Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Exécuté par 33782 (administrateur) sur DESKTOP-IQAOEK1 (Gigabyte Technology Co., Ltd. B450 AORUS ELITE) (30-12-2021 22:28:45)
Exécuté depuis C:\Users\33782\Desktop
Profils chargés: 33782
Plate-forme: Microsoft Windows 10 Professionnel Version 2004 19041.630 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) E:\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\10.1.0.3194\AdskLicensingService\AdskLicensingService.exe
(Bils) [Fichier non signé] E:\Telechargement\PC Equalizer Free\PCEqualizer.exe
(CELSYS, Inc. -> CELSYS,Inc.) C:\Program Files\CELSYS\CLIP STUDIO 1.5\CLIP STUDIO PAINT\CLIPStudioPaint.exe
(Dassault Systèmes SolidWorks Corporation) [Fichier non signé] E:\SolidWorks_Flexnet_Server\sw_d.exe
(Discord Inc. -> Discord Inc.) C:\Users\33782\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(F.lux Software LLC -> f.lux Software LLC) C:\Users\33782\AppData\Local\FluxSoftware\Flux\flux.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera Software LLC) E:\SolidWorks_Flexnet_Server\lmgrd.exe <2>
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\53.0.8.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Janea Systems, Inc. -> Microsoft Corp.) C:\Program Files\PowerToys\PowerToys.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Matthew Malensek) [Fichier non signé] C:\Program Files (x86)\3RVX\3RVX.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <17>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdlogsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28>
(MUSIC Tribe Brands DE GmbH -> ) C:\Program Files\BEHRINGER\UMC_Audio_Driver\W10_x64\UMCAudioCplApp.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Program Files\HuionTablet\HuionTabletCore.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.) C:\Program Files\HuionTablet\HuionTablet.exe
(Shenzhen Huion Animation Technology Co.,LTD -> TODO: <公司名>) C:\Program Files\HuionTablet\HuionServer.exe
(Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(Spotify AB -> Spotify Ltd) C:\Users\33782\AppData\Roaming\Spotify\Spotify.exe <6>
(Stardock Corporation -> Stardock Software, Inc) E:\SteamLibrary\steamapps\common\Groupy\GroupySrv.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2042424 2020-03-16] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Users\33782\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe [1077864 2020-01-02] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114379544 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [1532400 2021-08-05] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.)
HKLM-x32\...\Run: [PCEqualizer] => E:\Telechargement\PC Equalizer Free\PCEqualizer.exe [5722112 2021-09-08] (Bils) [Fichier non signé]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-06-10] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [f.lux] => C:\Users\33782\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-06-16] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49952424 2021-10-19] (Google LLC -> )
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Discord] => C:\Users\33782\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Spotify] => C:\Users\33782\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-10] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [3RVX] => C:\Program Files (x86)\3RVX\3RVX.exe [649216 2016-06-04] (Matthew Malensek) [Fichier non signé]
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
Startup: C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SKIM64.lnk [2020-07-04]
ShortcutTarget: SKIM64.lnk -> C:\Users\33782\Documents\My Mods\SpecialK\SKIM64.exe (Nothing, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Démarrage rapide.lnk [2020-12-18]
ShortcutTarget: SOLIDWORKS 2020 Démarrage rapide.lnk -> C:\Windows\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UMC Control Panel Autostart.lnk [2021-07-26]
ShortcutTarget: UMC Control Panel Autostart.lnk -> C:\Program Files\BEHRINGER\UMC_Audio_Driver\W10_x64\UMCAudioCplApp.exe (MUSIC Tribe Brands DE GmbH -> )
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0A602714-1AF8-468B-87F4-9F2FA3D605E8} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4188240 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {0DF8ADEA-3AF2-4225-A375-0DED506C7528} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {14F5A58F-E526-4862-A00C-53C70AE86882} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {24E15A88-E2AD-41A8-9F41-59715393AA03} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64936 2020-11-17] (Microsoft Corporation -> Microsoft)
Task: {396DF604-44C3-45E7-A2ED-BEB604D9D54B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-16] (Google LLC -> Google LLC)
Task: {3BF0B338-D00A-4408-A0AF-3353F7C05F12} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4253F7E5-E1E6-4459-9F27-C325F4CEEF08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6005ADB1-66BD-4434-8FF1-937CA1DF5193} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {66AC86B7-1601-4623-B295-436DB108C882} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A677D04-D4A7-452B-9381-41FC6CBFD9D2} - System32\Tasks\PowerToys\Autorun for 33782 => C:\Program Files\PowerToys\PowerToys.exe [636664 2019-09-05] (Janea Systems, Inc. -> Microsoft Corp.)
