Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par thelo (administrateur) sur DESKTOP-N135EHT (Gigabyte Technology Co., Ltd. X570 AORUS ELITE) (31-08-2022 14:37:37)
Exécuté depuis D:\Fichiers\Downloads
Profils chargés: thelo
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(0) [Fichier non signé] C:\Program Files\GloriousPCGamingRace\GMMK\GMMK Keyboard Editor.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GMS\SteamCmd\steamcmd.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> ColorPickerUI) C:\Program Files\PowerToys\modules\ColorPicker\ColorPickerUI.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\FancyZones\PowerToys.FancyZones.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\KeyboardManager\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> PowerToys.Awake) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22227.300.1508.3394_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.70\msedgewebview2.exe <12>
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\thelo\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atieclxx.exe
(explorer.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\62.0.2.0\crashpad_handler.exe <3>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <37>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\launcher\PowerLauncher.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé] C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (Peter Eduard Verbeek -> ) C:\Program Files\EqualizerAPO\config\Peace.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti. -> Simnet Ltd.) C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe
(explorer.exe ->) (Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\XMOS\XMOS_Audio_Driver\x64\XMOSUSBDACCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(GitHub, Inc.) [Fichier non signé] C:\Program Files (x86)\Glorious Core\Glorious Core.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé] C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(sihost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe [1345104 2021-09-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AgentConnectix64] => C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe [2677800 2020-07-17] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9842240 2022-07-13] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-08-29] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6317416 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410728 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files\GloriousPCGamingRace\GMMK\GMMK Keyboard Editor.exe [4043776 2022-01-21] (0) [Fichier non signé]
HKLM-x32\...\Run: [Glorious Core] => C:\Program Files (x86)\Glorious Core\Glorious Core.exe [93642752 2022-05-25] (GitHub, Inc.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6317416 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [EpicGamesLauncher] => D:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33264096 2021-08-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13911592 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24503920 2022-05-10] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [190280 2022-08-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Simple Sticky Notes] => C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe [913488 2021-11-14] (Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti. -> Simnet Ltd.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Discord] => C:\Users\thelo\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Spotify] => C:\Users\thelo\AppData\Roaming\Spotify\Spotify.exe [19687400 2022-05-15] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GoogleChromeAutoLaunch_4696AC0C1B67A8A5148F03AC57F13C3A] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2852640 2022-08-16] (Google LLC -> Google LLC)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [155544 2022-08-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\XMOS USB DAC Driver Control Panel Autostart.lnk [2022-07-04]
ShortcutTarget: XMOS USB DAC Driver Control Panel Autostart.lnk -> C:\Program Files\XMOS\XMOS_Audio_Driver\x64\XMOSUSBDACCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
Startup: C:\Users\thelo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Peace.lnk [2021-10-23]
ShortcutTarget: Peace.lnk -> C:\Program Files\EqualizerAPO\config\Peace.exe (Peter Eduard Verbeek -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {01387BCB-04A0-4027-8C27-6F07952C07E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-24] (Google LLC -> Google LLC)
Task: {0D8A20F5-F99D-41FD-93C9-C6EBF0FB7872} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {16FB3071-814A-481D-98B4-F1C31FDF35DD} - System32\Tasks\ViGEmBusUpdater1 => "powershell" -ExecutionPolicy Bypass C:\WINDOWS\core.ps1
Task: {24BA60D9-D854-4900-B495-68C20231C635} - System32\Tasks\PowerToys\Autorun for thelo => C:\Program Files\PowerToys\PowerToys.exe [1205640 2021-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {76AFBEEF-2446-4FFB-8A8C-DCD66F86FDD0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {91325DA0-375F-4729-9AA7-C9494F99FEE9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {C9415D0F-FF49-46EB-9D25-D98FA22858B6} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\Phase2 => C:\Users\thelo\AppData\Roaming\skype\service.exe [240788992 2020-10-16] (Microsoft) [Fichier non signé]
