Vk43XTwu662.dat
2023-05-26 18:04 - 2023-05-26 18:04 - 000000014 _____ () C:\Users\batke\AppData\Roaming\obs-virtualcam.txt
2023-08-15 11:38 - 2023-08-15 11:48 - 000012328 _____ () C:\Users\batke\AppData\Local\PlariumPlay.log
2023-05-11 17:44 - 2023-08-09 16:54 - 000007602 _____ () C:\Users\batke\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par batke (administrateur) sur DESKTOP-GN2V6HE (Micro-Star International Co., Ltd. MS-7C96) (10-10-2023 09:31:32)
Exécuté depuis C:\Users\batke\Downloads\FRST64.exe
Profils chargés: batke
Plate-forme: Microsoft Windows 10 Professionnel pour les Stations de travail Version 22H2 19045.3448 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Discord Inc. -> Discord Inc.) C:\Users\batke\AppData\Local\Discord\app-1.0.9018\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Razer USA Ltd. -> Razer Inc.) [Fichier non signé] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2339.13.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Fichier non signé]
HKLM-x32\...\Run: [Star Rail_launcher_hoyoverse_PC_1_1] => [X]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [CanvaAutoLaunchAvailabilityCheckAgent] => C:\Users\batke\AppData\Local\Programs\Canva\Canva.exe [158011528 2023-06-05] (Canva -> Canva Pty Ltd)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2674280 2023-06-27] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [MicrosoftEdgeAutoLaunch_E7C1D02F25D5C79A7DDF71E8A0C04D2D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [64539056 2023-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\RunOnce: [Uninstall 23.189.0910.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\batke\AppData\Local\Microsoft\OneDrive\23.189.0910.0001" [0 2023-10-10] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\MountPoints2: {3b818c0b-b354-11ed-9718-047c165065d9} - "E:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1256261342-4141152254-2228272740-1002\...\MountPoints2: {a36fefbc-cb1c-11ed-971d-047c165065d9} - "F:\HonorSuiteOnlineInstaller.exe"
HKLM\...\Windows x64\Print Processors\Canon MG2200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB6.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2200 series: C:\Windows\system32\CNMLMB6.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.150\Installer\chrmstp.exe [2023-10-09] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1EBF87A4-A70A-4B46-8B2D-AB11DD252B16} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-02-08] (Piriform Software Ltd -> Piriform)
Task: {CE445395-0F60-4A97-A4C6-D888251422C9} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d40adbb0-1244-4672-b7f7-f43353dc26f7" --version "6.09.10300" --silent
Task: {F3827DD3-1497-498B-BC59-311C500BC93A} - System32\Tasks\CCleanerSkipUAC - batke => C:\Program Files\CCleaner\CCleaner.exe [32631096 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {059A4330-C3A2-414A-BAD0-1D00EB978F05} - System32\Tasks\GoogleUpdateTaskMachineCore{AC6E3B2C-FE0D-427C-A408-9AD84A5912CC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-11] (Google LLC -> Google LLC)
Task: {1F188E13-B2A5-4562-95B0-E6A3683394F5} - System32\Tasks\GoogleUpdateTaskMachineUA{19B5F38D-0AFD-4514-883D-379467310106} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-08-11] (Google LLC -> Google LLC)
Task: {F02F2BE7-99F6-40D5-8827-2CB865C4CB08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CA5A8F7-10CE-4438-8682-76F61235F57E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4BDF4D2C-0B4F-4DE5-BEFD-177015247938} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDDBF319-BF95-4647-B7C4-1E9883CF54D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41EF98CD-A566-4910-816C-7C9A04080947} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-09-29] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {779DEE67-6A66-41A8-A75D-1B7314C6DA64} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [717728 2023-09-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {7C424ABC-9389-4392-867D-D679F19B368B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {198A5682-F856-486B-873C-63A0FDE0BF31} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {14E3D41E-0213-4F86-888D-B863C6991ABD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4CC7A42A-9EAA-49DF-B76D-B45626946DC0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8FB2173-D6D1-4508-86AE-BEE1CB6B2C8C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA81A904-BBE7-472B-A7D9-74A8B8F51B5E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {43CD7B29-36B1-4434-BB50-76BDC7669C76} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E29F6A2F-66FA-4F68-9BAB-BB17161F2D7C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CAD4EA7-FFCD-4A2B-998F-93B6842F3C49} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9f018668-9573-470c-b5cf-ca5a6fff73b3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcfbe9da-1e01-4be7-8f9a-41a78c5f8e44}: [DhcpNameServer] 192.168.52.197
Edge:
=======
Edge Profile: C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-03]
Edge Extension: (Google Docs hors connexion) - C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-20]
Edge Extension: (Edge relevant text changes) - C:\Users\batke\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-20]
FireFox:
========
FF DefaultProfile: d7fzarft.default
FF ProfilePath: C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\d7fzarft.default [2023-02-22]
FF ProfilePath: C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release [2023-10-09]
FF DownloadDir: C:\Users\Public\Downloads
FF Session Restore: Mozilla\Firefox\Profiles\wbav4nov.default-release -> est activé.
FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\@windscribeff.xpi [2023-02-22]
FF Extension: (AdBlocker Ultimate) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (AdGuard AdBlocker) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\adguardadblocker@adguard.com.xpi [2023-09-21]
FF Extension: (Hotspot Shield Free VPN Proxy - Unlimited VPN) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\hotspot-shield@anchorfree.com.xpi [2023-02-22]
FF Extension: (I don't care about cookies) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-09-28]
FF Extension: (uBlock Origin) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-09-27]
FF Extension: (TWP - Translate Web Pages) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-09-21]
FF Extension: (Video DownloadHelper) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-31]
FF Extension: (mine vocaloid) - C:\Users\batke\AppData\Roaming\Mozilla\Firefox\Profiles\wbav4nov.default-release\Extensions\{c24a718b-727e-4736-b951-b283e6ee88fb}.xpi [2023-02-22]
Chrome:
=======
CHR Profile: C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default [2023-10-10]
CHR Extension: (uBlock Origin) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-09-23]
CHR Extension: (Twitch ™ adblock Plus) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\efdkmejbldmccndljocbkmpankbjhaao [2023-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-09]
CHR Extension: (Morpheon Dark) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2023-08-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\batke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-11]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1001272 2023-02-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11500136 2023-06-27] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2023-04-21] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2348000 2023-08-24] (GOG sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7173088 2023-08-24] (GOG sp. z o.o -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9278784 2023-08-16] (Malwarebytes Inc. -> Malwarebytes)
S3 MicrosoftEdgeElevationService1d999dbd811827a; C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.60\elevation_service.exe [1786408 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1244144 2023-07-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1869904 2023-10-09] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [310688 2023-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [280064 2023-02-15] (Microsoft Corporation) [Fichier non signé]
S3 hn_usbccgpfilter; C:\Windows\System32\drivers\hn_usbccgpfilter.sys [19328 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
U5 hn_usbdev; C:\Windows\System32\Drivers\hn_usbdev.sys [116864 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
S3 HoYoProtect; C:\Windows\system32\HoYoKProtect.sys [3716608 2023-09-17] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 rzjstk; C:\Windows\System32\drivers\rzjstk.sys [36568 2015-08-13] (Razer Inc. -> Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\drivers\rzkeypadendpt.sys [46280 2015-08-13] (Razer Inc. -> Razer Inc)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-10 09:31 - 2023-10-10 09:32 - 000022083 _____ C:\Users\batke\Downloads\FRST.txt
2023-10-10 09:31 - 2023-10-10 09:31 - 000000000 ____D C:\FRST
2023-10-10 09:30 - 2023-10-10 09:30 - 002383360 _____ (Farbar) C:\Users\batke\Downloads\FRST64.exe
