Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2020
Exécuté par Matéo (administrateur) sur DESKTOP-D4CA2KK (06-11-2020 10:39:15)
Exécuté depuis D:\Dossiers\Bureau
Profils chargés: Matéo
Platform: Windows 10 Home Version 1903 18362.476 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TranslucentTB.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Focusrite Audio Engineering, Ltd.) [Fichier non signé] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-27] (Focusrite Audio Engineering, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [Discord] => C:\Users\Matéo\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\MountPoints2: {843b386d-0224-11eb-b97a-e0d55e73b212} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\MountPoints2: {db8209af-1b58-11e9-b777-e0d55e73b212} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.183\Installer\chrmstp.exe [2020-11-04] (Google LLC -> Google LLC)
InternetURL: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CFkVzElcic.url -> URL: "C:\Users\Matéo\AppData\Roaming\fftwWUJayW\tUYua.vbs"
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2020-01-17]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2020-10-13]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUNDLL32.EXE.lnk [2020-11-05]
ShortcutAndArgument: RUNDLL32.EXE.lnk -> C:\Windows\System32\rundll32.exe => C:\PROGRA~3\215F9D~1.DLL,WyI57E2gBZAL
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TranslucentTB.exe [2017-06-05] () [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03AE7E4A-69C1-424F-B4FA-1B8CD335E2EA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {06DF64F8-16F1-4C89-A6E3-CF3116B6A68C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F0DCBCD-4B0F-4973-B2EF-0611FFBB29A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {3B2C6064-8B11-445D-AEAF-03EA16903D47} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-21] (Google LLC -> Google LLC)
Task: {3C016962-CDAF-47CD-8570-8FBD1170B29E} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-D4CA2KK-Matéo => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {66DB6077-CE5C-4C5F-A5BD-B28A3EF93094} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {67C6E48A-BB05-4C32-B140-7BC8FD74294C} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mgadea@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {683B64BA-22EA-418D-8603-998B82D6C0FB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {72395650-1663-4464-89BB-33D67EBDFFC8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8BCC8308-A174-4021-B3E4-B39212299329} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-21] (Google LLC -> Google LLC)
Task: {940FEAF8-2AB4-422E-A9D8-8B74E9A9E691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B90F993A-A16A-49E9-AF72-B769336E75C4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC329149-9370-4CFB-BDC7-7BD9A5E770DA} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {F4D5B0A6-C210-4DA5-A8F7-A9920C22960D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [667856 2020-10-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {F9597B15-D233-42EC-B5F1-D0C8118C6F36} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD50060E-CCEC-418D-A420-CD1A10E32F91} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ba0d4d13-4e5b-400e-bb66-85bafd783e4b}: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF DefaultProfile: x12v7q2m.default
FF ProfilePath: C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\x12v7q2m.default [2019-11-27]
FF ProfilePath: C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release [2020-11-06]
FF Extension: (English (US) Language Pack) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2020-10-30]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-09-17]
FF Extension: (wanteeed) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2020-10-29] [UpdateUrl:hxxps://app.wanteeed.com/extensions/update_firefox.json]
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> D:\Programmes\Java\bin\dtplugin\npDeployJava1.dll [2019-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> D:\Programmes\Java\bin\plugin2\npjp2.dll [2019-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7252656 2018-09-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [12002208 2019-12-16] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-05-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-07] (Huawei Technologies Co., Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7265328 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2522424 2020-10-26] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476288 2020-10-26] (Electronic Arts, Inc. -> Electronic Arts)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 aswbIDSAgent; "C:\Program Files\AVAST Software\Avast\aswidsagent.exe" [X]
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ffusb2audio; C:\WINDOWS\System32\drivers\ffusb2audio.sys [127280 2014-03-17] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Limited.)
