Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2021
Exécuté par jessy (administrateur) sur DESKTOP-G4URUIB (13-09-2021 14:22:21)
Exécuté depuis C:\Users\jessy\Desktop
Profils chargés: jessy & postgres
Platform: Windows 10 Pro Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

((c)2016 Datacolor) [Fichier non signé] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Facebook, Inc. -> Facebook, Inc.) C:\Users\jessy\AppData\Local\Programs\Messenger\Messenger.exe <5>
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <24>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\93.0.4577.8\remoting_host.exe <2>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20206.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20206.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\regedit.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(PostgreSQL Global Development Group) [Fichier non signé] C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [Fichier non signé] C:\Program Files\PostgreSQL\9.5\bin\postgres.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1068624 2020-10-11] (Heidi Computers Ltd -> The Eraser Project)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3951024 2019-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1668000 2021-06-09] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> )
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2338664 2021-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33309664 2021-08-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49927816 2021-08-16] (Google LLC -> )
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282600 2021-09-10] (Valve -> Valve Corporation)
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\jessy\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin
HKU\S-1-5-21-4247927337-2898577755-962393942-1002\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2338664 2021-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-01] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2020-12-18]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe ((c)2016 Datacolor) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKU\S-1-5-21-4247927337-2898577755-962393942-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0BC7857B-3EB3-4643-B3D9-EBDFFF0E5B6D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1F63F3FA-E35D-400D-A388-C483A11D2F3E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3254F9B5-A372-48AA-9841-20983688F065} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {35CCC2FF-D991-4BCD-9943-CFBC79C37CA0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57447FEA-A9ED-4FE1-9DF5-94823ABC84E5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2020-12-28] () [Fichier non signé]
Task: {5B5B8C71-2CAB-492B-B66E-4FAA98FB71CE} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6DAD71F1-EE19-49BE-81A3-CECA6CB5FB78} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {786BF5B1-91BE-4A43-B987-3FFB0C425C2C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83D58F26-4B82-40D3-A16B-550CF67E94FA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A11FE18-6405-4092-BBE4-D24CB87F8379} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3977064 2021-09-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9EFA78D3-184C-41FD-807B-ADABE1E1648C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-17] (Google LLC -> Google LLC)
Task: {B656E5BD-9EB3-4171-8E9F-AB3B6A960670} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C2C7F0ED-DEDF-4940-9D83-B09B17554147} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9993D62-90C6-48AB-B7A5-7D58BE379EA7} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [3047944 2020-10-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {DD4953D8-F68E-41FD-B91F-502C44A8D4F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-17] (Google LLC -> Google LLC)
Task: {E2780836-93F1-4763-A02D-CE0D85F00B02} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E348DFB1-0F75-479C-B05E-6E0AE429895A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F44693D7-8620-48F9-9603-23BF5C135973} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {FADB38E6-5748-4F02-9F7F-18D0C192233D} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2483032 2021-08-12] (Overwolf Ltd -> Overwolf LTD)
Task: {FB81CE53-1165-44F4-8699-B9855E4A7AA8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{b5465d27-d725-43ba-8244-37dc5d469e78}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jessy\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-13]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Chrome:
=======
CHR Profile: C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default [2021-09-13]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR StartupUrls: Default -> ""
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR DefaultSearchKeyword: Default -> Custom
CHR Session Restore: Default -> est activé.