2023-10-10 09:15 - 2023-10-10 09:15 - 004194656 _____ (Crystal Dew World ) C:\Users\batke\Downloads\CrystalDiskMark8_0_4c.exe
2023-10-09 11:52 - 2023-10-09 12:08 - 706453451 _____ C:\Users\batke\Downloads\Sex.Education.S04E08.FiNAL.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-08 13:10 - 2023-10-08 13:24 - 471121325 _____ C:\Users\batke\Downloads\Sex.Education.S04E07.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-07 18:45 - 2023-10-07 18:46 - 001001308 _____ C:\Users\batke\Downloads\cv color -1.pdf.pdf
2023-10-07 13:05 - 2023-10-07 13:22 - 480319352 _____ C:\Users\batke\Downloads\Sex.Education.S04E06.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-06 17:43 - 2023-10-06 18:05 - 786767358 _____ C:\Users\batke\Downloads\Goblin.Slayer.Goblins.Crown.2020.FANSUB.VOSTFR.WEBRip.x264-Wawacity.ninja.mp4
2023-10-06 14:59 - 2023-10-06 14:59 - 000758599 _____ C:\Users\batke\Downloads\Contrat de travail.pdf
2023-10-06 11:59 - 2023-10-06 12:06 - 227117529 _____ C:\Users\batke\Downloads\Invasion.2021.S02E04.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-10-04 13:20 - 2023-10-04 13:20 - 008791352 _____ (Malwarebytes) C:\Users\batke\Downloads\adwcleaner (1).exe
2023-10-04 09:26 - 2023-10-04 09:32 - 212401339 _____ C:\Users\batke\Downloads\Invasion.2021.S02E03.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-03 07:36 - 2023-10-03 07:43 - 279335082 _____ C:\Users\batke\Downloads\Invasion.2021.S02E02.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-03 07:18 - 2023-10-03 07:18 - 000015114 _____ C:\Users\batke\OneDrive\Documents\cc_20231003_071800.reg
2023-10-03 00:14 - 2023-10-03 00:22 - 305179514 _____ C:\Users\batke\Downloads\Invasion.2021.S02E01.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-10-02 09:24 - 2023-10-02 09:31 - 299818075 _____ C:\Users\batke\Downloads\Invasion.S01E10.FiNAL.VOSTFR.WEBRip.H264-Wawacity.work.mp4
2023-09-30 10:16 - 2023-09-30 10:24 - 348733885 _____ C:\Users\batke\Downloads\Sex.Education.S04E05.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-29 17:12 - 2023-09-29 17:12 - 000172745 _____ C:\Users\batke\Downloads\attestation_des_periodes_inscription (1).pdf
2023-09-29 13:32 - 2023-09-29 13:32 - 000172752 _____ C:\Users\batke\Downloads\attestation_des_periodes_inscription.pdf
2023-09-29 13:31 - 2023-09-29 13:31 - 000074724 _____ C:\Users\batke\Downloads\avis_de_situation.pdf
2023-09-29 00:15 - 2023-10-04 09:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-28 12:15 - 2023-09-28 14:35 - 4105805005 _____ C:\Users\batke\Downloads\Sous.la.peau.2013.MULTI.VFI.1080p.HDLight.x264.AC3.Wawacity.blue.mkv
2023-09-27 00:26 - 2023-09-27 00:38 - 397935383 _____ C:\Users\batke\Downloads\Sex.Education.S04E04.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-26 10:42 - 2023-09-26 10:42 - 000546902 _____ C:\Users\Public\Downloads\PRF_LOW_CODE_NO_CODE_2509_au_230224.pdf
2023-09-23 00:38 - 2023-09-23 00:48 - 404114110 _____ C:\Users\batke\Downloads\Sex.Education.S04E03.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 19:44 - 2023-09-22 19:58 - 430405593 _____ C:\Users\batke\Downloads\Sex.Education.S04E02.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 15:18 - 2023-09-22 15:29 - 465959562 _____ C:\Users\batke\Downloads\Sex.Education.S04E01.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-22 13:57 - 2023-09-22 13:57 - 000267955 _____ C:\Users\batke\Downloads\image.jpeg
