Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Exécuté par PC-Mathieu (administrateur) sur DESKTOP-VLMN3N1 (ASUS All Series) (11-01-2021 20:15:16)
Exécuté depuis D:\Désinfection
Profils chargés: PC-Mathieu
Platform: Windows 10 Home Version 1909 18363.1256 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(GOLD CLICK LIMITED -> Gold Click Ltd) C:\Program Files (x86)\ProxyGate\Cloud.exe
(GOLD CLICK LIMITED -> Gold Click Ltd) C:\Program Files (x86)\ProxyGate\PGChk.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) Software -> Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Intel(R) Software -> Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLTOPSOLID\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\rundll32.exe <3>
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Missler Software -> Missler Software) T:\Logiciel\TopSolid 7.13\bin\TopSolid.Pdm.ServerService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\Windscribe.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe
(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\wsappcontrol.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-08-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [Steam] => D:\Programes\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [Google Update] => C:\Users\PC-Mathieu\AppData\Local\Google\Update\1.3.36.52\GoogleUpdateCore.exe [219592 2021-01-06] (Google LLC -> Google LLC)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [Discord] => C:\Users\PC-Mathieu\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [9942704 2018-06-28] (Windscribe Limited -> Windscribe Limited)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [GoogleChromeAutoLaunch_C13BD11A28DFB1241FAEA8B904509C6D] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [bms106] => C:\Users\PC-Mathieu\AppData\Local\bms106.dll [15360 2020-05-20] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\PC-Mathieu\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\MountPoints2: {66765e66-39f0-11e8-9d42-7824af337227} - "H:\setup.exe"
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\MountPoints2: {66765e6a-39f0-11e8-9d42-7824af337227} - "I:\setup.exe"
HKU\S-1-5-21-1306406192-3035418394-1000966678-1001\...\MountPoints2: {d8f7909c-289a-11e8-9d3c-7824af337227} - "G:\setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP AF11 Status Monitor: C:\WINDOWS\system32\hpinkstsAF11LM.dll [329576 2012-04-02] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-11-21] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2021-01-06] (Google LLC -> Google LLC)
AppInit_DLLs: C:\ProgramData\AppmallosayoV\Konlax.dll => C:\ProgramData\AppmallosayoV\Konlax.dll [342528 2020-05-20] () [Fichier non signé]
AppInit_DLLs-x32: C:\ProgramData\AppmallosayoV\Viatone.dll => C:\ProgramData\AppmallosayoV\Viatone.dll [460800 2020-05-20] () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-01-06]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
Startup: C:\Users\PC-Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Moniteur de la technologie Intel® Turbo Boost 2.6.lnk [2016-08-05]
ShortcutTarget: Moniteur de la technologie Intel® Turbo Boost 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel(R) Software -> Intel® Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0569DBAC-CDC6-4C1F-887D-0E03930374BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0AA290C7-9421-4765-8669-F63C9AA152E1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0ED96CEF-D67F-4C94-B1B9-94CCA27F2BAE} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {174F59DA-BB30-4215-B86E-D843DF7728CB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001UA1d25d3553c963c5 => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-06-04] (Google Inc -> Google Inc.)
Task: {19B4EF77-4C6F-4C95-BD69-FD2FA3CD592B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-27] (Google Inc -> Google Inc.)
Task: {27908F2C-36B5-4817-93BF-4373E3E812E5} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [127176 2020-05-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {27C72ED2-B1AE-4C83-A57C-B0FC58DCE739} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {326FC50D-623B-4CAB-8B4A-FAF2D5D7F9D0} - System32\Tasks\FRAPS => C:\Program Files (x86)\fraps.exe [2671376 2015-09-05] (Beepa Pty Ltd -> Beepa P/L) [Fichier non signé] <==== ATTENTION
Task: {351BE6E1-A941-4C9B-98BB-DA833DDB0561} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {3E2D2F4E-032D-482A-84E5-7A2E066EBC04} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {4C397F8D-9C4D-4FD7-A507-E4ABDF971FF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E5682E6-B3B3-4C7C-9BC3-6B9DAF56F636} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {4EE30704-F4B7-4125-8D2B-7D630C4A1C7C} - System32\Tasks\Opera scheduled Autoupdate 1441484547 => C:\Program Files (x86)\Opera\launcher.exe
Task: {4F710C12-37D5-4345-8C4F-214E71404BE2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D31E96B-E790-4CC8-BAA7-4CB0C2DE848A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65F241F3-5F5E-4B3D-80E2-CC3BE281A2F7} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976 2017-07-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {6D0D5591-83B0-48AF-A820-F13EBE693183} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7269A0B2-6212-4966-A86E-7F0201111E66} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {73F1004E-6ED7-4DD8-A795-12BE5CB34091} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {766D2823-0623-4001-99B8-EF2F675FC863} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {782C97FC-BECE-49DA-9B31-078229376D8E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {83ED6182-8308-4879-9138-5BC92E6A30EB} - System32\Tasks\Selection Tools Update => C:\Users\PC-Mathieu\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe <==== ATTENTION
Task: {8A15CF7A-15AE-463A-88F2-C5B88B877673} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E77F564-A3B5-4F56-9B67-0C7D90C6E210} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1811B18-D7B1-419D-8976-5AB8A4D6B11C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001Core => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-06-04] (Google Inc -> Google Inc.)