Task: {CA866E71-76E1-4934-BA67-6F25E46EA9C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-24] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D950ED5F-A586-4ABB-B9ED-190E991E85B1} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183232 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F5E65251-FAE6-4E0D-A53F-C58A405C58F4} - System32\Tasks\MSI Task Host - Detect_Monitor => "powershell" -ExecutionPolicy ByPass -WindowStyle Hidden C:\Users\thelo\AppData\Roaming\Winsoft\core.ps1
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.50.1
Tcpip\..\Interfaces\{2133fafe-fa70-4756-899f-276370263462}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4fd68adb-f1c7-4ed0-8a72-e20f2386965e}: [NameServer] 9.9.9.9,9.9.9.10
Tcpip\..\Interfaces\{4fd68adb-f1c7-4ed0-8a72-e20f2386965e}: [DhcpNameServer] 192.168.50.1
Tcpip\..\Interfaces\{80cd0aa3-0ea9-4f1c-a39b-50ebef067906}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b7b4c25c-672c-4fb4-9cfe-308298b876a5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-05]
Edge HomePage: Default -> hxxp://www.google.fr/
Edge Extension: (Pushbullet) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2021-05-25]
Edge Extension: (Augmented Steam) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dnhpnfgdlenaccegplpojghhmaamnnfp [2022-06-11]
Edge Extension: (Keepa - Amazon Price Tracker) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejefaeioamebhekmfaclajddbpnnobje [2022-03-18]
Edge Extension: (wanteeed) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-06-21]
Edge Extension: (Assistant de navigateur AdGuard) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbohpolgemkbfphodcfgnpjcmedcjhpn [2022-03-18]
Edge Extension: (HTTPS partout) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fchjpkplmbeeeaaogdbhjbgbknjobohb [2022-06-11]
Edge Extension: (Signets iCloud) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-06-11]
Edge Extension: (Bitwarden) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2022-06-21]
Edge Extension: (Reddit Enhancement Suite) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhgedjpndhblehblebhncfmkkpngiep [2022-03-18]
Edge Extension: (360 Viewer) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmglcbnpblebkmcllnfcgamdelbbekge [2022-04-12]
Edge Extension: (Aspect Ratio 21:9) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llplepgpoalnkeiofcdohpalgpccifbo [2020-11-15]
Edge Extension: (Twitch Now) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-07-12]
Edge Extension: (Remote Torrent Adder) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oabphaconndgibllomdcjbfdghcmenci [2021-11-13]
Chrome:
=======
CHR Profile: C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default [2022-08-31]
CHR DownloadDir: D:\Fichiers\Downloads
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://keepa.com; hxxps://ocsnext.ebay.fr; hxxps://twitter.com; hxxps://valveindex.ua.ms; hxxps://web.telegram.org; hxxps://www.galerieslafayette.com; hxxps://www.netflix.com
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Extension: (Gumbo : Compagnon Twitch) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aalmjfpohaedoddkobnibokclgeefamn [2022-08-25]
CHR Extension: (Just Black) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-10-19]
CHR Extension: (AdGuard AdBlocker) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-08-30]
CHR Extension: (trigger-translation) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2022-08-29]
CHR Extension: (Augmented Steam) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnhpnfgdlenaccegplpojghhmaamnnfp [2022-08-29]
CHR Extension: (wanteeed) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-07-14]
CHR Extension: (AirDroid) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2020-06-24]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2022-02-09]
CHR Extension: (Shazam : identifiez des morceaux depuis votre navigateur) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2022-07-11]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2022-04-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Bitwarden) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2022-08-11]
CHR Extension: (Remote Torrent Adder) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oabphaconndgibllomdcjbfdghcmenci [2021-10-17]
CHR HKLM\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]
CHR HKU\S-1-5-21-1834950749-1924284422-65540750-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [472424 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-01-08] (BattlEye Innovations e.K. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [422504 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [81512 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2022-02-08] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2288680 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7165480 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-08-24] (HP Inc. -> HP Inc.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [10877288 2022-07-13] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-08-29] (Malwarebytes Inc. -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [582232 2022-05-10] (Plex, Inc. -> Plex, Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300600 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [534440 2022-04-28] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6215960 2022-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [99896 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35360 2022-06-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-08-19] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66a9fa5d80327844\amdsafd.sys [113080 2022-06-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\amdkmdag.sys [94445064 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [75560 2022-07-16] (Broadcom Corporation -> Broadcom Corporation.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2022-08-30] (CPUID S.A.R.L.U. -> CPUID)
