Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-12-2024
Exécuté par user (administrateur) sur DESKTOP-QEG6TDB (Gigabyte Technology Co., Ltd. Z390 UD) (01-01-2025 02:33:24)
Exécuté depuis C:\Users\user\Desktop\FRST64.exe
Profils chargés: user
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.4602 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(D:\PhotoshopPortable\PhotoshopPortable\PhotoshopPortable.exe ->) (Adobe Systems Incorporated -> Adobe Systems, Incorporated) D:\PhotoshopPortable\PhotoshopPortable\App\Photoshop\Photoshop.exe
(explorer.exe ->) (Notepad++ -> Don HO don.h@free.fr) D:\Notepad++\notepad++.exe
(explorer.exe ->) (PortableAppZ.blogspot.com) [Fichier non signé] [Fichier en cours d'utilisation] D:\PhotoshopPortable\PhotoshopPortable\PhotoshopPortable.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(services.exe ->) () [Fichier non signé] C:\Windows\Runservice.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [MicrosoftEdgeAutoLaunch_8714F0D917266FE3AFB7F8BB98EEBC18] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911240 2024-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [Zoiper5] => D:\Zoiper\Zoiper5.exe [40118120 2024-02-20] (Securax EOOD -> )
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [Steam] => "I:\steam\steam.exe" -silent (Pas de fichier)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {881EE70F-117E-406C-B098-0E902B454298} - System32\Tasks\BlueStacksHelper => D:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {AAC1E702-10BF-41CE-BBE2-107D657DC0A7} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5575576 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {865E23CD-1D13-4B5C-9B5C-D2B1F37E4BA9} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {17792E71-F6FC-4FAA-BEC2-FAE483B35245} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {81042E01-89B4-4616-8961-316388FAC8C0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200} C:\WINDOWS\system32\IntelligentPwdlessTask.dll [147456 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {FDBA3415-F7E1-4377-BF2B-EA8BE274B90E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {426F2381-111D-48F9-B8CF-7925FAFB9B9E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {CBC7493C-4690-4BD7-B785-698ED2762040} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7D5A6E2F-DC58-4FE6-A391-BA54514F66D7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3276FA33-55FB-4969-9F31-4981AFB0723C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {759F5B3F-0BCE-4ADA-8AC2-C405D88C79E2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5B59C297-07C2-4C60-9CA0-F4889BA32822} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {39E3317F-40EC-4A3D-BEDA-71B64EF24B1E} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-592492800-186889722-1646591818-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {3269022D-FD9D-48AB-B294-26CAD8FC1FC1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-10] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 195.130.130.1 195.130.131.1
Tcpip\..\Interfaces\{849a5f7a-34b6-4102-8880-e15371642466}: [DhcpNameServer] 195.130.130.1 195.130.131.1
Tcpip\..\Interfaces\{849a5f7a-34b6-4102-8880-e15371642466}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-01]
Edge Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-31]
Edge Extension: (Edge relevant text changes) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-29]
Edge Extension: (Connective signing extension) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2024-12-31]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2025-01-01]
Edge HKU\S-1-5-21-592492800-186889722-1646591818-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx
FireFox:
========
FF DefaultProfile: 0rth4jr3.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0rth4jr3.default [2020-05-25]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679 [2025-01-01]
FF Notifications: Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679 -> hxxps://www.takeaway.com; hxxps://pro.kraken.com
FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\@setupvpncom.xpi [2024-06-25]
FF Extension: (AdBlocker Ultimate) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-18]