CHR Extension: (Slides) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-17]
CHR Extension: (Docs) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-17]
CHR Extension: (Google Drive) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-17]
CHR Extension: (MEGA) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2021-09-12]
CHR Extension: (YouTube) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-17]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-12]
CHR Extension: (Tampermonkey) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-06-25]
CHR Extension: (Google Docs Offline) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\djabjljghkfepmajgidhdoapdiiigggl [2021-09-13]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-12-17]
CHR Extension: (Pricearchive - Assistant commercial AliExpress) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebbilkbochjjalheallpnblfdhkfjjmp [2021-01-15]
CHR Extension: (Chrome Remote Desktop) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-01-06]
CHR Extension: (Sheets) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-17]
CHR Extension: (I don't care about cookies) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2021-08-11]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2020-12-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25]
CHR Extension: (Custom) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemlmgggokggmncimchkllhcjcaimcle [2021-09-13]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-13]
CHR Extension: (Chrome Remote Desktop) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-01-02]
CHR Extension: (Open Port Check Tool) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lefghalnfhaklfbndadklndcndabkadb [2020-12-17]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\jessy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-17]
CHR HKU\S-1-5-21-4247927337-2898577755-962393942-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AppServicea; C:\Windows\system32\1XVU42MI0W.tmp [6144 2021-09-13] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceb; C:\Windows\system32\1XVU42MI0W.tmp [6144 2021-09-13] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiced; C:\Windows\system32\1XVU42MI0W.tmp [6144 2021-09-13] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\93.0.4577.8\remoting_host.exe [70824 2021-07-20] (Google LLC -> Google LLC)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-09-26] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.160.0808.0002\FileSyncHelper.exe [3249512 2021-09-12] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7785656 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.160.0808.0002\OneDriveUpdaterService.exe [3711848 2021-09-12] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [12156832 2021-09-01] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2546776 2021-04-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3486808 2021-04-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2483032 2021-08-12] (Overwolf Ltd -> Overwolf LTD)
R2 postgresql-x64-9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [94208 2016-08-09] (PostgreSQL Global Development Group) [Fichier non signé]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1716632 2021-05-18] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-08-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [160176 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [68528 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [149424 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Spyder4; C:\Windows\System32\drivers\dccmtr.sys [15360 2011-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2021-09-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [433384 2021-09-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-13 14:22 - 2021-09-13 14:22 - 000025033 _____ C:\Users\jessy\Desktop\FRST.txt
2021-09-13 14:16 - 2021-09-13 14:16 - 000068528 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-09-13 14:15 - 2021-09-13 14:15 - 015466496 ____N C:\Windows\system32\config\SYSTEM
2021-09-13 14:15 - 2021-09-13 14:15 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-09-13 14:15 - 2021-09-13 14:15 - 000149424 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-09-13 14:15 - 2021-09-13 14:15 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\1XVU42MI0W.tmp
2021-09-13 14:10 - 2021-09-13 14:10 - 000210344 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-09-13 13:35 - 2021-09-13 14:22 - 000000000 ____D C:\FRST
2021-09-13 13:35 - 2021-09-13 13:37 - 000073047 _____ C:\Users\jessy\Downloads\Addition.txt