R3 duetbus; C:\WINDOWS\System32\drivers\duetbus.sys [32512 2019-03-25] (Duet, Inc. -> Duet, Inc.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 envirtahci; C:\WINDOWS\System32\drivers\envirtahci.sys [798448 2019-10-03] (Enmotus Inc. -> AMD)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [193888 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-06-24] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 GVCIDrv; C:\Program Files (x86)\GIGABYTE\RGBFusion\GVCIDrv64.sys [18432 2019-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2018-04-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193488 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-08-30] (Malwarebytes Inc. -> Malwarebytes)
R0 mrcbt; C:\WINDOWS\System32\drivers\mrcbt.sys [101032 2022-07-13] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R0 mrigflt; C:\WINDOWS\System32\drivers\mrigflt.sys [75160 2022-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 RODEConnect_VirtualAudio; C:\WINDOWS\System32\DriverStore\FileRepository\rodeconnectvad.inf_amd64_98367d8547a17141\rodeconnectvad.sys [82712 2021-03-01] (Freedman Electronics Pty Ltd -> Windows (R) Win 7 DDK provider)
R2 RtsUapx; C:\Windows\system32\drivers\RtsUapx.sys [29688 2022-02-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [444200 2019-10-25] (SIA Sonarworks -> Sonarworks)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2021-06-17] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
R3 usbip_vhci; C:\WINDOWS\System32\drivers\usbip_vhci.sys [45904 2019-09-03] (ASUSTOR Inc. -> )
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [41072 2020-10-02] (Virtual Desktop, Inc. -> Virtual Desktop)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2020-10-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [90112 2021-06-05] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 xmos_s_usbaudio; C:\WINDOWS\System32\drivers\xmos_s_usbaudio.sys [413240 2022-06-15] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 xmos_s_usbaudioks; C:\WINDOWS\System32\drivers\xmos_s_usbaudioks.sys [54840 2022-06-15] (Microsoft Windows Hardware Compatibility Publisher -> )
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-31 14:37 - 2022-08-31 14:37 - 000000000 ____D C:\FRST
2022-08-30 11:13 - 2022-08-30 11:13 - 000193488 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-08-30 11:13 - 2022-08-30 11:13 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-08-30 11:13 - 2022-08-30 11:13 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-08-30 11:10 - 2022-08-30 11:10 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-08-29 23:06 - 2022-08-29 23:06 - 000000000 ____D C:\Program Files (x86)\OneClickFirewall
2022-08-29 23:05 - 2022-08-29 23:05 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk
2022-08-29 21:58 - 2022-08-30 11:10 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-08-29 21:58 - 2022-08-29 23:07 - 000000000 ____D C:\Users\thelo\AppData\Local\mbam
2022-08-29 21:58 - 2022-08-29 21:58 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-08-29 21:58 - 2022-08-29 21:58 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-08-29 21:58 - 2022-08-29 21:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-08-29 21:58 - 2022-08-29 21:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-08-29 21:58 - 2022-08-29 21:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-08-29 21:58 - 2022-08-29 21:58 - 000000000 ____D C:\Program Files\Malwarebytes
2022-08-29 21:40 - 2022-08-29 21:40 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2022-08-29 21:40 - 2022-08-29 21:40 - 000002618 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2022-08-29 21:40 - 2022-08-29 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2022-08-29 21:40 - 2022-08-29 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2022-08-29 21:38 - 2022-08-25 11:12 - 001966112 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001966112 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001522720 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001522720 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 001447920 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001447920 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001159496 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001159496 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000792072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000669192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000594952 _____ C:\WINDOWS\system32\GameManager64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000529936 _____ C:\WINDOWS\system32\dgtrayicon.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000493064 _____ C:\WINDOWS\system32\EEURestart.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000351752 _____ C:\WINDOWS\system32\clinfo.