S3 FocusriteUSB; C:\WINDOWS\System32\drivers\FocusriteUSB.sys [122088 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\WINDOWS\System32\drivers\FocusriteUSBSwRoot.sys [101512 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:\WINDOWS\system32\drivers\FocusriteUSBAudio.sys [63408 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_MIDI; C:\WINDOWS\system32\drivers\FocusriteUSBMidi.sys [50000 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217600 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2016-06-15] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ===================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-11-06 10:38 - 2020-11-06 10:39 - 000000000 ____D C:\FRST
2020-11-06 10:37 - 2020-11-06 10:37 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\IGDump
2020-11-06 10:31 - 2020-11-06 10:31 - 000000004 ____H C:\ProgramData\cm-lock
2020-11-05 14:32 - 2020-11-05 14:33 - 000000000 ____D C:\AdwCleaner
2020-11-05 11:59 - 2020-11-05 17:17 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\ZHP
2020-11-05 11:12 - 2020-11-05 11:12 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-11-05 11:12 - 2020-11-05 11:12 - 000002021 _____ C:\ProgramData\Bureau\Malwarebytes.lnk
2020-11-05 11:11 - 2020-11-05 11:11 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000217600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-11-05 11:11 - 2020-11-05 11:11 - 000000000 ____D C:\Program Files\Malwarebytes
2020-11-05 10:57 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\321nas5ywxu
2020-11-05 10:37 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\5gagy02i2la
2020-11-05 10:17 - 2020-11-05 11:29 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\funlimute
2020-11-05 10:16 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\yazqsoeekau
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ___HD C:\ProgramData\Windows Host
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\MasterPod
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\13nie1qhy5z
2020-11-04 18:07 - 2020-11-05 11:32 - 000000000 ____D C:\Program Files\Undelete360
2020-11-04 18:07 - 2020-11-05 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Undelete360
2020-11-04 18:07 - 2020-11-04 18:07 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\fftwWUJayW
2020-11-04 18:06 - 2020-11-05 11:26 - 000000000 ____D C:\Program Files (x86)\IUa
2020-11-04 18:06 - 2020-11-04 18:06 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\305e675d814c9f60.53194290_789
2020-11-04 11:10 - 2020-11-04 11:30 - 000012804 _____ C:\ProgramData\SoundToys_Problem_Log.txt
2020-11-04 11:06 - 2020-11-05 11:29 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\ToolSysHost
2020-10-30 17:18 - 2020-10-30 17:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-10-30 11:22 - 2020-10-31 14:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-10-26 15:32 - 2020-10-26 15:33 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2020-10-26 15:32 - 2020-10-26 15:32 - 000000000 ____D C:\ProgramData\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:36 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:30 - 000000000 ____D C:\Program Files\Blackmagic Design
2020-10-16 18:30 - 2020-10-16 18:30 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\BitTorrent
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\Users\Matéo\.Icecream Screen Recorder
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Screen Recorder
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\Program Files\Common Files\WebM Project
2020-10-14 19:21 - 2020-10-14 19:22 - 000000000 ____D C:\Program Files (x86)\Icecream Screen Recorder
2020-10-14 19:20 - 2020-10-14 19:20 - 000000000 ____D C:\Program Files\BraveSoftware
2020-10-14 19:19 - 2020-11-05 11:24 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2020-10-13 11:53 - 2020-10-13 11:53 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2020-10-13 11:53 - 2020-10-13 11:53 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\Rainmeter
2020-10-13 11:53 - 2020-10-13 11:53 - 000000000 ____D C:\Program Files\Rainmeter
2020-10-07 13:12 - 2020-10-07 13:12 - 000000995 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2020.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-11-06 10:37 - 2019-11-27 13:54 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\Mozilla
2020-11-06 10:37 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-06 10:34 - 2020-01-17 12:22 - 000000068 ___SH C:\WINDOWS\system32\Drivers\wmiacpi.winsecurity