FF Extension: (Dark Reader) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\addon@darkreader.org.xpi [2024-12-17]
FF Extension: (eID Belgique) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\belgiumeid@eid.belgium.be.xpi [2021-10-30]
FF Extension: (Don't track me Google) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\dont-track-me-google@robwu.nl.xpi [2023-07-07]
FF Extension: (Enhancer for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2024-12-03]
FF Extension: (Focused Youtube) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\FocusedYoutube@dukevin.com.xpi [2024-01-27]
FF Extension: (To Google Translate) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-10-30]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2022-01-10] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (AdBlocker for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2024-07-31]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2024-10-30]
FF Extension: (Firefox Relay) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\private-relay@firefox.com.xpi [2023-12-09]
FF Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\sponsorBlocker@ajay.app.xpi [2024-12-14]
FF Extension: (uBlock Origin) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\uBlock0@raymondhill.net.xpi [2024-11-27]
FF Extension: (Temp Mail - E-mail temporaire disponible) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{2d97895d-fcd3-41ab-82e6-6a1d4d2243f6}.xpi [2022-12-25]
FF Extension: (Sahara Sand) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{2ddbcb89-c6c1-4c0e-a146-21ba9bcd99ef}.xpi [2024-01-28]
FF Extension: (Allociné Search) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{3b4a3051-16b3-453e-9f80-3a31eb028a24}.xpi [2021-10-30]
FF Extension: (Youtube Audio) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{580efa7d-66f9-474d-857a-8e2afc6b1181}.xpi [2022-12-22]
FF Extension: (Fairytale Of Nature) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-10-30]
FF Extension: (Purpling bubbles) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{69ab6730-1a1a-4d27-8aa4-f27a0e5f2de8}.xpi [2021-10-30]
FF Extension: (NoScript) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2024-11-06]
FF Extension: (Stylus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{7a7a4a92-a2a0-41d1-9fd7-1e92480d612d}.xpi [2024-08-22]
FF Extension: (Masquer les Shorts pour Youtube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{88ebde3a-4581-4c6b-8019-2a05a9e3e938}.xpi [2024-10-14]
FF Extension: (IMDb Search Selection) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{bf142e4b-c620-4893-a62e-b234a6dbfffb}.xpi [2024-04-26]
FF Extension: (Solarized Light) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{cbaf2ab0-4b85-44b3-81c8-b99d609974b0}.xpi [2024-01-27]
FF Extension: (Web Archives) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{d07ccf11-c0cd-4938-a265-2a4d6ad01189}.xpi [2024-12-20]
FF Plugin: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: connective.be/BrowserPlugin -> C:\Program Files (x86)\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-06-14] (Connective n.v.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-592492800-186889722-1646591818-1001: connective.be/BrowserPlugin -> C:\Users\user\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-06-14] (Connective n.v.) [Fichier non signé]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel)
S3 GalaxyClientService; E:\GOG Galaxy\GalaxyClientService.exe [2275928 2022-07-31] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-07-31] (GOG Sp. z o.o. -> GOG.com)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2021-05-07] () [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AKCCID; C:\WINDOWS\System32\drivers\AKCCID.sys [87208 2024-03-26] (Alcorlink Corp. -> Generic)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-10-01] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-10-01] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 MpKsle0bbdf80; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{99CA6A66-D2FA-46AF-B874-C5B7A6E76D70}\MpKslDrv.sys [267552 2024-12-31] (Microsoft Windows -> Microsoft Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 02:33 - 2025-01-01 02:33 - 000022949 _____ C:\Users\user\Desktop\FRST.txt