Task: {AB5A92F1-C21F-4CC1-AD72-90A774C20226} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B5557793-901F-4BA7-A322-2AE82FC75808} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8F2B823-E0E9-4DD9-8BAA-3C5C669D28A3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D2C7E954-B433-4332-8DFF-32F3124B019C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001UA => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-06-04] (Google Inc -> Google Inc.)
Task: {D5BBC4A1-AFC9-47F9-AFFB-0D67AF4F0C1D} - System32\Tasks\WindApp Update => C:\Users\PC-Mathieu\AppData\Roaming\Store\WindApp\WindApp Update.exe <==== ATTENTION
Task: {D85C4C21-B5AF-451E-B4EF-92355F86C274} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-VLMN3N1-PC-Mathieu => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {DDBE5011-E4DE-4D82-8D61-9A0F2EDEC443} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDE8EB8C-B129-435D-8006-4FF47532B297} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001Core1d25d3553c556fd => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-06-04] (Google Inc -> Google Inc.)
Task: {E44115EF-7B5F-46A6-8E52-38C48514D459} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-27] (Google Inc -> Google Inc.)
Task: {E75787F4-0A63-456C-B2F4-FF7B27EE0F1B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {F1CDE8FB-8E21-4A90-943F-01A2E3272951} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001Core.job => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001UA.job => C:\Users\PC-Mathieu\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [S-1-5-19] => Proxy est activé.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
ProxyEnable: [S-1-5-20] => Proxy est activé.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-1306406192-3035418394-1000966678-1001] => 127.0.0.1:8080
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{9af7fa41-34db-4bf1-b4ef-d18fb7dcb5df}: [DhcpNameServer] 192.168.1.254

Edge:
======
DownloadDir: D:
Edge Profile: C:\Users\PC-Mathieu\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-12]

FireFox:
========
FF DefaultProfile: g505biu9.default
FF ProfilePath: C:\Users\PC-Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\upyuwsak.default-release [2020-09-26]
FF ProfilePath: C:\Users\PC-Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\g505biu9.default [2020-10-12]
FF Homepage: Mozilla\Firefox\Profiles\g505biu9.default -> file:///C:/ProgramData/AppmallosayoVs/ff.HP
FF NewTab: Mozilla\Firefox\Profiles\g505biu9.default -> file:///C:/ProgramData/AppmallosayoVs/ff.NT
FF Extension: (Cookies Export/import) - C:\Users\PC-Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\g505biu9.default\Extensions\CookiesIE@yahoo.com.xpi [2016-04-03] []
FF Extension: (Cookie Import/Export) - C:\Users\PC-Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\g505biu9.default\Extensions\jid1-sZ7aKDCe4A2prQ@jetpack.xpi [2016-04-03] []
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2017-07-10] (Adobe Systems Incorporated -> )
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2017-07-10] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default [2021-01-11]
CHR DownloadDir: D:\
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Google Traduction) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-21]
CHR Extension: (Slides) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-27]
CHR Extension: (Docs) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-27]
CHR Extension: (Google Drive) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-01]
CHR Extension: (YouTube) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-27]
CHR Extension: (GreenAddress) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgbimgjoijjemhdamicmljbncacfndmp [2018-05-27]
CHR Extension: (Gotaga Live Extension) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\dklegbbgmbppmbhkplakcehdgjgopell [2019-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-01-06]
CHR Extension: (wanteeed) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-01-07]
CHR Extension: (Sheets) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-07]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2021-01-07]
CHR Extension: (Bazz Search) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\inafjghmmkmiobijhbgkfekenbfbklhb [2020-05-20]
CHR Extension: (WhatFont) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2020-03-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-12]