2020-11-06 10:31 - 2020-01-17 12:24 - 000000068 ___SH C:\WINDOWS\system32\Drivers\WpdUpFltr.winsecurity
2020-11-06 10:31 - 2019-09-29 13:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-06 10:31 - 2018-09-16 09:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-11-05 22:30 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-05 22:29 - 2018-09-19 21:33 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\discord
2020-11-05 20:37 - 2018-09-16 13:28 - 000000000 ____D C:\ProgramData\Riot Games
2020-11-05 20:36 - 2019-09-29 13:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-05 16:54 - 2018-09-16 12:21 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Adobe
2020-11-05 15:59 - 2018-10-03 12:13 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\audacity
2020-11-05 14:48 - 2019-07-05 18:01 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-05 14:22 - 2020-03-16 10:30 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences
2020-11-05 14:22 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb
2020-11-05 14:22 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaDelay
2020-11-05 11:29 - 2020-03-16 10:28 - 000000000 ___HD C:\Program Files\qemu
2020-11-05 11:26 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-11-05 11:26 - 2019-03-10 22:30 - 000000000 ____D C:\ProgramData\SearchFilter
2020-11-05 11:11 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-05 10:32 - 2018-09-22 20:52 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\BitTorrent
2020-11-05 10:22 - 2020-02-22 22:50 - 000000096 _____ C:\WINDOWS\system32\perfdish001.dat
2020-11-04 21:17 - 2020-08-21 12:05 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-03 14:32 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaPlate
2020-11-02 17:57 - 2019-09-29 13:28 - 000000000 ____D C:\Users\Matéo
2020-11-02 15:24 - 2018-10-14 17:00 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\vlc
2020-11-01 15:33 - 2018-09-17 23:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-31 14:01 - 2019-11-27 13:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-30 17:18 - 2019-11-27 13:54 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-29 19:45 - 2020-05-15 18:10 - 000000000 ____D C:\Program Files (x86)\Origin
2020-10-29 16:47 - 2019-09-29 13:36 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3205537644-981548384-2538088701-1001
2020-10-29 16:47 - 2019-09-29 13:28 - 000002401 ____C C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-29 16:47 - 2018-09-16 12:22 - 000000000 ___RD C:\Users\Matéo\OneDrive
2020-10-25 20:14 - 2019-09-29 13:34 - 001779192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-25 20:14 - 2019-03-19 13:00 - 000794722 _____ C:\WINDOWS\system32\perfh00C.dat
2020-10-25 20:14 - 2019-03-19 13:00 - 000151024 _____ C:\WINDOWS\system32\perfc00C.dat
2020-10-15 09:10 - 2020-08-21 12:05 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-15 09:10 - 2020-08-21 12:05 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-08 20:21 - 2019-10-03 14:49 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
==================== Fichiers à la racine de certains dossiers ========
2020-01-06 16:36 - 2020-01-06 16:36 - 000000132 _____ () C:\Users\Matéo\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-07-29 19:55 - 2019-07-29 19:55 - 000001059 ____C () C:\Users\Matéo\AppData\Roaming\AdobeWLCMR2Cache.dat
2019-11-14 22:45 - 2020-02-05 00:34 - 000000002 _____ () C:\Users\Matéo\AppData\Roaming\ExplorerFavorites.txt
2018-09-25 10:18 - 2020-11-05 16:33 - 000001456 ____C () C:\Users\Matéo\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2020-07-17 18:04 - 2020-07-17 18:04 - 000007605 _____ () C:\Users\Matéo\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Matéo (administrateur) sur DESKTOP-D4CA2KK (06-11-2020 10:39:15)
Exécuté depuis D:\Dossiers\Bureau
Profils chargés: Matéo
Platform: Windows 10 Home Version 1903 18362.476 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TranslucentTB.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Focusrite Audio Engineering, Ltd.) [Fichier non signé] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-27] (Focusrite Audio Engineering, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [Discord] => C:\Users\Matéo\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\MountPoints2: {843b386d-0224-11eb-b97a-e0d55e73b212} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3205537644-981548384-2538088701-1001\...\MountPoints2: {db8209af-1b58-11e9-b777-e0d55e73b212} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.183\Installer\chrmstp.exe [2020-11-04] (Google LLC -> Google LLC)