2021-09-13 13:35 - 2021-09-13 13:37 - 000040337 _____ C:\Users\jessy\Downloads\FRST.txt
2021-09-13 13:32 - 2021-09-13 13:32 - 002303488 _____ (Farbar) C:\Users\jessy\Desktop\FRST64.exe
2021-09-13 12:59 - 2021-09-13 13:13 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-09-13 12:59 - 2021-09-13 12:59 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-09-13 12:59 - 2021-09-13 12:59 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-09-13 12:59 - 2021-09-13 12:59 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-13 12:59 - 2021-09-13 12:59 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-09-13 12:59 - 2021-09-13 12:59 - 000000000 ____D C:\Users\jessy\AppData\Local\mbam
2021-09-13 12:59 - 2021-09-13 12:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-09-13 12:58 - 2021-09-13 12:58 - 002101944 _____ (Malwarebytes) C:\Users\jessy\Downloads\MBSetup.exe
2021-09-13 12:58 - 2021-09-13 12:58 - 000000000 ____D C:\Program Files\Malwarebytes
2021-09-13 12:55 - 2021-09-13 13:05 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Intel Rapid
2021-09-13 12:55 - 2021-09-13 12:55 - 000000000 ____D C:\Program Files (x86)\foler
2021-09-13 12:54 - 2021-09-13 13:04 - 000000000 ____D C:\Users\jessy\AppData\Roaming\wushup
2021-09-13 12:54 - 2021-09-13 13:04 - 000000000 ____D C:\Users\jessy\AppData\LocalLow\aD1rF3aM8r
2021-09-13 12:54 - 2021-09-13 12:54 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Romney
2021-09-13 12:53 - 2021-09-13 13:04 - 000000000 ____D C:\Users\jessy\AppData\LocalLow\uS0wV5wY9qH3
2021-09-13 12:52 - 2021-09-13 13:05 - 006826592 ____N C:\Windows\system32\Drivers\U168J2r.sys
2021-09-13 12:52 - 2021-09-13 13:05 - 000000000 ___HD C:\Windows\rss
2021-09-13 12:52 - 2021-09-13 13:05 - 000000000 ___HD C:\Users\jessy\AppData\Roaming\WinHost
2021-09-13 12:52 - 2021-09-13 12:52 - 000000000 ____D C:\Users\jessy\AppData\Local\Yandex
2021-09-13 12:52 - 2021-09-13 12:52 - 000000000 ____D C:\Program Files (x86)\Windows Locator
2021-09-13 12:51 - 2021-09-13 13:05 - 000000000 ____D C:\Windows\PublicGaming
2021-09-13 12:48 - 2021-09-13 12:48 - 009004962 _____ C:\Users\jessy\Downloads\c747bd3f__lrtimelapse-pro.zip
2021-09-13 08:17 - 2021-09-13 08:17 - 000006699 _____ C:\Users\jessy\Desktop\aliexpress drag x.txt
2021-09-12 18:26 - 2021-09-12 18:26 - 000000847 _____ C:\Users\Public\Desktop\Logi Options+.lnk
2021-09-12 18:26 - 2021-09-12 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-09-12 18:26 - 2021-09-12 18:26 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2021-09-12 15:06 - 2021-09-12 15:06 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-08-29 15:30 - 2021-08-29 15:31 - 000180739 _____ C:\Users\jessy\Documents\Unidialog_3642718 (1).pdf
2021-08-23 18:10 - 2021-08-23 18:10 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-08-23 10:37 - 2021-08-06 10:45 - 001858680 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-08-23 10:37 - 2021-08-06 10:45 - 001858680 _____ C:\Windows\system32\vulkaninfo.exe
2021-08-23 10:37 - 2021-08-06 10:45 - 001474672 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-08-23 10:37 - 2021-08-06 10:45 - 001438840 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-08-23 10:37 - 2021-08-06 10:45 - 001438840 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-08-23 10:37 - 2021-08-06 10:45 - 001212536 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-08-23 10:37 - 2021-08-06 10:45 - 001097832 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-08-23 10:37 - 2021-08-06 10:45 - 001097832 _____ C:\Windows\system32\vulkan-1.dll
2021-08-23 10:37 - 2021-08-06 10:45 - 000951928 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-08-23 10:37 - 2021-08-06 10:45 - 000951928 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-08-23 10:37 - 2021-08-06 10:42 - 000716928 _____ C:\Windows\system32\nvofapi64.dll
2021-08-23 10:37 - 2021-08-06 10:42 - 000645248 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-08-23 10:37 - 2021-08-06 10:42 - 000577152 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 002112144 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 001595536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 001520760 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 001171088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 000919184 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 000750200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 000706168 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-08-23 10:37 - 2021-08-06 10:41 - 000676480 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-08-23 10:37 - 2021-08-06 10:41 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-08-23 10:37 - 2021-08-06 10:40 - 005680768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-08-23 10:37 - 2021-08-05 23:12 - 000083062 _____ C:\Windows\system32\nvinfo.pb