Task: {6D94680C-5FB7-4788-96D6-171E49C52889} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {7307DF3A-7D92-4EF7-B1C5-776A0C3459C3} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7B9572C9-67FE-426E-8F0A-EFE0DC8E54EB} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {9E37F05D-B987-4680-B83D-88D7F08BD7F9} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {B427DD62-45F2-46EC-A003-EE19948C79AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B72C1257-5DC6-4287-86EE-77F80C72AF5A} - System32\Tasks\maxto => C:\Users\33782\AppData\Local\MaxTo\MaxTo.Core.exe (Pas de fichier)
Task: {B9689BF9-E7EE-4AAC-9286-A35D11E22CFD} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BEB99559-9390-4576-9407-4664F6856DB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1106EF1-F2CD-461F-A58A-C04B3C3CB5E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DA8167FA-68E2-4F85-93A5-EA05D9EAE162} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E60CBD7F-C798-4D6E-94E3-3C3EF7C47E48} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-16] (Google LLC -> Google LLC)
Task: {EA09D0F6-D14B-4B3D-8A63-E262CC9BE120} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {EA2164EC-6EA8-43E5-A230-431624F59D5D} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {EBE61DC1-51DB-4EAD-B6F6-C68BD4953FC6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECE2974A-E830-4D16-89F9-17B1BA8125F5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{f0cce5d8-3fae-4d32-b780-0cbb186bc3a1}: [DhcpNameServer] 192.168.0.254
Edge:
=======
DownloadDir: C:\Users\33782\Downloads
Edge Session Restore: HKU\S-1-5-21-3231622360-308092171-4177214699-1001 -> est activé.
Edge DefaultProfile: Default
Edge Profile: C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-30]
Edge Session Restore: Default -> est activé.
Edge Extension: (Outlook) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-11-09]
Edge Extension: (Word) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-11-09]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\igbncjcgfkfnfgbaieiimpfkobabmkce [2021-12-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-12-22]
Edge Extension: (Excel) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-11-09]
Edge Extension: (PowerPoint) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-11-09]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: hyzlz0vn.default
FF ProfilePath: C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\hyzlz0vn.default [2021-03-16]
FF ProfilePath: C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664 [2021-12-30]
FF Session Restore: Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664 -> est activé.
FF Extension: (AdGuard AdBlocker) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\adguardadblocker@adguard.com.xpi [2021-12-17]
FF Extension: (Arc Dark Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-dark-theme@afnankhan.xpi [2021-06-05]
FF Extension: (Arc Darker Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-darker-theme@afnankhan.xpi [2020-08-30]
FF Extension: (Arc Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-theme@afnankhan.xpi [2020-08-30]
FF Extension: (Mind the Time) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack.xpi [2021-11-12]
FF Extension: (Duplicate Tabs Closer) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\jid0-RvYT2rGWfM8q5yWxIxAHYAeo5Qg@jetpack.xpi [2021-11-30]
FF Extension: (UltraWideo) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{2339288d-f701-45d0-a57f-a847e9adc6cc}.xpi [2021-12-22]
FF Extension: (One piece sobre) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{237275d5-26bc-48d2-8765-eefa1cbd3335}.xpi [2020-07-14]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-12-14]
FF Extension: (Nier Automata 2B-san) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{25f0511b-28e9-4e11-b426-73896d46f807}.xpi [2020-07-14]
FF Extension: (Search by Image) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2021-12-21]
FF Extension: (YouTube MP3 Converter Button Mp4 Downloader) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{31fa96a3-4287-41b8-a683-f268b5db9f2d}.xpi [2020-12-30]
FF Extension: (Universal Bypass) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{529b261b-df0b-4e3b-bf42-07b462da0ee8}.xpi [2021-07-27]
FF Extension: (Block Site) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{54e2eb33-18eb-46ad-a4e4-1329c29f6e17}.xpi [2021-07-12]
FF Extension: (musescore-downloader) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{69856097-6e10-42e9-acc7-0c063550c7b8}.xpi [2021-08-01]
FF Extension: (Nice Try Scribd) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{6bb1cd78-3b5f-427f-9902-68dff6f5cfc6}.xpi [2021-11-26]
FF Extension: (Haku Spirit) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{7cf288cd-0fdf-403d-9edb-46965b318f5b}.xpi [2020-07-14]
FF Extension: (Pas de nom) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{8b344d1d-265c-4d48-8418-0b522359bad2}.xpi [2021-12-28]
FF Extension: (DragonBall Z - Super Saiyans) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ac7820f0-b4a7-43da-8ec1-32fa214c7539}.xpi [2020-07-14]
FF Extension: (Matte Black (Violet)) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ad213ecb-ae95-4ac8-ac7a-5925ba36ea1d}.xpi [2020-12-18]
FF Extension: (Monster Hunter Minis) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{d457f7b8-bf71-4455-ad9f-da758edf601c}.xpi [2020-07-14]
FF Extension: (Animated Running Pikachu) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ddd11daa-966f-4dc2-a751-fac269e8fdf1}.xpi [2020-07-14]
FF Extension: (Ubuntu Yaru Dark Matte) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{eca5abdd-d8d6-4156-9515-b8e683703fba}.xpi [2020-07-14]
FF Extension: (Mew - Animated) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{edbb9137-67ac-4999-9523-23f91ac39f76}.xpi [2020-07-14]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> E:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> E:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\x86\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [820280 2020-03-16] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16930616 2019-12-18] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-12] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2021-01-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Groupy; E:\SteamLibrary\steamapps\common\Groupy\GroupySrv.exe [229776 2021-03-12] (Stardock Corporation -> Stardock Software, Inc)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10723232 2021-06-10] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2021-12-30] (Malwarebytes Inc -> Malwarebytes)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 Rockstar Service; E:\Launcher\RockstarService.exe [2017072 2021-11-29] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2020-06-11] () [Fichier non signé]
R2 SolidWorks Flexnet Server; E:\SolidWorks_Flexnet_Server\lmgrd.exe [1393128 2018-09-21] (Flexera Software LLC -> Flexera Software LLC)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2020-12-18] (SolidWorks) [Fichier non signé]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R2 Wallpaper Engine Service; E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [520288 2021-03-01] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-06-11] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3525; C:\Windows\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.)