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000197128 _____ C:\WINDOWS\system32\mantle64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000176648 _____ C:\WINDOWS\system32\mantleaxl64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000154120 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000138248 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000042016 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000038920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000034688 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2022-08-29 21:38 - 2022-08-25 11:08 - 000174616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2022-08-29 21:38 - 2022-08-25 11:08 - 000137760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000257040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000217616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000161808 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2022-08-29 21:38 - 2022-08-25 11:03 - 000156576 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2022-08-29 21:38 - 2022-08-25 11:03 - 000126336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2022-08-29 21:38 - 2022-08-19 18:46 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2022-08-29 21:38 - 2022-08-19 18:46 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2022-08-29 21:38 - 2022-08-12 21:25 - 000054704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 075115040 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 001507352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000928784 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000526360 _____ C:\WINDOWS\system32\atieah64.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000463888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000395280 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000201032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000163936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000135200 _____ C:\WINDOWS\system32\atidxx64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000133136 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000109088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000109072 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000065560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2022-08-29 21:37 - 2022-08-25 11:06 - 091449864 _____ C:\WINDOWS\system32\amd_comgr.dll
2022-08-29 21:37 - 2022-08-25 11:05 - 000129040 _____ C:\WINDOWS\system32\amdxc64.dll
2022-08-29 21:37 - 2022-08-25 11:05 - 000104464 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000933920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000761888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000461832 _____ C:\WINDOWS\system32\amdlogum.exe
2022-08-29 21:37 - 2022-08-25 11:02 - 010558496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 001695960 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 001374792 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 000559120 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 000422928 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000553896 _____ C:\WINDOWS\system32\amdmiracast.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000166416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000156568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000140872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000126336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2022-08-29 21:37 - 2022-08-19 18:40 - 079816480 _____ C:\WINDOWS\system32\amdxc64.so
2022-08-29 21:37 - 2022-08-19 18:40 - 000576872 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2022-08-29 21:37 - 2022-08-19 18:40 - 000576872 _____ C:\WINDOWS\system32\atiapfxx.blb
2022-08-29 20:22 - 2022-07-31 14:33 - 000009750 _____ C:\WINDOWS\core.bin
2022-08-29 20:22 - 2022-07-31 14:24 - 000000667 _____ C:\WINDOWS\core.ps1
2022-08-29 15:42 - 2022-08-29 15:42 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\illusion__HoneySelect2
2022-08-29 07:14 - 2022-08-29 07:44 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Motrix
2022-08-29 07:14 - 2022-08-29 07:14 - 000000000 ____D C:\Users\thelo\AppData\Local\motrix-updater
2022-08-29 02:32 - 2022-08-29 02:32 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Luminar Neo
2022-08-29 02:24 - 2022-08-29 02:24 - 000000000 ____D C:\Users\thelo\AppData\Local\Sentry
2022-08-29 02:22 - 2022-08-29 02:22 - 000003774 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - Detect_Monitor
2022-08-29 02:22 - 2022-08-29 02:22 - 000003244 _____ C:\WINDOWS\system32\Tasks\ViGEmBusUpdater1
2022-08-29 02:22 - 2022-08-29 02:22 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Winsoft
2022-08-29 00:39 - 2022-08-29 00:40 - 000000000 ____D C:\Users\thelo\.docker
2022-08-29 00:35 - 2022-08-29 00:40 - 000000000 ____D C:\Program Files\Docker
2022-08-29 00:34 - 2022-08-29 00:40 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Docker
2022-08-29 00:34 - 2022-08-29 00:40 - 000000000 ____D C:\ProgramData\DockerDesktop
2022-08-29 00:34 - 2022-08-29 00:39 - 000000000 ____D C:\Users\thelo\AppData\Local\Docker
2022-08-28 02:11 - 2022-08-28 02:11 - 000000000 ____D C:\Users\thelo\.matplotlib
2022-08-28 02:07 - 2022-08-28 02:07 - 000000000 ____D C:\Users\thelo\AppData\Local\pip
2022-08-28 02:04 - 2022-08-28 02:07 - 000000000 ____D C:\Users\thelo\.conda
2022-08-27 09:56 - 2022-08-27 09:56 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\illusion__KoikatsuSunshine
2022-08-19 12:50 - 2022-08-19 12:50 - 000746432 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Device.dll
2022-08-19 12:50 - 2022-08-19 12:50 - 000077760 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Platform.dll
2022-08-19 12:29 - 2022-08-19 12:29 - 000043336 _____ (Advanced Micro Devices) C:\WINDOWS\system32\AMDRyzenMasterDriver.sys
2022-08-16 18:02 - 2022-08-16 18:01 - 015796096 _____ C:\Users\thelo\Desktop\calib Copy 1.ady
2022-08-09 23:16 - 2022-08-09 23:16 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-09 23:15 - 2022-08-09 23:15 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-09 23:14 - 2022-08-09 23:14 - 000000000 ___HD C:\$WinREAgent