2021-08-23 10:36 - 2021-08-06 10:40 - 008854136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-08-23 10:36 - 2021-08-06 10:40 - 007920760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-08-23 10:36 - 2021-08-06 10:40 - 004987512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-08-23 10:36 - 2021-08-06 10:40 - 002925688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-08-23 10:36 - 2021-08-06 10:40 - 000447096 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-08-23 10:36 - 2021-08-06 10:39 - 000849024 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-08-23 10:36 - 2021-08-06 10:38 - 006215808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-08-20 18:11 - 2021-08-20 18:11 - 000000000 ____D C:\Users\jessy\AppData\LocalLow\Nomada
2021-08-20 17:40 - 2021-08-20 17:40 - 000042596 _____ C:\Users\jessy\Downloads\attestation-zanon-jean-charles.pdf
2021-08-20 08:28 - 2021-08-20 08:28 - 000000517 _____ C:\Users\Public\Desktop\Twelve Minutes.lnk
2021-08-19 20:34 - 2021-08-19 20:34 - 000001136 _____ C:\Users\Public\Desktop\BeautyRetouch.lnk
2021-08-19 20:34 - 2021-08-19 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BeautyRetouch
2021-08-19 20:34 - 2021-08-19 20:34 - 000000000 ____D C:\Program Files (x86)\BeautyRetouch
2021-08-19 15:28 - 2021-08-19 15:28 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Beauty Retouch
2021-08-19 15:28 - 2020-06-13 23:23 - 000000000 ____D C:\Users\jessy\Desktop\Beauty Retouch Win CC2021
2021-08-19 15:19 - 2021-08-19 15:22 - 051482059 _____ C:\Users\jessy\Downloads\BR_Win_v3_3a.zip
2021-08-18 14:15 - 2021-08-18 14:15 - 000054491 _____ C:\Users\jessy\Desktop\Adobe Lightroom Classic v9.2 Mac [GFXPeers.Net].torrent
2021-08-18 13:13 - 2021-08-18 13:13 - 057949747 _____ C:\Users\jessy\Desktop\catalogue-de-poses-janvier-2018.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-13 14:22 - 2021-08-08 10:37 - 000000000 ____D C:\Users\jessy\AppData\Local\LogiOptionsPlus
2021-09-13 14:22 - 2021-03-04 12:06 - 000000000 ____D C:\Users\jessy\AppData\Local\Messenger
2021-09-13 14:22 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-09-13 14:19 - 2020-12-17 17:29 - 000000000 ____D C:\Program Files\CCleaner
2021-09-13 14:18 - 2020-12-17 17:32 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-13 14:17 - 2020-12-17 17:21 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-13 14:16 - 2021-03-04 12:06 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Messenger
2021-09-13 14:16 - 2020-12-27 13:11 - 000000000 ____D C:\Program Files (x86)\Steam
2021-09-13 14:15 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-09-13 14:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-09-13 14:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-13 14:15 - 2019-12-07 11:03 - 015466496 _____ C:\Windows\system32\config\BCD000000
2021-09-13 14:15 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-09-13 14:09 - 2020-12-17 17:17 - 001775332 _____ C:\Windows\system32\PerfStringBackup.INI
2021-09-13 14:09 - 2019-12-07 16:50 - 000793038 _____ C:\Windows\system32\perfh00C.dat
2021-09-13 14:09 - 2019-12-07 16:50 - 000150702 _____ C:\Windows\system32\perfc00C.dat
2021-09-13 13:57 - 2020-12-17 17:34 - 000000000 ____D C:\Users\jessy\AppData\Local\CrashDumps
2021-09-13 13:27 - 2020-12-17 17:29 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-09-13 13:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-09-13 13:05 - 2020-12-17 18:10 - 000000000 ____D C:\Users\postgres
2021-09-13 13:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-13 13:04 - 2021-08-13 18:49 - 000000000 ____D C:\Program Files (x86)\TransMac
2021-09-13 13:04 - 2020-12-17 18:25 - 000000000 ____D C:\Users\jessy\AppData\Local\Battle.net
2021-09-13 13:04 - 2020-12-17 18:02 - 000000000 ____D C:\Program Files (x86)\uTorrent
2021-09-13 13:04 - 2020-12-17 17:15 - 000000000 ____D C:\Users\jessy
2021-09-13 13:00 - 2020-12-17 18:01 - 000000000 ____D C:\Users\jessy\AppData\Roaming\uTorrent
2021-09-13 12:59 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-09-13 12:52 - 2020-12-19 02:17 - 000000000 ____D C:\Program Files\Adobe
2021-09-13 12:43 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-09-13 11:41 - 2020-12-18 15:58 - 000000000 ____D C:\Users\jessy\AppData\Roaming\HearthstoneDeckTracker