CHR Extension: (Gmail) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-01]
CHR Extension: (Chrome Media Router) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-07]
CHR Profile: C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-05-20]
CHR Extension: (Slides) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-25]
CHR Extension: (Docs) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-25]
CHR Extension: (Google Drive) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-25]
CHR Extension: (YouTube) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-25]
CHR Extension: (Adobe Acrobat) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-28]
CHR Extension: (Sheets) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-02-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-25]
CHR Extension: (Gmail) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-28]
CHR Extension: (Chrome Media Router) - C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-28]
CHR Profile: C:\Users\PC-Mathieu\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 114A21A7; C:\ProgramData\114A21A7\84FC21FC.dll [1058816 2020-05-20] () [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976 2017-07-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2015-08-03] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-06-17] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [249104 2016-07-30] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MSSQL$SQLTOPSOLID; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLTOPSOLID\MSSQL\Binn\sqlservr.exe [372416 2016-06-18] (Microsoft Corporation -> Microsoft Corporation)
S2 pgt_svc; C:\Program Files (x86)\ProxyGate\MainService.exe [2285664 2017-02-22] (GOLD CLICK LIMITED -> Gold Click Ltd) <==== ATTENTION
S4 SQLAgent$SQLTOPSOLID; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLTOPSOLID\MSSQL\Binn\SQLAGENT.EXE [613056 2016-06-18] (Microsoft Corporation -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32648 2020-12-21] (SteelSeries ApS -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13103632 2020-09-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TopSolid'Local Pdm Server 7.13; T:\Logiciel\TopSolid 7.13\bin\TopSolid.Pdm.ServerService.exe [51536 2019-09-04] (Missler Software -> Missler Software)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [490672 2018-06-28] (Windscribe Limited -> Windscribe Limited)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe [120096 2018-01-16] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 Rockstar Service; "D:\Games\Launcher\RockstarService.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-08-03] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-21] (Microsoft Corporation) [Fichier non signé]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-10-09] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-07-20] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S4 RsFx0320; C:\WINDOWS\System32\DRIVERS\RsFx0320.sys [250048 2016-06-18] (Microsoft Corporation -> Microsoft Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2016-09-02] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Bruce James -> Scarlet.Crush Productions)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2017-04-21] (Windscribe Limited -> The OpenVPN Project)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [212552 2018-04-27] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2021-01-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

Erreur lors de la lecture du fichier: "C:\Users\PC-Mathieu\Desktop\Anti-Fed "
2021-01-11 20:14 - 2021-01-11 20:15 - 000000000 ____D C:\FRST
2021-01-10 21:46 - 2021-01-10 21:46 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll
2021-01-10 21:46 - 2021-01-10 21:46 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-01-10 21:46 - 2021-01-10 21:46 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-01-10 21:46 - 2021-01-10 21:46 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-01-10 21:46 - 2021-01-10 21:46 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2021-01-10 21:46 - 2021-01-10 21:46 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-01-10 21:46 - 2021-01-10 21:46 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-10 21:46 - 2021-01-10 21:46 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-10 21:45 - 2021-01-10 21:45 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-01-10 21:45 - 2021-01-10 