S3 HIDMiniport; C:\Windows\System32\drivers\HIDMiniport.sys [8328 2018-03-15] (WDKTestCert jloeh,131644960104046060 -> Julian Löhr) [Fichier non signé]
S3 HIDWiimote; C:\Windows\System32\drivers\HIDWiimote.sys [38168 2018-03-15] (WDKTestCert jloeh,131644960104046060 -> Julian Löhr) [Fichier non signé]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-18] (Martin Malik - REALiX -> REALiX(tm))
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-06-10] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-17] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2021-12-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBAudioVMVAIOMME; C:\Windows\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-12-29] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-30 22:28 - 2021-12-30 22:29 - 000033318 _____ C:\Users\33782\Desktop\FRST.txt
2021-12-30 22:25 - 2021-12-30 22:25 - 002311168 _____ (Farbar) C:\Users\33782\Desktop\FRST64(1).exe
2021-12-30 21:48 - 2021-12-30 21:48 - 000000000 ___HD C:\$WinREAgent
2021-12-30 18:05 - 2021-12-30 18:05 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-12-29 23:12 - 2021-12-29 23:12 - 000071712 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vbaudio_vmvaio64_win10.sys
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Program Files\VB
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Program Files (x86)\VB
2021-12-22 22:27 - 2021-12-22 22:27 - 000000000 ____D C:\Users\33782\Desktop\EXAM
2021-12-20 17:20 - 2021-12-26 14:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-15 20:28 - 2021-12-15 20:28 - 000000000 ____D C:\Users\33782\Documents\Tomb Raider
2021-12-15 20:28 - 2021-12-15 20:28 - 000000000 ____D C:\Users\33782\AppData\Roaming\Crystal Dynamics
2021-12-13 21:04 - 2021-12-13 21:04 - 000000000 ____D C:\Users\33782\AppData\Roaming\3RVX
2021-12-13 21:00 - 2021-12-13 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3RVX
2021-12-13 21:00 - 2021-12-13 21:00 - 000000000 ____D C:\Program Files (x86)\3RVX
2021-12-13 20:55 - 2021-12-13 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2021-12-13 20:42 - 2021-12-13 20:42 - 000000000 ____D C:\Windows\ShellNew
2021-12-13 20:42 - 2021-12-13 20:42 - 000000000 ____D C:\Program Files\AutoHotkey
2021-12-13 20:30 - 2021-12-13 21:03 - 000000000 ____D C:\Users\33782\AppData\Local\BY916
2021-12-13 20:30 - 2021-12-13 20:30 - 000001902 _____ C:\Users\33782\Desktop\Newmen GM610.lnk
2021-12-13 20:30 - 2021-12-13 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newmen GM610
2021-12-13 20:30 - 2021-12-13 20:30 - 000000000 ____D C:\Program Files (x86)\Newmen GM610
2021-12-13 17:12 - 2021-12-13 17:12 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3231622360-308092171-4177214699-1001
2021-12-09 12:54 - 2021-12-09 12:54 - 000000743 _____ C:\Users\Public\Desktop\Adobe Animate 2022.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-30 22:29 - 2021-03-15 20:44 - 000000000 ____D C:\FRST
2021-12-30 22:22 - 2020-06-12 01:35 - 000000000 ____D C:\Users\33782\AppData\Roaming\discord
2021-12-30 22:21 - 2020-06-11 21:59 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-30 22:19 - 2020-06-16 16:43 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-30 22:04 - 2021-09-16 15:42 - 000000000 ____D C:\Users\33782\AppData\Local\Discord
2021-12-30 21:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-12-30 21:48 - 2020-06-11 21:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-12-30 20:55 - 2021-10-30 15:07 - 000000000 ____D C:\Users\33782\AppData\Roaming\Spotify
2021-12-30 19:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-30 19:25 - 2020-06-11 21:53 - 000000000 ____D C:\Windows\system32\AMD
2021-12-30 18:25 - 2020-06-11 15:34 - 000000000 ____D C:\Users\33782\AppData\Local\D3DSCache
2021-12-30 18:08 - 2020-06-11 15:29 - 001771354 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-30 18:08 - 2019-12-07 15:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat
2021-12-30 18:08 - 2019-12-07 15:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat
2021-12-30 18:08 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-30 18:06 - 2021-02-02 15:44 - 000000000 ____D C:\Users\33782\AppData\LocalLow\IGDump
2021-12-30 18:05 - 2021-07-30 07:20 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-12-30 18:05 - 2020-06-18 00:10 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-12-30 18:05 - 2020-06-11 15:36 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-30 18:04 - 2020-06-18 00:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-12-30 18:04 - 2020-06-18 00:09 - 000000000 ____D C:\Program Files\Malwarebytes
2021-12-30 18:04 - 2020-06-11 15:36 - 000000000 ____D C:\Users\33782\AppData\LocalLow\Mozilla