2021-09-13 07:31 - 2020-12-17 18:25 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-09-12 19:42 - 2021-08-09 23:21 - 000000000 ____D C:\Users\jessy\AppData\Local\ElevatedDiagnostics
2021-09-12 19:35 - 2020-11-19 01:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-12 19:35 - 2020-11-19 01:47 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-12 18:42 - 2020-12-17 18:29 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2021-09-12 18:40 - 2020-12-17 17:39 - 000000000 ____D C:\Users\jessy\AppData\Local\D3DSCache
2021-09-12 18:34 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-09-12 18:28 - 2021-08-08 10:37 - 000000000 ____D C:\Users\jessy\AppData\Roaming\logioptionsplus
2021-09-12 18:28 - 2020-11-19 01:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-09-12 18:26 - 2021-08-08 10:37 - 000000000 ____D C:\ProgramData\LogiOptionsPlus
2021-09-12 18:25 - 2020-12-17 17:11 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-12 15:06 - 2020-12-30 17:36 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-09-12 15:06 - 2020-12-30 17:36 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-09 16:31 - 2020-12-19 02:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-09-07 07:30 - 2020-12-18 15:58 - 000002505 _____ C:\Users\jessy\Desktop\Hearthstone Deck Tracker.lnk
2021-09-07 07:30 - 2020-12-18 15:58 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2021-09-07 07:30 - 2020-12-18 15:58 - 000000000 ____D C:\Users\jessy\AppData\Local\SquirrelTemp
2021-09-07 07:30 - 2020-12-18 15:58 - 000000000 ____D C:\Users\jessy\AppData\Local\HearthstoneDeckTracker
2021-09-02 02:55 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2021-09-02 02:55 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-09-01 00:50 - 2020-12-17 17:22 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-01 00:50 - 2020-12-17 17:22 - 000002164 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-08-31 18:29 - 2020-12-17 19:26 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-29 23:12 - 2021-07-28 11:12 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-08-27 17:45 - 2021-06-01 11:20 - 002163152 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-08-27 17:45 - 2021-06-01 11:20 - 000307648 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-08-27 17:45 - 2021-06-01 11:20 - 000213456 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-08-27 17:45 - 2021-06-01 11:20 - 000188856 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-08-27 17:45 - 2021-06-01 11:20 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-08-27 17:45 - 2021-06-01 11:20 - 000061904 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-08-27 09:51 - 2021-02-12 04:01 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-26 15:06 - 2021-02-22 17:52 - 000000087 _____ C:\Users\jessy\Desktop\facteure.txt
2021-08-23 18:11 - 2020-12-17 17:32 - 000000000 ____D C:\Users\jessy\AppData\Local\NVIDIA
2021-08-22 22:56 - 2020-12-30 03:07 - 000000000 ____D C:\Users\jessy\AppData\Roaming\vlc
2021-08-21 21:56 - 2020-12-23 12:27 - 000000000 ___HD C:\Users\jessy\Desktop\.tmp.drivedownload
2021-08-19 20:30 - 2020-12-19 02:19 - 000000000 ____D C:\Users\jessy\AppData\Roaming\Adobe
2021-08-19 15:28 - 2020-12-19 02:17 - 000000000 ____D C:\ProgramData\Adobe
2021-08-18 07:29 - 2020-11-19 01:46 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-18 07:29 - 2020-11-19 01:46 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-17 17:50 - 2020-12-23 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-08-17 01:22 - 2021-02-12 04:01 - 000740168 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2021-08-17 01:22 - 2021-02-12 04:01 - 000486728 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2021-08-16 09:54 - 2021-03-31 10:51 - 000000000 ____D C:\Users\jessy\AppData\Local\HearthSim
2021-08-16 08:59 - 2021-07-28 11:12 - 000002317 _____ C:\Users\jessy\Desktop\HearthArena Companion.lnk
2021-08-16 08:59 - 2021-07-28 11:09 - 000000000 ____D C:\Users\jessy\AppData\Local\Overwolf

==================== Fichiers à la racine de certains dossiers ========

2021-04-29 16:22 - 2021-04-29 16:22 - 000012288 _____ () C:\Users\jessy\AppData\Roaming\emp.bin
2020-12-19 02:07 - 2020-12-19 02:19 - 000000205 _____ () C:\Users\jessy\AppData\Local\oobelibMkey.log

==================== FLock ==============================

2021-09-13 14:15 C:\Windows\system32\config\SYSTEM
2021-09-13 13:05 C:\Windows\system32\Drivers\U168J2r.sys

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================