21:45 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-01-10 20:52 - 2021-01-04 15:28 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-10 20:52 - 2021-01-04 15:28 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-01-10 20:52 - 2021-01-04 15:28 - 001454488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-01-10 20:52 - 2021-01-04 15:28 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-10 20:52 - 2021-01-04 15:28 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-01-10 20:52 - 2021-01-04 15:28 - 001193880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-01-10 20:52 - 2021-01-04 15:28 - 001094880 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-01-10 20:52 - 2021-01-04 15:28 - 001094880 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-01-10 20:52 - 2021-01-04 15:28 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-10 20:52 - 2021-01-04 15:28 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 002104216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 001589144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 001512856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 001165720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 000813976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 000680856 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 000673688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 000559000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-01-10 20:52 - 2021-01-04 15:26 - 000548248 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 008262552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 007393176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 004612504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 002731928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 001733016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446109.dll
2021-01-10 20:52 - 2021-01-04 15:25 - 001492376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446109.dll
2021-01-10 20:52 - 2020-12-31 15:03 - 000038640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2021-01-06 22:28 - 2021-01-06 22:28 - 000000000 ____D C:\Users\Public\Documents\Steam
2021-01-06 22:28 - 2021-01-06 22:28 - 000000000 ____D C:\ProgramData\Documents\Steam
2021-01-06 20:14 - 2021-01-06 20:14 - 000000853 _____ C:\Users\Public\Desktop\Call of Duty - Black Ops 2.lnk
2021-01-06 20:14 - 2021-01-06 20:14 - 000000853 _____ C:\Users\Public\Desktop\Black Ops 2 Zombies Offline.lnk
2021-01-06 20:14 - 2021-01-06 20:14 - 000000853 _____ C:\Users\Public\Desktop\Black Ops 2 Multiplayer Offline.lnk
2021-01-06 19:36 - 2021-01-06 19:42 - 000000000 ____D C:\Users\PC-Mathieu\AppData\Local\Plutonium

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-11 20:14 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-11 20:13 - 2019-11-21 21:09 - 001917728 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-11 20:13 - 2019-03-19 13:00 - 000791936 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-11 20:13 - 2019-03-19 13:00 - 000150004 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-11 20:09 - 2016-10-02 10:07 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-11 20:09 - 2015-11-01 13:18 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Local\Adobe
2021-01-10 22:33 - 2019-11-21 21:06 - 000004188 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E06C33BD-DF6D-4F00-83B3-540D64F1FBDB}
2021-01-10 21:47 - 2020-11-12 00:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-01-10 21:47 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-10 21:45 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-10 21:45 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-10 21:44 - 2016-09-04 18:31 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Roaming\discord
2021-01-10 21:42 - 2020-05-16 13:27 - 000000000 ____D C:\Users\PC-Mathieu\AppData\Roaming\DS4Windows
2021-01-10 21:42 - 2016-03-19 17:18 - 000000000 ____D C:\Program Files (x86)\Screenshots
2021-01-10 21:42 - 2016-03-19 17:18 - 000000000 ____D C:\Program Files (x86)\Movies
2021-01-10 21:41 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-10 21:41 - 2017-12-11 18:32 - 000000000 ___RD C:\Users\PC-Mathieu\3D Objects
2021-01-10 21:41 - 2015-08-03 13:22 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-10 21:40 - 2020-10-21 21:25 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-10 21:40 - 2020-05-20 18:24 - 000000000 __RHD C:\ProgramData\114A21A7