2022-08-08 00:37 - 2022-08-08 00:37 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-08-07 23:44 - 2022-08-07 23:44 - 000002245 _____ C:\Users\Public\Desktop\Topaz Gigapixel AI.lnk
2022-08-07 23:44 - 2022-08-07 23:44 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2022-08-07 23:44 - 2022-08-07 23:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Gigapixel AI
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-31 14:37 - 2020-06-24 18:43 - 000000000 ____D C:\ProgramData\Mozilla
2022-08-31 14:36 - 2020-06-24 18:45 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\Mozilla
2022-08-31 14:31 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-31 14:31 - 2020-06-24 18:31 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-31 14:29 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Adguard
2022-08-31 14:26 - 2020-06-24 20:30 - 000000000 ____D C:\Program Files (x86)\Steam
2022-08-31 14:25 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-31 14:19 - 2020-09-12 18:32 - 000000000 ____D C:\Users\thelo\AppData\Roaming\discord
2022-08-31 14:18 - 2021-11-09 20:46 - 000000000 ____D C:\Users\thelo\AppData\Local\Discord
2022-08-31 14:09 - 2020-06-24 18:34 - 000000000 ____D C:\Program Files (x86)\Adguard
2022-08-31 12:26 - 2022-05-17 01:35 - 000000000 ____D C:\Users\thelo\AppData\Local\AMD_Common
2022-08-31 05:04 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-31 05:04 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-31 01:23 - 2020-09-16 13:44 - 000000000 ____D C:\Users\thelo\AppData\Roaming\TIDAL
2022-08-30 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-08-30 13:11 - 2021-01-21 00:43 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Hola
2022-08-30 13:11 - 2021-01-21 00:43 - 000000000 ____D C:\Users\thelo\AppData\Local\luminati
2022-08-30 11:20 - 2022-07-04 21:33 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-30 11:20 - 2021-06-05 20:15 - 000769848 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-30 11:20 - 2021-06-05 20:15 - 000148146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-30 11:20 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-08-30 11:14 - 2020-06-24 22:15 - 000000000 ____D C:\Users\thelo\AppData\Local\CrashDumps
2022-08-30 11:13 - 2022-07-04 21:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-30 11:13 - 2022-07-04 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2022-08-30 11:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-08-30 11:13 - 2020-06-25 00:23 - 000012288 ___SH C:\DumpStack.log.tmp
2022-08-30 11:12 - 2022-07-04 21:21 - 000000000 ____D C:\Users\thelo
2022-08-30 11:12 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-08-30 02:07 - 2020-07-25 13:56 - 000000000 ____D C:\Users\thelo\AppData\Roaming\qBittorrent
2022-08-30 01:26 - 2022-07-04 21:34 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 01:26 - 2022-07-04 21:34 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 00:22 - 2022-05-16 21:12 - 000000000 ____D C:\Users\thelo\AppData\Local\D3DSCache
2022-08-30 00:00 - 2020-06-24 23:14 - 000000000 ____D C:\Users\thelo\AppData\Roaming\vlc
2022-08-29 23:08 - 2020-08-15 18:10 - 000000000 ____D C:\Users\thelo\AppData\Local\Adobe
2022-08-29 23:05 - 2021-09-18 17:38 - 000000000 ___HD C:\adobeTemp
2022-08-29 23:05 - 2020-08-15 18:16 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-29 23:05 - 2020-08-15 18:10 - 000000000 ____D C:\ProgramData\Adobe
2022-08-29 23:05 - 2020-06-24 18:29 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Adobe
2022-08-29 23:04 - 2020-10-21 01:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-08-29 23:04 - 2020-08-15 18:19 - 000000000 ____D C:\Program Files\Adobe
2022-08-29 23:03 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-29 21:58 - 2021-06-05 14:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-29 21:42 - 2020-06-25 00:39 - 000000000 ____D C:\Users\thelo\AppData\Local\AMD
2022-08-29 21:41 - 2022-05-16 21:12 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-08-29 21:40 - 2022-07-04 21:34 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-08-29 21:40 - 2020-06-24 18:40 - 000000000 ____D C:\Program Files\AMD
2022-08-29 21:40 - 2020-06-24 18:29 - 000000000 ____D C:\Users\thelo\AppData\Local\Packages
2022-08-29 21:40 - 2020-06-24 18:28 - 000000000 ____D C:\ProgramData\Packages
2022-08-29 21:38 - 2022-07-04 20:13 - 000000000 ____D C:\AMD
2022-08-29 21:36 - 2022-07-04 21:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-29 17:08 - 2020-10-24 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Caves of Qud [GOG.com]
2022-08-29 07:59 - 2022-07-07 15:41 - 000000000 ____D C:\Program Files (x86)\Audeze
2022-08-29 07:59 - 2022-06-27 13:30 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2022-08-29 07:59 - 2022-02-02 15:54 - 000000000 ____D C:\Users\thelo\AppData\Local\Audeze
2022-08-29 07:59 - 2020-08-29 15:16 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Topaz Labs LLC
2022-08-29 07:59 - 2020-08-29 15:07 - 000000000 ____D C:\Users\thelo\AppData\Local\Topaz Labs LLC
2022-08-29 07:36 - 2020-07-14 09:43 - 000000360 _____ C:\Users\thelo\AppData\Local\arrowgene_launcher.settings
2022-08-29 07:32 - 2022-03-11 22:29 - 000000000 ____D C:\Users\thelo\AppData\Roaming\RenPy
2022-08-29 00:38 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2022-08-29 00:38 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-08-29 00:38 - 2020-06-24 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-08-29 00:38 - 2020-06-24 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-28 04:59 - 2021-03-27 12:16 - 000003139 _____ C:\ProgramData\GeorgeYohngVST.ini