2021-12-30 18:03 - 2020-11-02 22:19 - 000000000 ____D C:\Users\33782\AppData\Local\CrashDumps
2021-12-30 18:02 - 2021-07-04 20:16 - 000003112 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-12-30 18:02 - 2020-06-11 23:16 - 000000000 ____D C:\Users\33782\AppData\Roaming\LGHUB
2021-12-30 18:02 - 2020-06-11 23:16 - 000000000 ____D C:\Users\33782\AppData\Local\LGHUB
2021-12-30 18:02 - 2020-06-11 21:53 - 000003126 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-12-30 18:01 - 2020-06-11 21:28 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-30 18:01 - 2020-06-11 21:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-30 18:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-12-30 18:01 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-12-30 15:16 - 2021-10-30 15:07 - 000000000 ____D C:\Users\33782\AppData\Local\Spotify
2021-12-29 19:36 - 2020-06-14 22:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-12-26 14:05 - 2020-06-11 15:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-24 10:28 - 2020-06-28 15:21 - 000000000 ____D C:\Users\33782\AppData\Roaming\vlc
2021-12-23 16:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-23 16:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-22 17:50 - 2021-10-16 20:20 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-12-22 17:50 - 2020-06-11 15:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-19 15:12 - 2021-03-07 20:21 - 000000000 ____D C:\Program Files\Microsoft Office
2021-12-18 22:35 - 2020-11-09 03:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-17 16:50 - 2020-06-11 15:34 - 000000000 ____D C:\Users\33782\AppData\Local\PlaceholderTileLogoFolder
2021-12-17 14:39 - 2020-06-19 10:11 - 000000000 ____D C:\Windows\system32\MRT
2021-12-17 14:37 - 2020-06-19 10:11 - 137938848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-12-17 14:07 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\SysWOW64\WCN
2021-12-17 14:07 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\system32\WCN
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-12-17 14:07 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-12-17 14:03 - 2021-11-19 19:42 - 000116200 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 002225640 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000333288 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000217536 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000197048 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000062952 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-12-17 14:03 - 2020-06-11 15:32 - 000000000 ____D C:\Users\33782\AppData\Local\Packages
2021-12-17 12:59 - 2020-06-14 22:32 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-12-16 18:54 - 2020-06-12 00:00 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-16 11:00 - 2020-06-11 21:28 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-13 17:12 - 2021-07-26 04:49 - 000002417 _____ C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-13 17:12 - 2020-06-11 15:34 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3231622360-308092171-4177214699-1001
2021-12-11 14:09 - 2020-06-11 23:51 - 000000000 ____D C:\Users\33782\Desktop\Dossiers
2021-12-11 11:14 - 2020-11-09 03:21 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 11:14 - 2020-11-09 03:21 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-09 13:05 - 2020-06-11 15:32 - 000000000 ____D C:\Users\33782\AppData\Roaming\Adobe
2021-12-09 13:04 - 2020-06-12 22:28 - 000000000 ____D C:\Users\33782\Documents\Adobe
2021-12-09 13:04 - 2020-06-12 22:26 - 000000000 ____D C:\Users\33782\AppData\Local\Adobe
==================== Fichiers à la racine de certains dossiers ========
2020-06-14 22:29 - 2020-06-14 22:29 - 000000410 _____ () C:\Users\33782\AppData\Local\oobelibMkey.log
2021-07-29 13:40 - 2021-07-29 13:40 - 000006730 _____ () C:\Users\33782\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================
Exécuté par 33782 (administrateur) sur DESKTOP-IQAOEK1 (Gigabyte Technology Co., Ltd. B450 AORUS ELITE) (30-12-2021 22:28:45)
Exécuté depuis C:\Users\33782\Desktop
Profils chargés: 33782
Plate-forme: Microsoft Windows 10 Professionnel Version 2004 19041.630 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) E:\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\10.1.0.3194\AdskLicensingService\AdskLicensingService.exe
(Bils) [Fichier non signé] E:\Telechargement\PC Equalizer Free\PCEqualizer.exe
(CELSYS, Inc. -> CELSYS,Inc.) C:\Program Files\CELSYS\CLIP STUDIO 1.5\CLIP STUDIO PAINT\CLIPStudioPaint.exe
(Dassault Systèmes SolidWorks Corporation) [Fichier non signé] E:\SolidWorks_Flexnet_Server\sw_d.exe