2025-01-01 02:33 - 2025-01-01 02:33 - 000000000 ____D C:\FRST
2025-01-01 02:30 - 2025-01-01 02:30 - 002403840 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\Users\user\AppData\Roaming\Adobe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\Users\user\AppData\Local\Adobe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\ProgramData\Adobe
2024-12-31 23:50 - 2024-12-31 23:50 - 000692741 _____ C:\Users\user\Desktop\ZHPDiag.html
2024-12-31 23:50 - 2024-12-31 23:50 - 000542490 _____ C:\Users\user\Desktop\ZHPDiag.txt
2024-12-31 23:43 - 2025-01-01 00:26 - 000000000 ____D C:\Users\user\AppData\Roaming\ZHP
2024-12-31 23:43 - 2025-01-01 00:24 - 000000864 _____ C:\Users\user\Desktop\ZHPSuite.lnk
2024-12-31 23:43 - 2024-12-31 23:43 - 000000000 ____D C:\Users\user\AppData\Local\ZHP
2024-12-31 23:42 - 2024-12-31 23:42 - 003539656 _____ (Nicolas Coolman) C:\Users\user\Desktop\ZHPSuite.exe
2024-12-31 13:01 - 2024-12-31 13:01 - 001001032 _____ C:\Users\user\AppData\Local\census.cache
2024-12-31 13:00 - 2024-12-31 13:00 - 000429925 _____ C:\Users\user\AppData\Local\ars.cache
2024-12-31 12:42 - 2024-12-31 12:42 - 000000036 _____ C:\Users\user\AppData\Local\housecall.guid.cache
2024-12-31 11:40 - 2024-12-31 13:18 - 000001271 _____ C:\Users\user\Desktop\ESET Online Scanner.lnk
2024-12-31 10:17 - 2024-12-31 10:17 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-12-31 10:17 - 2024-12-31 10:17 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-12-23 17:34 - 2024-12-23 17:35 - 000000000 ____D C:\Users\user\AppData\Local\Bellwright
2024-12-23 17:32 - 2024-12-23 17:32 - 000001249 _____ C:\Users\user\Desktop\BellwrightGame.exe - Raccourci.lnk
2024-12-18 22:45 - 2024-12-18 22:45 - 000000000 ____D C:\Users\user\AppData\Local\USG
2024-12-18 22:44 - 2024-12-18 22:44 - 000001149 _____ C:\Users\user\Desktop\USG.exe - Raccourci.lnk
2024-12-10 15:55 - 2024-12-11 07:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-02 17:50 - 2024-12-02 17:50 - 000000000 ____D C:\Program Files (x86)\Intel
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 01:05 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-31 23:39 - 2022-02-08 22:56 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-31 22:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-31 21:14 - 2020-06-02 04:44 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2024-12-31 14:08 - 2021-04-14 17:42 - 000000000 ____D C:\Users\user\Desktop\identité
2024-12-31 13:18 - 2021-10-30 03:07 - 000001377 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-12-31 10:17 - 2022-10-01 11:11 - 001804050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-31 10:17 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-12-31 10:13 - 2022-10-01 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-31 10:13 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-12-31 10:13 - 2021-05-07 10:16 - 000000849 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2024-12-31 10:13 - 2021-03-06 22:26 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-31 10:13 - 2020-05-25 15:36 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-30 23:57 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-30 23:56 - 2020-06-13 06:44 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2024-12-30 22:04 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-30 20:04 - 2022-10-01 11:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-30 15:04 - 2024-02-28 00:48 - 000000000 ____D C:\Users\user\AppData\Roaming\Zoiper5
2024-12-30 15:04 - 2020-05-26 13:45 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
2024-12-27 20:12 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-23 17:34 - 2020-07-25 21:52 - 000000000 ____D C:\Users\user\AppData\Local\UnrealEngine
2024-12-23 17:31 - 2020-05-25 23:08 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-21 17:00 - 2020-07-16 05:48 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-21 16:54 - 2022-10-01 11:11 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-21 16:54 - 2022-10-01 11:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-16 20:50 - 2022-10-01 11:11 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-592492800-186889722-1646591818-1001
2024-12-16 20:50 - 2022-10-01 11:11 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-592492800-186889722-1646591818-1001