2023-09-21 11:11 - 2023-09-21 11:20 - 333530567 _____ C:\Users\batke\Downloads\Foundation.S02E10.FiNAL.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-19 13:29 - 2023-09-19 13:42 - 516425908 _____ C:\Users\batke\Downloads\The.Walking.Dead.Daryl.Dixon.S01E02.FASTSUB.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-18 19:34 - 2023-09-18 19:34 - 000000000 ____D C:\Users\batke\OneDrive\Documents\Larian Studios
2023-09-18 19:34 - 2023-09-18 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin - Enhanced Edition [GOG.com]
2023-09-18 17:56 - 2023-09-18 18:30 - 1301622664 _____ C:\Users\batke\Downloads\Blue.Beetle.2023.TRUEFRENCH.HDRip.H264.Wawacity.rocks.mp4
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\Users\batke\AppData\Local\GOG.com
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2023-09-17 18:58 - 2023-09-17 18:58 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2023-09-17 18:49 - 2023-09-18 19:34 - 000000000 ____D C:\ProgramData\GOG.com
2023-09-17 18:49 - 2023-09-17 18:49 - 000530944 _____ (GOG Sp. z o.o.) C:\Users\batke\Downloads\GOG_Galaxy_Divinity_Original_Sin_-_Enhanced_Edition.exe
2023-09-15 22:18 - 2023-09-15 22:18 - 000000000 ___HD C:\$WinREAgent
2023-09-14 18:05 - 2023-09-14 18:14 - 366100566 _____ C:\Users\batke\Downloads\Foundation.S02E09.VOSTFR.WEBRip.x264-Wawacity.homes.mp4
2023-09-12 12:55 - 2023-09-12 13:06 - 507419330 _____ C:\Users\batke\Downloads\The.Walking.Dead.Daryl.Dixon.S01E01.FASTSUB.VOSTFR.WEBRip.x264-Wawacity.rocks.mp4
2023-09-12 09:26 - 2023-09-12 09:52 - 1169918151 _____ C:\Users\batke\Downloads\Barbie.2023.TRUEFRENCH.HDRip.H264.Wawacity.rocks.mp4
2023-09-11 15:51 - 2023-09-11 16:18 - 912679346 _____ C:\Users\batke\Downloads\Divine.Gate.S01E02.VOSTFR.1080p.WEB-DL.x264-Wakanim-Wawacity.homes.mp4
2023-09-11 14:45 - 2023-09-11 15:10 - 939235829 _____ C:\Users\batke\Downloads\Divine.Gate.S01E01.VOSTFR.1080p.WEB-DL.x264-Wakanim-Wawacity.homes.mp4
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-10 08:57 - 2023-08-11 09:45 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-10 08:57 - 2023-02-22 18:58 - 000000000 ____D C:\Users\batke\AppData\Local\Discord
2023-10-10 08:57 - 2022-09-08 05:13 - 000000000 ____D C:\Windows\SystemTemp
2023-10-10 08:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-10 00:49 - 2023-03-04 12:49 - 000000000 ____D C:\Program Files\CCleaner
2023-10-10 00:47 - 2023-02-22 15:45 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1256261342-4141152254-2228272740-1002
2023-10-10 00:47 - 2023-02-22 15:44 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1256261342-4141152254-2228272740-1002
2023-10-10 00:47 - 2023-02-22 15:44 - 000002466 _____ C:\Users\batke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-10 00:03 - 2023-08-11 04:47 - 000000000 ____D C:\Program Files\Star Rail
2023-10-09 22:03 - 2023-02-16 18:00 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-09 22:02 - 2023-08-11 13:11 - 001869904 _____ (ANTICHEATEXPERT.COM) C:\Windows\system32\Drivers\ACE-BASE.sys
2023-10-09 22:02 - 2023-03-23 13:43 - 000000000 ____D C:\Users\batke\AppData\Local\HoYoverse
2023-10-09 21:52 - 2023-07-27 13:35 - 000000000 ____D C:\Genshin Impact
2023-10-09 18:28 - 2023-02-22 16:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-09 14:29 - 2023-02-22 21:40 - 000000000 ____D C:\Users\batke\AppData\Roaming\vlc
2023-10-09 09:57 - 2023-02-22 18:49 - 000000000 ____D C:\Users\batke\AppData\Roaming\discord