(Discord Inc. -> Discord Inc.) C:\Users\33782\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(F.lux Software LLC -> f.lux Software LLC) C:\Users\33782\AppData\Local\FluxSoftware\Flux\flux.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera Software LLC) E:\SolidWorks_Flexnet_Server\lmgrd.exe <2>
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\53.0.8.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Janea Systems, Inc. -> Microsoft Corp.) C:\Program Files\PowerToys\PowerToys.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Matthew Malensek) [Fichier non signé] C:\Program Files (x86)\3RVX\3RVX.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <17>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdlogsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28>
(MUSIC Tribe Brands DE GmbH -> ) C:\Program Files\BEHRINGER\UMC_Audio_Driver\W10_x64\UMCAudioCplApp.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Program Files\HuionTablet\HuionTabletCore.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.) C:\Program Files\HuionTablet\HuionTablet.exe
(Shenzhen Huion Animation Technology Co.,LTD -> TODO: <公司名>) C:\Program Files\HuionTablet\HuionServer.exe
(Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(Skutta, Kristjan -> ) E:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(Spotify AB -> Spotify Ltd) C:\Users\33782\AppData\Roaming\Spotify\Spotify.exe <6>
(Stardock Corporation -> Stardock Software, Inc) E:\SteamLibrary\steamapps\common\Groupy\GroupySrv.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2042424 2020-03-16] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Users\33782\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe [1077864 2020-01-02] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114379544 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [1532400 2021-08-05] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.)
HKLM-x32\...\Run: [PCEqualizer] => E:\Telechargement\PC Equalizer Free\PCEqualizer.exe [5722112 2021-09-08] (Bils) [Fichier non signé]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-06-10] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [f.lux] => C:\Users\33782\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-06-16] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49952424 2021-10-19] (Google LLC -> )
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Discord] => C:\Users\33782\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [Spotify] => C:\Users\33782\AppData\Roaming\Spotify\Spotify.exe [19065272 2021-12-10] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Run: [3RVX] => C:\Program Files (x86)\3RVX\3RVX.exe [649216 2016-06-04] (Matthew Malensek) [Fichier non signé]
HKU\S-1-5-21-3231622360-308092171-4177214699-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
Startup: C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SKIM64.lnk [2020-07-04]
ShortcutTarget: SKIM64.lnk -> C:\Users\33782\Documents\My Mods\SpecialK\SKIM64.exe (Nothing, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Démarrage rapide.lnk [2020-12-18]
ShortcutTarget: SOLIDWORKS 2020 Démarrage rapide.lnk -> C:\Windows\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UMC Control Panel Autostart.lnk [2021-07-26]
ShortcutTarget: UMC Control Panel Autostart.lnk -> C:\Program Files\BEHRINGER\UMC_Audio_Driver\W10_x64\UMCAudioCplApp.exe (MUSIC Tribe Brands DE GmbH -> )
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0A602714-1AF8-468B-87F4-9F2FA3D605E8} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4188240 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {0DF8ADEA-3AF2-4225-A375-0DED506C7528} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {14F5A58F-E526-4862-A00C-53C70AE86882} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {24E15A88-E2AD-41A8-9F41-59715393AA03} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64936 2020-11-17] (Microsoft Corporation -> Microsoft)
Task: {396DF604-44C3-45E7-A2ED-BEB604D9D54B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-16] (Google LLC -> Google LLC)
Task: {3BF0B338-D00A-4408-A0AF-3353F7C05F12} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4253F7E5-E1E6-4459-9F27-C325F4CEEF08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6005ADB1-66BD-4434-8FF1-937CA1DF5193} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {66AC86B7-1601-4623-B295-436DB108C882} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A677D04-D4A7-452B-9381-41FC6CBFD9D2} - System32\Tasks\PowerToys\Autorun for 33782 => C:\Program Files\PowerToys\PowerToys.exe [636664 2019-09-05] (Janea Systems, Inc. -> Microsoft Corp.)