InternetURL: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CFkVzElcic.url -> URL: "C:\Users\Matéo\AppData\Roaming\fftwWUJayW\tUYua.vbs"
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2020-01-17]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2020-10-13]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUNDLL32.EXE.lnk [2020-11-05]
ShortcutAndArgument: RUNDLL32.EXE.lnk -> C:\Windows\System32\rundll32.exe => C:\PROGRA~3\215F9D~1.DLL,WyI57E2gBZAL
Startup: C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TranslucentTB.exe [2017-06-05] () [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03AE7E4A-69C1-424F-B4FA-1B8CD335E2EA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {06DF64F8-16F1-4C89-A6E3-CF3116B6A68C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F0DCBCD-4B0F-4973-B2EF-0611FFBB29A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {3B2C6064-8B11-445D-AEAF-03EA16903D47} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-21] (Google LLC -> Google LLC)
Task: {3C016962-CDAF-47CD-8570-8FBD1170B29E} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-D4CA2KK-Matéo => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {66DB6077-CE5C-4C5F-A5BD-B28A3EF93094} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {67C6E48A-BB05-4C32-B140-7BC8FD74294C} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mgadea@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {683B64BA-22EA-418D-8603-998B82D6C0FB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {72395650-1663-4464-89BB-33D67EBDFFC8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8BCC8308-A174-4021-B3E4-B39212299329} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-21] (Google LLC -> Google LLC)
Task: {940FEAF8-2AB4-422E-A9D8-8B74E9A9E691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B90F993A-A16A-49E9-AF72-B769336E75C4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC329149-9370-4CFB-BDC7-7BD9A5E770DA} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {F4D5B0A6-C210-4DA5-A8F7-A9920C22960D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [667856 2020-10-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {F9597B15-D233-42EC-B5F1-D0C8118C6F36} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD50060E-CCEC-418D-A420-CD1A10E32F91} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ba0d4d13-4e5b-400e-bb66-85bafd783e4b}: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF DefaultProfile: x12v7q2m.default
FF ProfilePath: C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\x12v7q2m.default [2019-11-27]
FF ProfilePath: C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release [2020-11-06]
FF Extension: (English (US) Language Pack) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2020-10-30]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-09-17]
FF Extension: (wanteeed) - C:\Users\Matéo\AppData\Roaming\Mozilla\Firefox\Profiles\sa7xvqw7.default-release\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2020-10-29] [UpdateUrl:hxxps://app.wanteeed.com/extensions/update_firefox.json]
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> D:\Programmes\Java\bin\dtplugin\npDeployJava1.dll [2019-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> D:\Programmes\Java\bin\plugin2\npjp2.dll [2019-07-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7252656 2018-09-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [12002208 2019-12-16] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-05-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-07] (Huawei Technologies Co., Ltd. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7265328 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2522424 2020-10-26] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476288 2020-10-26] (Electronic Arts, Inc. -> Electronic Arts)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 aswbIDSAgent; "C:\Program Files\AVAST Software\Avast\aswidsagent.exe" [X]
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-10-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ffusb2audio; C:\WINDOWS\System32\drivers\ffusb2audio.sys [127280 2014-03-17] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Limited.)