2024-12-16 20:50 - 2021-03-06 22:27 - 000002414 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-16 14:10 - 2020-07-10 19:54 - 000000000 ____D C:\Users\user\AppData\Roaming\discord
2024-12-16 13:27 - 2020-07-10 19:54 - 000000000 ____D C:\Users\user\AppData\Local\Discord
2024-12-11 15:56 - 2022-07-08 06:15 - 000000000 ____D C:\Users\user\AppData\Roaming\ExplorerPatcher
2024-12-11 13:08 - 2023-10-11 00:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-12-11 13:08 - 2022-10-01 11:08 - 000493656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-11 09:42 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-11 09:40 - 2022-10-01 11:09 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-11 07:16 - 2021-10-30 06:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-10 22:23 - 2022-10-01 11:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-12-10 22:23 - 2021-10-30 06:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-02 17:50 - 2023-05-12 06:49 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
==================== Fichiers à la racine de certains dossiers ========
2020-09-30 10:01 - 2023-10-31 23:20 - 000100041 _____ () C:\Users\user\AppData\Roaming\.BEID_0.log
2021-04-12 18:08 - 2024-12-31 23:38 - 000092410 _____ () C:\Users\user\AppData\Roaming\.BEID_1.log
2020-07-11 17:05 - 2022-01-14 14:07 - 000000035 _____ () C:\Users\user\AppData\Roaming\~SiMPLEX.ini
2024-09-28 12:25 - 2024-10-10 15:41 - 000000000 _____ () C:\Users\user\AppData\Local\Ara
2024-12-31 13:00 - 2024-12-31 13:00 - 000429925 _____ () C:\Users\user\AppData\Local\ars.cache
2024-12-31 13:01 - 2024-12-31 13:01 - 001001032 _____ () C:\Users\user\AppData\Local\census.cache
2024-12-31 12:42 - 2024-12-31 12:42 - 000000036 _____ () C:\Users\user\AppData\Local\housecall.guid.cache
2022-02-16 15:39 - 2022-02-19 14:17 - 000000637 _____ () C:\Users\user\AppData\Local\Params.xml
2020-08-12 20:25 - 2024-10-20 19:13 - 000007625 _____ () C:\Users\user\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par user (administrateur) sur DESKTOP-QEG6TDB (Gigabyte Technology Co., Ltd. Z390 UD) (01-01-2025 02:33:24)
Exécuté depuis C:\Users\user\Desktop\FRST64.exe
Profils chargés: user
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.4602 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(D:\PhotoshopPortable\PhotoshopPortable\PhotoshopPortable.exe ->) (Adobe Systems Incorporated -> Adobe Systems, Incorporated) D:\PhotoshopPortable\PhotoshopPortable\App\Photoshop\Photoshop.exe
(explorer.exe ->) (Notepad++ -> Don HO don.h@free.fr) D:\Notepad++\notepad++.exe
(explorer.exe ->) (PortableAppZ.blogspot.com) [Fichier non signé] [Fichier en cours d'utilisation] D:\PhotoshopPortable\PhotoshopPortable\PhotoshopPortable.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(services.exe ->) () [Fichier non signé] C:\Windows\Runservice.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [MicrosoftEdgeAutoLaunch_8714F0D917266FE3AFB7F8BB98EEBC18] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911240 2024-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [Zoiper5] => D:\Zoiper\Zoiper5.exe [40118120 2024-02-20] (Securax EOOD -> )
HKU\S-1-5-21-592492800-186889722-1646591818-1001\...\Run: [Steam] => "I:\steam\steam.exe" -silent (Pas de fichier)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {881EE70F-117E-406C-B098-0E902B454298} - System32\Tasks\BlueStacksHelper => D:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {AAC1E702-10BF-41CE-BBE2-107D657DC0A7} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5575576 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {865E23CD-1D13-4B5C-9B5C-D2B1F37E4BA9} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {17792E71-F6FC-4FAA-BEC2-FAE483B35245} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {81042E01-89B4-4616-8961-316388FAC8C0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200} C:\WINDOWS\system32\IntelligentPwdlessTask.dll [147456 