2022-08-28 04:59 - 2020-09-21 23:54 - 000000000 ____D C:\Users\thelo\AppData\Roaming\foobar2000
2022-08-28 02:11 - 2020-08-29 15:04 - 000000000 ____D C:\Users\thelo\.cache
2022-08-26 07:51 - 2020-07-12 17:06 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-25 23:01 - 2021-06-12 16:07 - 000000000 ____D C:\Users\thelo\Documents\Simple Sticky Notes
2022-08-25 11:11 - 2022-07-04 20:00 - 000448520 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2022-08-25 11:11 - 2022-07-04 20:00 - 000034688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2022-08-25 11:07 - 2022-07-04 20:00 - 001979920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2022-08-25 11:07 - 2022-07-04 20:00 - 001507352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2022-08-25 11:03 - 2022-07-04 20:00 - 000222672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2022-08-25 11:03 - 2022-07-04 20:00 - 000177840 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2022-08-24 23:10 - 2020-07-14 09:59 - 000000000 ____D C:\Users\thelo\AppData\Local\ElevatedDiagnostics
2022-08-24 21:04 - 2022-07-04 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-24 21:04 - 2021-06-27 19:21 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-23 16:27 - 2021-07-20 17:07 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-08-20 11:01 - 2020-07-04 11:48 - 000000000 ____D C:\Users\thelo\AppData\Local\Plex Media Server
2022-08-19 19:04 - 2022-05-17 01:43 - 002977368 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2022-08-18 16:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-08-17 15:25 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard
2022-08-17 02:45 - 2022-07-04 21:34 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 02:45 - 2022-07-04 21:34 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 16:31 - 2022-07-06 14:47 - 000000000 ____D C:\Program Files (x86)\Razer
2022-08-11 22:33 - 2020-07-12 12:33 - 000000000 ____D C:\Program Files (x86)\Origin
2022-08-11 21:46 - 2021-11-09 20:46 - 000002227 _____ C:\Users\thelo\Desktop\Discord.lnk
2022-08-11 05:33 - 2022-07-06 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2022-08-11 05:31 - 2022-07-04 21:30 - 000908152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-11 05:30 - 2022-07-04 21:10 - 000000000 ____D C:\WINDOWS\HoloShell
2022-08-11 05:30 - 2021-06-05 20:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-09 23:20 - 2020-06-25 10:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-09 23:18 - 2020-06-25 10:52 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-09 23:15 - 2022-07-04 21:31 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-09 23:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-06 11:23 - 2020-06-24 20:31 - 000000000 ____D C:\Users\thelo\AppData\Local\Ubisoft Game Launcher
==================== Fichiers à la racine de certains dossiers ========
2021-08-01 07:44 - 2021-08-01 07:44 - 000000265 _____ () C:\ProgramData\fontcacheev1.dat
2020-07-14 09:43 - 2022-08-29 07:36 - 000047970 _____ () C:\Users\thelo\AppData\Local\arrowgene_launcher.log
2020-07-14 09:43 - 2022-08-29 07:36 - 000000360 _____ () C:\Users\thelo\AppData\Local\arrowgene_launcher.settings
2020-08-15 18:15 - 2021-09-18 17:08 - 000000615 _____ () C:\Users\thelo\AppData\Local\oobelibMkey.log
2022-07-12 21:25 - 2022-07-13 00:11 - 000000193 _____ () C:\Users\thelo\AppData\Local\Planlog_1.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par thelo (administrateur) sur DESKTOP-N135EHT (Gigabyte Technology Co., Ltd. X570 AORUS ELITE) (31-08-2022 14:37:37)
Exécuté depuis D:\Fichiers\Downloads
Profils chargés: thelo
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(0) [Fichier non signé] C:\Program Files\GloriousPCGamingRace\GMMK\GMMK Keyboard Editor.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GMS\SteamCmd\steamcmd.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> ColorPickerUI) C:\Program Files\PowerToys\modules\ColorPicker\ColorPickerUI.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\FancyZones\PowerToys.FancyZones.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\KeyboardManager\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> PowerToys.Awake) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.136.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22227.300.1508.3394_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.70\msedgewebview2.exe <12>
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\thelo\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atieclxx.exe
(explorer.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\62.0.2.0\crashpad_handler.exe <3>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <37>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\launcher\PowerLauncher.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé] C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (Peter Eduard Verbeek -> ) C:\Program Files\EqualizerAPO\config\Peace.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti. -> Simnet Ltd.) C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe
(explorer.exe ->) (Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\XMOS\XMOS_Audio_Driver\x64\XMOSUSBDACCpl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(GitHub, Inc.) [Fichier non signé] C:\Program Files (x86)\Glorious Core\Glorious Core.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé] C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(sihost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(svchost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.625.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe [1345104 2021-09-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AgentConnectix64] => C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe [2677800 2020-07-17] (Druide informatique inc. -> Druide informatique inc.)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9842240 2022-07-13] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-08-29] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6317416 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410728 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files\GloriousPCGamingRace\GMMK\GMMK Keyboard Editor.exe [4043776 2022-01-21] (0) [Fichier non signé]
HKLM-x32\...\Run: [Glorious Core] => C:\Program Files (x86)\Glorious Core\Glorious Core.exe [93642752 2022-05-25] (GitHub, Inc.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [6317416 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [EpicGamesLauncher] => D:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33264096 2021-08-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13911592 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24503920 2022-05-10] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [190280 2022-08-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Simple Sticky Notes] => C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe [913488 2021-11-14] (Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti. -> Simnet Ltd.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Discord] => C:\Users\thelo\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Spotify] => C:\Users\thelo\AppData\Roaming\Spotify\Spotify.exe [19687400 2022-05-15] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [GoogleChromeAutoLaunch_4696AC0C1B67A8A5148F03AC57F13C3A] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2852640 2022-08-16] (Google LLC -> Google LLC)
HKU\S-1-5-21-1834950749-1924284422-65540750-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [155544 2022-08-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\XMOS USB DAC Driver Control Panel Autostart.lnk [2022-07-04]
ShortcutTarget: XMOS USB DAC Driver Control Panel Autostart.lnk -> C:\Program Files\XMOS\XMOS_Audio_Driver\x64\XMOSUSBDACCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
Startup: C:\Users\thelo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Peace.lnk [2021-10-23]
ShortcutTarget: Peace.lnk -> C:\Program Files\EqualizerAPO\config\Peace.exe (Peter Eduard Verbeek -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {01387BCB-04A0-4027-8C27-6F07952C07E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-24] (Google LLC -> Google LLC)
Task: {0D8A20F5-F99D-41FD-93C9-C6EBF0FB7872} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {16FB3071-814A-481D-98B4-F1C31FDF35DD} - System32\Tasks\ViGEmBusUpdater1 => "powershell" -ExecutionPolicy Bypass C:\WINDOWS\core.ps1
Task: {24BA60D9-D854-4900-B495-68C20231C635} - System32\Tasks\PowerToys\Autorun for thelo => C:\Program Files\PowerToys\PowerToys.exe [1205640 2021-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {76AFBEEF-2446-4FFB-8A8C-DCD66F86FDD0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {91325DA0-375F-4729-9AA7-C9494F99FEE9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {C9415D0F-FF49-46EB-9D25-D98FA22858B6} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\Phase2 => C:\Users\thelo\AppData\Roaming\skype\service.exe [240788992 2020-10-16] (Microsoft) [Fichier non signé]
Task: {CA866E71-76E1-4934-BA67-6F25E46EA9C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-24] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D950ED5F-A586-4ABB-B9ED-190E991E85B1} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183232 2022-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F5E65251-FAE6-4E0D-A53F-C58A405C58F4} - System32\Tasks\MSI Task Host - Detect_Monitor => "powershell" -ExecutionPolicy ByPass -WindowStyle Hidden C:\Users\thelo\AppData\Roaming\Winsoft\core.ps1
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.50.1
Tcpip\..\Interfaces\{2133fafe-fa70-4756-899f-276370263462}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4fd68adb-f1c7-4ed0-8a72-e20f2386965e}: [NameServer] 9.9.9.9,9.9.9.10
Tcpip\..\Interfaces\{4fd68adb-f1c7-4ed0-8a72-e20f2386965e}: [DhcpNameServer] 192.168.50.1
Tcpip\..\Interfaces\{80cd0aa3-0ea9-4f1c-a39b-50ebef067906}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b7b4c25c-672c-4fb4-9cfe-308298b876a5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-05]
Edge HomePage: Default -> hxxp://www.google.fr/
Edge Extension: (Pushbullet) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2021-05-25]
Edge Extension: (Augmented Steam) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dnhpnfgdlenaccegplpojghhmaamnnfp [2022-06-11]
Edge Extension: (Keepa - Amazon Price Tracker) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejefaeioamebhekmfaclajddbpnnobje [2022-03-18]
Edge Extension: (wanteeed) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-06-21]
Edge Extension: (Assistant de navigateur AdGuard) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbohpolgemkbfphodcfgnpjcmedcjhpn [2022-03-18]
Edge Extension: (HTTPS partout) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fchjpkplmbeeeaaogdbhjbgbknjobohb [2022-06-11]
Edge Extension: (Signets iCloud) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-06-11]
Edge Extension: (Bitwarden) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2022-06-21]