Task: {6D94680C-5FB7-4788-96D6-171E49C52889} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {7307DF3A-7D92-4EF7-B1C5-776A0C3459C3} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7B9572C9-67FE-426E-8F0A-EFE0DC8E54EB} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {9E37F05D-B987-4680-B83D-88D7F08BD7F9} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {B427DD62-45F2-46EC-A003-EE19948C79AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B72C1257-5DC6-4287-86EE-77F80C72AF5A} - System32\Tasks\maxto => C:\Users\33782\AppData\Local\MaxTo\MaxTo.Core.exe (Pas de fichier)
Task: {B9689BF9-E7EE-4AAC-9286-A35D11E22CFD} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BEB99559-9390-4576-9407-4664F6856DB7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1106EF1-F2CD-461F-A58A-C04B3C3CB5E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DA8167FA-68E2-4F85-93A5-EA05D9EAE162} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E60CBD7F-C798-4D6E-94E3-3C3EF7C47E48} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-16] (Google LLC -> Google LLC)
Task: {EA09D0F6-D14B-4B3D-8A63-E262CC9BE120} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {EA2164EC-6EA8-43E5-A230-431624F59D5D} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1627648 2020-05-25] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {EBE61DC1-51DB-4EAD-B6F6-C68BD4953FC6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECE2974A-E830-4D16-89F9-17B1BA8125F5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{f0cce5d8-3fae-4d32-b780-0cbb186bc3a1}: [DhcpNameServer] 192.168.0.254
Edge:
=======
DownloadDir: C:\Users\33782\Downloads
Edge Session Restore: HKU\S-1-5-21-3231622360-308092171-4177214699-1001 -> est activé.
Edge DefaultProfile: Default
Edge Profile: C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-30]
Edge Session Restore: Default -> est activé.
Edge Extension: (Outlook) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-11-09]
Edge Extension: (Word) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-11-09]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\igbncjcgfkfnfgbaieiimpfkobabmkce [2021-12-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-12-22]
Edge Extension: (Excel) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-11-09]
Edge Extension: (PowerPoint) - C:\Users\33782\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-11-09]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: hyzlz0vn.default
FF ProfilePath: C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\hyzlz0vn.default [2021-03-16]
FF ProfilePath: C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664 [2021-12-30]
FF Session Restore: Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664 -> est activé.
FF Extension: (AdGuard AdBlocker) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\adguardadblocker@adguard.com.xpi [2021-12-17]
FF Extension: (Arc Dark Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-dark-theme@afnankhan.xpi [2021-06-05]
FF Extension: (Arc Darker Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-darker-theme@afnankhan.xpi [2020-08-30]
FF Extension: (Arc Theme) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\arc-theme@afnankhan.xpi [2020-08-30]
FF Extension: (Mind the Time) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\jid0-HYNmqxA9zQGfJADREri4n2AHKSI@jetpack.xpi [2021-11-12]
FF Extension: (Duplicate Tabs Closer) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\jid0-RvYT2rGWfM8q5yWxIxAHYAeo5Qg@jetpack.xpi [2021-11-30]
FF Extension: (UltraWideo) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{2339288d-f701-45d0-a57f-a847e9adc6cc}.xpi [2021-12-22]
FF Extension: (One piece sobre) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{237275d5-26bc-48d2-8765-eefa1cbd3335}.xpi [2020-07-14]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-12-14]
FF Extension: (Nier Automata 2B-san) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{25f0511b-28e9-4e11-b426-73896d46f807}.xpi [2020-07-14]
FF Extension: (Search by Image) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c}.xpi [2021-12-21]
FF Extension: (YouTube MP3 Converter Button Mp4 Downloader) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{31fa96a3-4287-41b8-a683-f268b5db9f2d}.xpi [2020-12-30]
FF Extension: (Universal Bypass) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{529b261b-df0b-4e3b-bf42-07b462da0ee8}.xpi [2021-07-27]
FF Extension: (Block Site) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{54e2eb33-18eb-46ad-a4e4-1329c29f6e17}.xpi [2021-07-12]
FF Extension: (musescore-downloader) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{69856097-6e10-42e9-acc7-0c063550c7b8}.xpi [2021-08-01]
FF Extension: (Nice Try Scribd) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{6bb1cd78-3b5f-427f-9902-68dff6f5cfc6}.xpi [2021-11-26]
FF Extension: (Haku Spirit) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{7cf288cd-0fdf-403d-9edb-46965b318f5b}.xpi [2020-07-14]
FF Extension: (Pas de nom) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{8b344d1d-265c-4d48-8418-0b522359bad2}.xpi [2021-12-28]
FF Extension: (DragonBall Z - Super Saiyans) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ac7820f0-b4a7-43da-8ec1-32fa214c7539}.xpi [2020-07-14]
FF Extension: (Matte Black (Violet)) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ad213ecb-ae95-4ac8-ac7a-5925ba36ea1d}.xpi [2020-12-18]
FF Extension: (Monster Hunter Minis) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{d457f7b8-bf71-4455-ad9f-da758edf601c}.xpi [2020-07-14]
FF Extension: (Animated Running Pikachu) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{ddd11daa-966f-4dc2-a751-fac269e8fdf1}.xpi [2020-07-14]
FF Extension: (Ubuntu Yaru Dark Matte) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{eca5abdd-d8d6-4156-9515-b8e683703fba}.xpi [2020-07-14]
FF Extension: (Mew - Animated) - C:\Users\33782\AppData\Roaming\Mozilla\Firefox\Profiles\8rx107sm.default-release-1593788799664\Extensions\{edbb9137-67ac-4999-9523-23f91ac39f76}.xpi [2020-07-14]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> E:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> E:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\x86\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [820280 2020-03-16] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16930616 2019-12-18] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-12] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2021-01-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Groupy; E:\SteamLibrary\steamapps\common\Groupy\GroupySrv.exe [229776 2021-03-12] (Stardock Corporation -> Stardock Software, Inc)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10723232 2021-06-10] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2021-12-30] (Malwarebytes Inc -> Malwarebytes)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 Rockstar Service; E:\Launcher\RockstarService.exe [2017072 2021-11-29] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2020-06-11] () [Fichier non signé]
R2 SolidWorks Flexnet Server; E:\SolidWorks_Flexnet_Server\lmgrd.exe [1393128 2018-09-21] (Flexera Software LLC -> Flexera Software LLC)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2020-12-18] (SolidWorks) [Fichier non signé]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R2 Wallpaper Engine Service; E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [520288 2021-03-01] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-06-11] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3525; C:\Windows\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.)