S3 FocusriteUSB; C:\WINDOWS\System32\drivers\FocusriteUSB.sys [122088 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\WINDOWS\System32\drivers\FocusriteUSBSwRoot.sys [101512 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:\WINDOWS\system32\drivers\FocusriteUSBAudio.sys [63408 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_MIDI; C:\WINDOWS\system32\drivers\FocusriteUSBMidi.sys [50000 2019-06-27] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217600 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-05] (Malwarebytes Inc -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2016-06-15] (Splitmedialabs Limited -> SplitmediaLabs Limited)
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ===================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-11-06 10:38 - 2020-11-06 10:39 - 000000000 ____D C:\FRST
2020-11-06 10:37 - 2020-11-06 10:37 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\IGDump
2020-11-06 10:31 - 2020-11-06 10:31 - 000000004 ____H C:\ProgramData\cm-lock
2020-11-05 14:32 - 2020-11-05 14:33 - 000000000 ____D C:\AdwCleaner
2020-11-05 11:59 - 2020-11-05 17:17 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\ZHP
2020-11-05 11:12 - 2020-11-05 11:12 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-11-05 11:12 - 2020-11-05 11:12 - 000002021 _____ C:\ProgramData\Bureau\Malwarebytes.lnk
2020-11-05 11:11 - 2020-11-05 11:11 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000217600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-11-05 11:11 - 2020-11-05 11:11 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-11-05 11:11 - 2020-11-05 11:11 - 000000000 ____D C:\Program Files\Malwarebytes
2020-11-05 10:57 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\321nas5ywxu
2020-11-05 10:37 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\5gagy02i2la
2020-11-05 10:17 - 2020-11-05 11:29 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\funlimute
2020-11-05 10:16 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\yazqsoeekau
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ___HD C:\ProgramData\Windows Host
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\MasterPod
2020-11-04 18:07 - 2020-11-05 14:35 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\13nie1qhy5z
2020-11-04 18:07 - 2020-11-05 11:32 - 000000000 ____D C:\Program Files\Undelete360
2020-11-04 18:07 - 2020-11-05 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Undelete360
2020-11-04 18:07 - 2020-11-04 18:07 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\fftwWUJayW
2020-11-04 18:06 - 2020-11-05 11:26 - 000000000 ____D C:\Program Files (x86)\IUa
2020-11-04 18:06 - 2020-11-04 18:06 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\305e675d814c9f60.53194290_789
2020-11-04 11:10 - 2020-11-04 11:30 - 000012804 _____ C:\ProgramData\SoundToys_Problem_Log.txt
2020-11-04 11:06 - 2020-11-05 11:29 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\ToolSysHost
2020-10-30 17:18 - 2020-10-30 17:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-10-30 11:22 - 2020-10-31 14:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-10-26 15:32 - 2020-10-26 15:33 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2020-10-26 15:32 - 2020-10-26 15:32 - 000000000 ____D C:\ProgramData\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:36 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2020-10-26 15:30 - 2020-10-26 15:30 - 000000000 ____D C:\Program Files\Blackmagic Design
2020-10-16 18:30 - 2020-10-16 18:30 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\BitTorrent
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\Users\Matéo\.Icecream Screen Recorder
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Screen Recorder
2020-10-14 19:22 - 2020-10-14 19:22 - 000000000 ____D C:\Program Files\Common Files\WebM Project
2020-10-14 19:21 - 2020-10-14 19:22 - 000000000 ____D C:\Program Files (x86)\Icecream Screen Recorder
2020-10-14 19:20 - 2020-10-14 19:20 - 000000000 ____D C:\Program Files\BraveSoftware
2020-10-14 19:19 - 2020-11-05 11:24 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2020-10-13 11:53 - 2020-10-13 11:53 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2020-10-13 11:53 - 2020-10-13 11:53 - 000000000 ____D C:\Users\Matéo\AppData\Roaming\Rainmeter