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {FDBA3415-F7E1-4377-BF2B-EA8BE274B90E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {426F2381-111D-48F9-B8CF-7925FAFB9B9E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {CBC7493C-4690-4BD7-B785-698ED2762040} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7D5A6E2F-DC58-4FE6-A391-BA54514F66D7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3276FA33-55FB-4969-9F31-4981AFB0723C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {759F5B3F-0BCE-4ADA-8AC2-C405D88C79E2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5B59C297-07C2-4C60-9CA0-F4889BA32822} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {39E3317F-40EC-4A3D-BEDA-71B64EF24B1E} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-592492800-186889722-1646591818-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {3269022D-FD9D-48AB-B294-26CAD8FC1FC1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-10] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 195.130.130.1 195.130.131.1
Tcpip\..\Interfaces\{849a5f7a-34b6-4102-8880-e15371642466}: [DhcpNameServer] 195.130.130.1 195.130.131.1
Tcpip\..\Interfaces\{849a5f7a-34b6-4102-8880-e15371642466}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-01]
Edge Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-31]
Edge Extension: (Edge relevant text changes) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-29]
Edge Extension: (Connective signing extension) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2024-12-31]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2025-01-01]
Edge HKU\S-1-5-21-592492800-186889722-1646591818-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx
FireFox:
========
FF DefaultProfile: 0rth4jr3.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0rth4jr3.default [2020-05-25]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679 [2025-01-01]
FF Notifications: Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679 -> hxxps://www.takeaway.com; hxxps://pro.kraken.com
FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\@setupvpncom.xpi [2024-06-25]
FF Extension: (AdBlocker Ultimate) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-18]
FF Extension: (Dark Reader) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\addon@darkreader.org.xpi [2024-12-17]
FF Extension: (eID Belgique) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\belgiumeid@eid.belgium.be.xpi [2021-10-30]
FF Extension: (Don't track me Google) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\dont-track-me-google@robwu.nl.xpi [2023-07-07]
FF Extension: (Enhancer for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2024-12-03]
FF Extension: (Focused Youtube) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\FocusedYoutube@dukevin.com.xpi [2024-01-27]
FF Extension: (To Google Translate) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-10-30]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2022-01-10] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (AdBlocker for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2024-07-31]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2024-10-30]
FF Extension: (Firefox Relay) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\private-relay@firefox.com.xpi [2023-12-09]
FF Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\sponsorBlocker@ajay.app.xpi [2024-12-14]
FF Extension: (uBlock Origin) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\uBlock0@raymondhill.net.xpi [2024-11-27]
FF Extension: (Temp Mail - E-mail temporaire disponible) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{2d97895d-fcd3-41ab-82e6-6a1d4d2243f6}.xpi [2022-12-25]
FF Extension: (Sahara Sand) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{2ddbcb89-c6c1-4c0e-a146-21ba9bcd99ef}.xpi [2024-01-28]
FF Extension: (Allociné Search) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{3b4a3051-16b3-453e-9f80-3a31eb028a24}.xpi [2021-10-30]
FF Extension: (Youtube Audio) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{580efa7d-66f9-474d-857a-8e2afc6b1181}.xpi [2022-12-22]
FF Extension: (Fairytale Of Nature) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-10-30]
FF Extension: (Purpling bubbles) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{69ab6730-1a1a-4d27-8aa4-f27a0e5f2de8}.xpi [2021-10-30]
FF Extension: (NoScript) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2024-11-06]
FF Extension: (Stylus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{7a7a4a92-a2a0-41d1-9fd7-1e92480d612d}.xpi [2024-08-22]