2021-01-10 21:40 - 2019-11-21 21:06 - 000003242 _____ C:\WINDOWS\system32\Tasks\FRAPS
2021-01-10 21:40 - 2019-11-21 21:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-10 21:40 - 2019-11-21 21:01 - 000000000 ____D C:\Users\PC-Mathieu
2021-01-10 21:40 - 2019-11-21 20:59 - 000514776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-10 21:39 - 2019-11-21 20:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-10 20:53 - 2020-09-22 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-10 20:53 - 2015-11-24 18:40 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Local\NVIDIA
2021-01-10 20:52 - 2019-08-29 17:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-10 20:47 - 2020-11-12 14:22 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-10 20:47 - 2020-09-27 08:54 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-07 11:30 - 2019-05-05 15:40 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Local\BitTorrentHelper
2021-01-07 11:30 - 2015-08-10 11:22 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Roaming\uTorrent
2021-01-07 11:22 - 2017-08-23 22:29 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\thriXXX
2021-01-07 11:19 - 2019-05-25 16:53 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Roaming\steelseries-engine-3-client
2021-01-06 22:32 - 2016-09-04 18:31 - 000002256 ____C C:\Users\PC-Mathieu\Desktop\Discord.lnk
2021-01-06 22:32 - 2016-09-04 18:31 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Local\Discord
2021-01-06 22:29 - 2018-05-27 20:02 - 000000000 ___DC C:\Users\PC-Mathieu\AppData\Local\D3DSCache
2021-01-06 22:28 - 2020-10-31 15:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2021-01-06 22:07 - 2019-11-21 21:06 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1306406192-3035418394-1000966678-1001
2021-01-06 22:07 - 2019-11-21 21:01 - 000002420 ____C C:\Users\PC-Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-06 22:07 - 2015-08-03 13:24 - 000000000 ___RD C:\Users\PC-Mathieu\OneDrive
2021-01-06 21:51 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-06 21:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-06 19:28 - 2020-05-20 18:22 - 000000000 ____D C:\Program Files (x86)\ProxyGate
2021-01-06 19:06 - 2018-02-22 13:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-01-06 19:03 - 2020-09-22 17:16 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2021-01-06 19:03 - 2019-11-21 21:06 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-01-06 19:03 - 2018-02-06 15:52 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-01-06 18:57 - 2020-11-12 14:22 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-06 18:57 - 2020-11-12 14:22 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-06 18:56 - 2019-11-21 21:06 - 000003892 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001UA1d25d3553c963c5
2021-01-06 18:56 - 2019-11-21 21:06 - 000003624 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1306406192-3035418394-1000966678-1001Core1d25d3553c556fd
2021-01-06 18:56 - 2019-11-21 21:06 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-06 18:56 - 2019-11-21 21:06 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-04 15:26 - 2019-10-04 16:53 - 000657816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-01-04 15:23 - 2019-10-04 16:51 - 007115280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-01-04 15:23 - 2019-10-04 16:51 - 006071032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-12-31 15:03 - 2019-10-04 16:53 - 001682376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-12-31 15:03 - 2019-10-04 16:53 - 000135592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-12-31 15:03 - 2019-10-04 16:32 - 000060966 _____ C:\WINDOWS\system32\nvinfo.pb
2020-12-31 10:48 - 2017-04-30 16:40 - 005623272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-12-31 10:48 - 2017-04-30 16:40 - 002637800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-12-31 10:48 - 2017-04-30 16:40 - 001760232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-12-31 10:48 - 2017-04-30 16:40 - 000992232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-12-31 10:48 - 2017-04-30 16:40 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-12-31 10:48 - 2017-04-30 16:40 - 000084456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-12-29 00:27 - 2017-04-30 16:40 - 009381947 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Fichiers à la racine de certains dossiers ========