2023-10-09 09:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-09 09:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-10-08 09:11 - 2023-08-11 10:45 - 000000000 ____D C:\Users\batke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2023-10-08 09:08 - 2023-02-15 09:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-05 18:07 - 2023-02-24 12:53 - 000000000 ____D C:\Users\serie salon
2023-10-05 17:18 - 2023-02-15 09:21 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-10-04 23:36 - 2023-02-22 15:39 - 000000000 ____D C:\Users\batke
2023-10-04 13:16 - 2023-08-16 09:49 - 000000000 ____D C:\Users\batke\AppData\Local\Malwarebytes
2023-10-04 09:16 - 2023-02-15 09:20 - 000269152 _____ C:\Windows\system32\FNTCACHE.DAT
2023-10-04 09:15 - 2023-02-22 19:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-04 09:15 - 2023-02-15 09:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-10-04 09:15 - 2023-02-15 09:20 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-04 09:15 - 2023-02-15 09:20 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-04 07:09 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-10-04 07:06 - 2023-02-22 19:14 - 000000000 ____D C:\Users\batke\AppData\Roaming\Microsoft\MMC
2023-10-03 07:17 - 2023-02-22 18:17 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-03 07:17 - 2023-02-22 18:14 - 000000000 ____D C:\Users\batke\AppData\Local\CrashDumps
2023-10-02 07:02 - 2023-02-22 18:09 - 000000000 ____D C:\Users\batke\AppData\Local\PlaceholderTileLogoFolder
2023-10-02 07:02 - 2023-02-22 15:42 - 000000000 ____D C:\Users\batke\AppData\Local\Packages
2023-10-02 07:02 - 2023-02-15 09:30 - 000000000 ____D C:\ProgramData\Packages
2023-09-29 09:35 - 2023-02-22 19:24 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-28 11:39 - 2023-02-26 18:02 - 000000000 ____D C:\Users\batke\AppData\Roaming\obs-studio
2023-09-25 15:12 - 2023-02-15 09:26 - 001771426 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-25 15:12 - 2022-10-19 10:27 - 000791886 _____ C:\Windows\system32\perfh00C.dat
2023-09-25 15:12 - 2022-10-19 10:27 - 000150052 _____ C:\Windows\system32\perfc00C.dat
2023-09-19 00:52 - 2023-08-11 09:46 - 000003960 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{19B5F38D-0AFD-4514-883D-379467310106}
2023-09-19 00:52 - 2023-08-11 09:46 - 000003836 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{AC6E3B2C-FE0D-427C-A408-9AD84A5912CC}
2023-09-18 19:34 - 2023-02-15 10:00 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-17 02:24 - 2023-03-28 09:52 - 003716608 _____ (miHoYo) C:\Windows\system32\HoYoKProtect.sys
2023-09-16 01:23 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-09-16 01:21 - 2019-12-07 16:54 - 000000000 ___SD C:\Windows\system32\AppV
2023-09-16 01:21 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-16 01:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-09-15 22:27 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-09-15 22:23 - 2023-02-15 09:22 - 003014144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-09-15 22:16 - 2023-02-15 09:38 - 000000000 ____D C:\Windows\system32\MRT
2023-09-15 22:14 - 2023-02-15 09:38 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2023-09-05 10:27 - 2023-09-05 10:27 - 000000024 _____ () C:\Users\batke\AppData\Roaming\C23W6Vk43XTwu662.dat
2023-05-26 18:04 - 2023-05-26 18:04 - 000000014 _____ () C:\Users\batke\AppData\Roaming\obs-virtualcam.txt
2023-08-15 11:38 - 2023-08-15 11:48 - 000012328 _____ () C:\Users\batke\AppData\Local\PlariumPlay.log
2023-05-11 17:44 - 2023-08-09 16:54 - 000007602 _____ () C:\Users\batke\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================