S3 HIDMiniport; C:\Windows\System32\drivers\HIDMiniport.sys [8328 2018-03-15] (WDKTestCert jloeh,131644960104046060 -> Julian Löhr) [Fichier non signé]
S3 HIDWiimote; C:\Windows\System32\drivers\HIDWiimote.sys [38168 2018-03-15] (WDKTestCert jloeh,131644960104046060 -> Julian Löhr) [Fichier non signé]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-18] (Martin Malik - REALiX -> REALiX(tm))
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-06-10] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-17] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-17] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2021-12-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBAudioVMVAIOMME; C:\Windows\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2021-12-29] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-30 22:28 - 2021-12-30 22:29 - 000033318 _____ C:\Users\33782\Desktop\FRST.txt
2021-12-30 22:25 - 2021-12-30 22:25 - 002311168 _____ (Farbar) C:\Users\33782\Desktop\FRST64(1).exe
2021-12-30 21:48 - 2021-12-30 21:48 - 000000000 ___HD C:\$WinREAgent
2021-12-30 18:05 - 2021-12-30 18:05 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-12-29 23:12 - 2021-12-29 23:12 - 000071712 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vbaudio_vmvaio64_win10.sys
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Program Files\VB
2021-12-29 23:12 - 2021-12-29 23:12 - 000000000 ____D C:\Program Files (x86)\VB
2021-12-22 22:27 - 2021-12-22 22:27 - 000000000 ____D C:\Users\33782\Desktop\EXAM
2021-12-20 17:20 - 2021-12-26 14:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-15 20:28 - 2021-12-15 20:28 - 000000000 ____D C:\Users\33782\Documents\Tomb Raider
2021-12-15 20:28 - 2021-12-15 20:28 - 000000000 ____D C:\Users\33782\AppData\Roaming\Crystal Dynamics
2021-12-13 21:04 - 2021-12-13 21:04 - 000000000 ____D C:\Users\33782\AppData\Roaming\3RVX
2021-12-13 21:00 - 2021-12-13 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3RVX
2021-12-13 21:00 - 2021-12-13 21:00 - 000000000 ____D C:\Program Files (x86)\3RVX
2021-12-13 20:55 - 2021-12-13 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2021-12-13 20:42 - 2021-12-13 20:42 - 000000000 ____D C:\Windows\ShellNew
2021-12-13 20:42 - 2021-12-13 20:42 - 000000000 ____D C:\Program Files\AutoHotkey
2021-12-13 20:30 - 2021-12-13 21:03 - 000000000 ____D C:\Users\33782\AppData\Local\BY916
2021-12-13 20:30 - 2021-12-13 20:30 - 000001902 _____ C:\Users\33782\Desktop\Newmen GM610.lnk
2021-12-13 20:30 - 2021-12-13 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newmen GM610
2021-12-13 20:30 - 2021-12-13 20:30 - 000000000 ____D C:\Program Files (x86)\Newmen GM610
2021-12-13 17:12 - 2021-12-13 17:12 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3231622360-308092171-4177214699-1001
2021-12-09 12:54 - 2021-12-09 12:54 - 000000743 _____ C:\Users\Public\Desktop\Adobe Animate 2022.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-30 22:29 - 2021-03-15 20:44 - 000000000 ____D C:\FRST
2021-12-30 22:22 - 2020-06-12 01:35 - 000000000 ____D C:\Users\33782\AppData\Roaming\discord
2021-12-30 22:21 - 2020-06-11 21:59 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-30 22:19 - 2020-06-16 16:43 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-30 22:04 - 2021-09-16 15:42 - 000000000 ____D C:\Users\33782\AppData\Local\Discord
2021-12-30 21:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-12-30 21:48 - 2020-06-11 21:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-12-30 20:55 - 2021-10-30 15:07 - 000000000 ____D C:\Users\33782\AppData\Roaming\Spotify
2021-12-30 19:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-30 19:25 - 2020-06-11 21:53 - 000000000 ____D C:\Windows\system32\AMD
2021-12-30 18:25 - 2020-06-11 15:34 - 000000000 ____D C:\Users\33782\AppData\Local\D3DSCache
2021-12-30 18:08 - 2020-06-11 15:29 - 001771354 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-30 18:08 - 2019-12-07 15:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat
2021-12-30 18:08 - 2019-12-07 15:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat
2021-12-30 18:08 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-30 18:06 - 2021-02-02 15:44 - 000000000 ____D C:\Users\33782\AppData\LocalLow\IGDump