2013-02-26 07:28 - 2013-02-26 07:28 - 000027762 _____ () C:\Program Files (x86)\changes.txt
2015-09-05 09:11 - 2015-09-05 09:11 - 002671376 _____ (Beepa P/L) C:\Program Files (x86)\fraps.exe
2015-09-05 09:05 - 2015-09-05 09:05 - 000255760 _____ (Beepa P/L) C:\Program Files (x86)\fraps32.dll
2015-09-05 09:11 - 2015-09-05 09:11 - 000102160 _____ (Beepa P/L) C:\Program Files (x86)\fraps64.dat
2015-09-05 09:05 - 2015-09-05 09:05 - 000215824 _____ (Beepa P/L) C:\Program Files (x86)\fraps64.dll
2015-09-05 09:09 - 2015-09-05 09:09 - 000174080 _____ (Beepa P/L) C:\Program Files (x86)\frapslcd.dll
2017-12-12 04:26 - 2017-12-12 04:26 - 122122830 _____ () C:\Program Files (x86)\openoffice1.cab
2017-12-12 04:24 - 2017-12-12 04:24 - 002314240 _____ () C:\Program Files (x86)\openoffice415.msi
2013-02-26 07:27 - 2013-02-26 07:27 - 000001894 _____ () C:\Program Files (x86)\README.HTM
2017-12-12 04:24 - 2017-12-12 04:24 - 000479232 _____ () C:\Program Files (x86)\setup.exe
2017-12-12 04:24 - 2017-12-12 04:24 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2016-02-24 17:48 - 2016-02-24 17:48 - 000036079 _____ (Beepa Pty Ltd) C:\Program Files (x86)\uninstall.exe
2015-09-05 21:17 - 2015-09-05 21:19 - 000001282 ____C () C:\Users\PC-Mathieu\AppData\Roaming\Bubble Dock.boostrap.log
2015-09-05 21:18 - 2015-09-05 21:19 - 000005743 ____C () C:\Users\PC-Mathieu\AppData\Roaming\Bubble Dock.installation.log
2020-05-20 18:23 - 2020-05-20 18:23 - 000952832 _____ () C:\Users\PC-Mathieu\AppData\Roaming\gtfrde.exe
2020-05-20 18:24 - 2020-05-20 18:24 - 000000571 _____ () C:\Users\PC-Mathieu\AppData\Roaming\rfttgfr.exe
2020-05-20 18:24 - 2020-05-20 18:24 - 000000571 _____ () C:\Users\PC-Mathieu\AppData\Roaming\rtgfrtbg.exe
2015-09-05 21:19 - 2015-09-05 21:19 - 000000078 ____C () C:\Users\PC-Mathieu\AppData\Roaming\Selection Tools.installation.log
2016-02-23 23:05 - 2016-02-23 23:05 - 000000036 ____C () C:\Users\PC-Mathieu\AppData\Roaming\SuYZkvrV.tmp
2020-05-20 18:24 - 2020-05-20 18:24 - 000000571 _____ () C:\Users\PC-Mathieu\AppData\Roaming\tgrfedcx.exe
2015-09-05 21:17 - 2015-09-05 21:17 - 000000097 ____C () C:\Users\PC-Mathieu\AppData\Roaming\WindApp.boostrap.log
2015-09-05 21:19 - 2015-09-05 21:19 - 000000078 ____C () C:\Users\PC-Mathieu\AppData\Roaming\WindApp.installation.log
2020-05-20 18:24 - 2020-05-20 18:24 - 000000571 _____ () C:\Users\PC-Mathieu\AppData\Roaming\yhtbgvrfc.exe
2020-05-20 18:23 - 2020-05-20 18:23 - 000952832 _____ () C:\Users\PC-Mathieu\AppData\Roaming\ytgrfvcd.exe
2020-05-20 18:22 - 2020-05-20 18:22 - 000004096 _____ () C:\Users\PC-Mathieu\AppData\Local\ad0482d7-c686-4267-8b7b-352cdf811081.exe
2020-05-20 18:22 - 2020-05-20 18:22 - 008592896 _____ () C:\Users\PC-Mathieu\AppData\Local\agent.dat
2020-05-20 18:22 - 2020-05-20 18:22 - 000045056 _____ () C:\Users\PC-Mathieu\AppData\Local\ApplicationHosting.dat
2020-05-20 18:23 - 2020-05-20 18:23 - 001895384 _____ () C:\Users\PC-Mathieu\AppData\Local\Biglab.bin
2020-05-20 18:22 - 2020-05-20 18:22 - 000015360 _____ () C:\Users\PC-Mathieu\AppData\Local\bms106.dll
2020-05-20 18:22 - 2020-05-20 18:22 - 000072576 _____ () C:\Users\PC-Mathieu\AppData\Local\Config.xml
2020-05-20 18:22 - 2020-05-20 18:22 - 000016848 _____ () C:\Users\PC-Mathieu\AppData\Local\InstallationConfiguration.xml
2020-05-20 18:22 - 2020-05-20 18:22 - 000142336 _____ () C:\Users\PC-Mathieu\AppData\Local\installer.dat
2020-05-20 18:22 - 2020-05-20 18:22 - 004517376 _____ () C:\Users\PC-Mathieu\AppData\Local\IsZamtone.exe
2020-05-20 18:22 - 2020-05-20 18:22 - 002178132 _____ () C:\Users\PC-Mathieu\AppData\Local\IsZamtone.tst
2020-05-20 18:22 - 2020-05-20 18:22 - 000126464 _____ () C:\Users\PC-Mathieu\AppData\Local\lobby.dat
2020-05-20 18:22 - 2020-05-20 18:22 - 000018432 _____ () C:\Users\PC-Mathieu\AppData\Local\Main.dat
2020-05-20 18:22 - 2020-05-20 18:22 - 000005568 _____ () C:\Users\PC-Mathieu\AppData\Local\md.xml
2020-05-20 18:22 - 2020-05-20 18:22 - 000126464 _____ () C:\Users\PC-Mathieu\AppData\Local\noah.dat
2020-05-20 18:22 - 2020-05-20 18:22 - 004517376 _____ () C:\Users\PC-Mathieu\AppData\Local\Toucheco.exe
2020-05-20 18:22 - 2020-05-20 18:22 - 000068558 _____ () C:\Users\PC-Mathieu\AppData\Local\Toucheco.tst
2017-03-23 10:41 - 2017-03-23 10:43 - 000000000 ____C () C:\Users\PC-Mathieu\AppData\Local\{0422707C-6B7C-4ECC-8C26-CA95DCA4A8F0}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================