FF Extension: (Masquer les Shorts pour Youtube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{88ebde3a-4581-4c6b-8019-2a05a9e3e938}.xpi [2024-10-14]
FF Extension: (IMDb Search Selection) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{bf142e4b-c620-4893-a62e-b234a6dbfffb}.xpi [2024-04-26]
FF Extension: (Solarized Light) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{cbaf2ab0-4b85-44b3-81c8-b99d609974b0}.xpi [2024-01-27]
FF Extension: (Web Archives) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\ntgwxn47.default-release-1635571121679\Extensions\{d07ccf11-c0cd-4938-a265-2a4d6ad01189}.xpi [2024-12-20]
FF Plugin: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> D:\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: connective.be/BrowserPlugin -> C:\Program Files (x86)\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-06-14] (Connective n.v.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-592492800-186889722-1646591818-1001: connective.be/BrowserPlugin -> C:\Users\user\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2018-06-14] (Connective n.v.) [Fichier non signé]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel)
S3 GalaxyClientService; E:\GOG Galaxy\GalaxyClientService.exe [2275928 2022-07-31] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-07-31] (GOG Sp. z o.o. -> GOG.com)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2021-05-07] () [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AKCCID; C:\WINDOWS\System32\drivers\AKCCID.sys [87208 2024-03-26] (Alcorlink Corp. -> Generic)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-10-01] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-10-01] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 MpKsle0bbdf80; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{99CA6A66-D2FA-46AF-B874-C5B7A6E76D70}\MpKslDrv.sys [267552 2024-12-31] (Microsoft Windows -> Microsoft Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 02:33 - 2025-01-01 02:33 - 000022949 _____ C:\Users\user\Desktop\FRST.txt
2025-01-01 02:33 - 2025-01-01 02:33 - 000000000 ____D C:\FRST
2025-01-01 02:30 - 2025-01-01 02:30 - 002403840 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\Users\user\AppData\Roaming\Adobe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\Users\user\AppData\Local\Adobe
2025-01-01 01:11 - 2025-01-01 01:11 - 000000000 ____D C:\ProgramData\Adobe
2024-12-31 23:50 - 2024-12-31 23:50 - 000692741 _____ C:\Users\user\Desktop\ZHPDiag.html
2024-12-31 23:50 - 2024-12-31 23:50 - 000542490 _____ C:\Users\user\Desktop\ZHPDiag.txt
2024-12-31 23:43 - 2025-01-01 00:26 - 000000000 ____D C:\Users\user\AppData\Roaming\ZHP
2024-12-31 23:43 - 2025-01-01 00:24 - 000000864 _____ C:\Users\user\Desktop\ZHPSuite.lnk
2024-12-31 23:43 - 2024-12-31 23:43 - 000000000 ____D C:\Users\user\AppData\Local\ZHP
2024-12-31 23:42 - 2024-12-31 23:42 - 003539656 _____ (Nicolas Coolman) C:\Users\user\Desktop\ZHPSuite.exe
2024-12-31 13:01 - 2024-12-31 13:01 - 001001032 _____ C:\Users\user\AppData\Local\census.cache
2024-12-31 13:00 - 2024-12-31 13:00 - 000429925 _____ C:\Users\user\AppData\Local\ars.cache
2024-12-31 12:42 - 2024-12-31 12:42 - 000000036 _____ C:\Users\user\AppData\Local\housecall.guid.cache
2024-12-31 11:40 - 2024-12-31 13:18 - 000001271 _____ C:\Users\user\Desktop\ESET Online Scanner.lnk
2024-12-31 10:17 - 2024-12-31 10:17 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-12-31 10:17 - 2024-12-31 10:17 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-12-23 17:34 - 2024-12-23 17:35 - 000000000 ____D C:\Users\user\AppData\Local\Bellwright
2024-12-23 17:32 - 2024-12-23 17:32 - 000001249 _____ C:\Users\user\Desktop\BellwrightGame.exe - Raccourci.lnk
2024-12-18 22:45 - 2024-12-18 22:45 - 000000000 ____D C:\Users\user\AppData\Local\USG
2024-12-18 22:44 - 2024-12-18 22:44 - 000001149 _____ C:\Users\user\Desktop\USG.exe - Raccourci.lnk
2024-12-10 15:55 - 2024-12-11 07:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-02 17:50 - 2024-12-02 17:50 - 000000000 ____D C:\Program Files (x86)\Intel