2020-10-13 11:53 - 2020-10-13 11:53 - 000000000 ____D C:\Program Files\Rainmeter
2020-10-07 13:12 - 2020-10-07 13:12 - 000000995 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2020.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-11-06 10:37 - 2019-11-27 13:54 - 000000000 ___DC C:\Users\Matéo\AppData\LocalLow\Mozilla
2020-11-06 10:37 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-06 10:34 - 2020-01-17 12:22 - 000000068 ___SH C:\WINDOWS\system32\Drivers\wmiacpi.winsecurity
2020-11-06 10:31 - 2020-01-17 12:24 - 000000068 ___SH C:\WINDOWS\system32\Drivers\WpdUpFltr.winsecurity
2020-11-06 10:31 - 2019-09-29 13:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-06 10:31 - 2018-09-16 09:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-11-05 22:30 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-05 22:29 - 2018-09-19 21:33 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\discord
2020-11-05 20:37 - 2018-09-16 13:28 - 000000000 ____D C:\ProgramData\Riot Games
2020-11-05 20:36 - 2019-09-29 13:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-05 16:54 - 2018-09-16 12:21 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\Adobe
2020-11-05 15:59 - 2018-10-03 12:13 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\audacity
2020-11-05 14:48 - 2019-07-05 18:01 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-05 14:22 - 2020-03-16 10:30 - 000000000 ____D C:\ProgramData\ValhallaVintageVerbPreferences
2020-11-05 14:22 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaVintageVerb
2020-11-05 14:22 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaDelay
2020-11-05 11:29 - 2020-03-16 10:28 - 000000000 ___HD C:\Program Files\qemu
2020-11-05 11:26 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-11-05 11:26 - 2019-03-10 22:30 - 000000000 ____D C:\ProgramData\SearchFilter
2020-11-05 11:11 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-05 10:32 - 2018-09-22 20:52 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\BitTorrent
2020-11-05 10:22 - 2020-02-22 22:50 - 000000096 _____ C:\WINDOWS\system32\perfdish001.dat
2020-11-04 21:17 - 2020-08-21 12:05 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-03 14:32 - 2020-03-16 10:29 - 000000000 ____D C:\ProgramData\ValhallaPlate
2020-11-02 17:57 - 2019-09-29 13:28 - 000000000 ____D C:\Users\Matéo
2020-11-02 15:24 - 2018-10-14 17:00 - 000000000 ___DC C:\Users\Matéo\AppData\Roaming\vlc
2020-11-01 15:33 - 2018-09-17 23:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-31 14:01 - 2019-11-27 13:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-30 17:18 - 2019-11-27 13:54 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-29 19:45 - 2020-05-15 18:10 - 000000000 ____D C:\Program Files (x86)\Origin
2020-10-29 16:47 - 2019-09-29 13:36 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3205537644-981548384-2538088701-1001
2020-10-29 16:47 - 2019-09-29 13:28 - 000002401 ____C C:\Users\Matéo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-29 16:47 - 2018-09-16 12:22 - 000000000 ___RD C:\Users\Matéo\OneDrive
2020-10-25 20:14 - 2019-09-29 13:34 - 001779192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-25 20:14 - 2019-03-19 13:00 - 000794722 _____ C:\WINDOWS\system32\perfh00C.dat
2020-10-25 20:14 - 2019-03-19 13:00 - 000151024 _____ C:\WINDOWS\system32\perfc00C.dat
2020-10-15 09:10 - 2020-08-21 12:05 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-15 09:10 - 2020-08-21 12:05 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-08 20:21 - 2019-10-03 14:49 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
==================== Fichiers à la racine de certains dossiers ========
2020-01-06 16:36 - 2020-01-06 16:36 - 000000132 _____ () C:\Users\Matéo\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-07-29 19:55 - 2019-07-29 19:55 - 000001059 ____C () C:\Users\Matéo\AppData\Roaming\AdobeWLCMR2Cache.dat
2019-11-14 22:45 - 2020-02-05 00:34 - 000000002 _____ () C:\Users\Matéo\AppData\Roaming\ExplorerFavorites.txt
2018-09-25 10:18 - 2020-11-05 16:33 - 000001456 ____C () C:\Users\Matéo\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2020-07-17 18:04 - 2020-07-17 18:04 - 000007605 _____ () C:\Users\Matéo\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================