2021-12-30 18:05 - 2021-07-30 07:20 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-12-30 18:05 - 2020-06-18 00:10 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-12-30 18:05 - 2020-06-11 15:36 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-30 18:04 - 2020-06-18 00:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-12-30 18:04 - 2020-06-18 00:09 - 000000000 ____D C:\Program Files\Malwarebytes
2021-12-30 18:04 - 2020-06-11 15:36 - 000000000 ____D C:\Users\33782\AppData\LocalLow\Mozilla
2021-12-30 18:03 - 2020-11-02 22:19 - 000000000 ____D C:\Users\33782\AppData\Local\CrashDumps
2021-12-30 18:02 - 2021-07-04 20:16 - 000003112 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-12-30 18:02 - 2020-06-11 23:16 - 000000000 ____D C:\Users\33782\AppData\Roaming\LGHUB
2021-12-30 18:02 - 2020-06-11 23:16 - 000000000 ____D C:\Users\33782\AppData\Local\LGHUB
2021-12-30 18:02 - 2020-06-11 21:53 - 000003126 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-12-30 18:01 - 2020-06-11 21:28 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-30 18:01 - 2020-06-11 21:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-30 18:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-12-30 18:01 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-12-30 15:16 - 2021-10-30 15:07 - 000000000 ____D C:\Users\33782\AppData\Local\Spotify
2021-12-29 19:36 - 2020-06-14 22:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-12-26 14:05 - 2020-06-11 15:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-24 10:28 - 2020-06-28 15:21 - 000000000 ____D C:\Users\33782\AppData\Roaming\vlc
2021-12-23 16:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-23 16:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-22 17:50 - 2021-10-16 20:20 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-12-22 17:50 - 2020-06-11 15:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-19 15:12 - 2021-03-07 20:21 - 000000000 ____D C:\Program Files\Microsoft Office
2021-12-18 22:35 - 2020-11-09 03:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-17 16:50 - 2020-06-11 15:34 - 000000000 ____D C:\Users\33782\AppData\Local\PlaceholderTileLogoFolder
2021-12-17 14:39 - 2020-06-19 10:11 - 000000000 ____D C:\Windows\system32\MRT
2021-12-17 14:37 - 2020-06-19 10:11 - 137938848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-17 14:07 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-12-17 14:07 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\SysWOW64\WCN
2021-12-17 14:07 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\system32\WCN
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-12-17 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-12-17 14:07 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-12-17 14:03 - 2021-11-19 19:42 - 000116200 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 002225640 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000333288 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000217536 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000197048 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-12-17 14:03 - 2020-10-10 15:57 - 000062952 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-12-17 14:03 - 2020-06-11 15:32 - 000000000 ____D C:\Users\33782\AppData\Local\Packages
2021-12-17 12:59 - 2020-06-14 22:32 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-12-16 18:54 - 2020-06-12 00:00 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-16 11:00 - 2020-06-11 21:28 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-13 17:12 - 2021-07-26 04:49 - 000002417 _____ C:\Users\33782\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-13 17:12 - 2020-06-11 15:34 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3231622360-308092171-4177214699-1001
2021-12-11 14:09 - 2020-06-11 23:51 - 000000000 ____D C:\Users\33782\Desktop\Dossiers
2021-12-11 11:14 - 2020-11-09 03:21 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 11:14 - 2020-11-09 03:21 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-09 13:05 - 2020-06-11 15:32 - 000000000 ____D C:\Users\33782\AppData\Roaming\Adobe
2021-12-09 13:04 - 2020-06-12 22:28 - 000000000 ____D C:\Users\33782\Documents\Adobe
2021-12-09 13:04 - 2020-06-12 22:26 - 000000000 ____D C:\Users\33782\AppData\Local\Adobe
==================== Fichiers à la racine de certains dossiers ========
2020-06-14 22:29 - 2020-06-14 22:29 - 000000410 _____ () C:\Users\33782\AppData\Local\oobelibMkey.log
2021-07-29 13:40 - 2021-07-29 13:40 - 000006730 _____ () C:\Users\33782\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================