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 01:05 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-31 23:39 - 2022-02-08 22:56 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-31 22:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-31 21:14 - 2020-06-02 04:44 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2024-12-31 14:08 - 2021-04-14 17:42 - 000000000 ____D C:\Users\user\Desktop\identité
2024-12-31 13:18 - 2021-10-30 03:07 - 000001377 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-12-31 10:17 - 2022-10-01 11:11 - 001804050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-31 10:17 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-12-31 10:13 - 2022-10-01 11:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-31 10:13 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-12-31 10:13 - 2021-05-07 10:16 - 000000849 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2024-12-31 10:13 - 2021-03-06 22:26 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-31 10:13 - 2020-05-25 15:36 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-30 23:57 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-30 23:56 - 2020-06-13 06:44 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2024-12-30 22:04 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-30 20:04 - 2022-10-01 11:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-30 15:04 - 2024-02-28 00:48 - 000000000 ____D C:\Users\user\AppData\Roaming\Zoiper5
2024-12-30 15:04 - 2020-05-26 13:45 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
2024-12-27 20:12 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-23 17:34 - 2020-07-25 21:52 - 000000000 ____D C:\Users\user\AppData\Local\UnrealEngine
2024-12-23 17:31 - 2020-05-25 23:08 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-21 17:00 - 2020-07-16 05:48 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-21 16:54 - 2022-10-01 11:11 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-21 16:54 - 2022-10-01 11:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-16 20:50 - 2022-10-01 11:11 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-592492800-186889722-1646591818-1001
2024-12-16 20:50 - 2022-10-01 11:11 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-592492800-186889722-1646591818-1001
2024-12-16 20:50 - 2021-03-06 22:27 - 000002414 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-16 14:10 - 2020-07-10 19:54 - 000000000 ____D C:\Users\user\AppData\Roaming\discord
2024-12-16 13:27 - 2020-07-10 19:54 - 000000000 ____D C:\Users\user\AppData\Local\Discord
2024-12-11 15:56 - 2022-07-08 06:15 - 000000000 ____D C:\Users\user\AppData\Roaming\ExplorerPatcher
2024-12-11 13:08 - 2023-10-11 00:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-12-11 13:08 - 2022-10-01 11:08 - 000493656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-11 13:08 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-11 09:42 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-11 09:40 - 2022-10-01 11:09 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-11 07:16 - 2021-10-30 06:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-10 22:23 - 2022-10-01 11:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-12-10 22:23 - 2021-10-30 06:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-02 17:50 - 2023-05-12 06:49 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
==================== Fichiers à la racine de certains dossiers ========
2020-09-30 10:01 - 2023-10-31 23:20 - 000100041 _____ () C:\Users\user\AppData\Roaming\.BEID_0.log
2021-04-12 18:08 - 2024-12-31 23:38 - 000092410 _____ () C:\Users\user\AppData\Roaming\.BEID_1.log
2020-07-11 17:05 - 2022-01-14 14:07 - 000000035 _____ () C:\Users\user\AppData\Roaming\~SiMPLEX.ini
2024-09-28 12:25 - 2024-10-10 15:41 - 000000000 _____ () C:\Users\user\AppData\Local\Ara
2024-12-31 13:00 - 2024-12-31 13:00 - 000429925 _____ () C:\Users\user\AppData\Local\ars.cache
2024-12-31 13:01 - 2024-12-31 13:01 - 001001032 _____ () C:\Users\user\AppData\Local\census.cache
2024-12-31 12:42 - 2024-12-31 12:42 - 000000036 _____ () C:\Users\user\AppData\Local\housecall.guid.cache
2022-02-16 15:39 - 2022-02-19 14:17 - 000000637 _____ () C:\Users\user\AppData\Local\Params.xml
2020-08-12 20:25 - 2024-10-20 19:13 - 000007625 _____ () C:\Users\user\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================