Edge Extension: (Reddit Enhancement Suite) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhgedjpndhblehblebhncfmkkpngiep [2022-03-18]
Edge Extension: (360 Viewer) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmglcbnpblebkmcllnfcgamdelbbekge [2022-04-12]
Edge Extension: (Aspect Ratio 21:9) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llplepgpoalnkeiofcdohpalgpccifbo [2020-11-15]
Edge Extension: (Twitch Now) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-07-12]
Edge Extension: (Remote Torrent Adder) - C:\Users\thelo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oabphaconndgibllomdcjbfdghcmenci [2021-11-13]
Chrome:
=======
CHR Profile: C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default [2022-08-31]
CHR DownloadDir: D:\Fichiers\Downloads
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://keepa.com; hxxps://ocsnext.ebay.fr; hxxps://twitter.com; hxxps://valveindex.ua.ms; hxxps://web.telegram.org; hxxps://www.galerieslafayette.com; hxxps://www.netflix.com
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Extension: (Gumbo : Compagnon Twitch) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aalmjfpohaedoddkobnibokclgeefamn [2022-08-25]
CHR Extension: (Just Black) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-10-19]
CHR Extension: (AdGuard AdBlocker) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-08-30]
CHR Extension: (trigger-translation) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2022-08-29]
CHR Extension: (Augmented Steam) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnhpnfgdlenaccegplpojghhmaamnnfp [2022-08-29]
CHR Extension: (wanteeed) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-07-14]
CHR Extension: (AirDroid) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2020-06-24]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2022-02-09]
CHR Extension: (Shazam : identifiez des morceaux depuis votre navigateur) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2022-07-11]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2022-04-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Bitwarden) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2022-08-11]
CHR Extension: (Remote Torrent Adder) - C:\Users\thelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oabphaconndgibllomdcjbfdghcmenci [2021-10-17]
CHR HKLM\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]
CHR HKU\S-1-5-21-1834950749-1924284422-65540750-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [472424 2022-08-15] (Adguard Software Limited -> Adguard Software Ltd)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-01-08] (BattlEye Innovations e.K. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [422504 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [81512 2021-12-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2022-02-08] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2288680 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7165480 2022-04-03] (GOG Sp. z o.o. -> GOG.com)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-08-24] (HP Inc. -> HP Inc.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [10877288 2022-07-13] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-08-29] (Malwarebytes Inc. -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [582232 2022-05-10] (Plex, Inc. -> Plex, Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300600 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [534440 2022-04-28] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6215960 2022-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [99896 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35360 2022-06-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-08-19] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66a9fa5d80327844\amdsafd.sys [113080 2022-06-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0382768.inf_amd64_e7e6a9c747335e93\B382613\amdkmdag.sys [94445064 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [75560 2022-07-16] (Broadcom Corporation -> Broadcom Corporation.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2022-08-30] (CPUID S.A.R.L.U. -> CPUID)
R3 duetbus; C:\WINDOWS\System32\drivers\duetbus.sys [32512 2019-03-25] (Duet, Inc. -> Duet, Inc.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 envirtahci; C:\WINDOWS\System32\drivers\envirtahci.sys [798448 2019-10-03] (Enmotus Inc. -> AMD)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [193888 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-06-24] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 GVCIDrv; C:\Program Files (x86)\GIGABYTE\RGBFusion\GVCIDrv64.sys [18432 2019-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2018-04-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193488 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-08-30] (Malwarebytes Inc. -> Malwarebytes)
R0 mrcbt; C:\WINDOWS\System32\drivers\mrcbt.sys [101032 2022-07-13] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R0 mrigflt; C:\WINDOWS\System32\drivers\mrigflt.sys [75160 2022-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 RODEConnect_VirtualAudio; C:\WINDOWS\System32\DriverStore\FileRepository\rodeconnectvad.inf_amd64_98367d8547a17141\rodeconnectvad.sys [82712 2021-03-01] (Freedman Electronics Pty Ltd -> Windows (R) Win 7 DDK provider)
R2 RtsUapx; C:\Windows\system32\drivers\RtsUapx.sys [29688 2022-02-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [444200 2019-10-25] (SIA Sonarworks -> Sonarworks)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2021-06-17] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
R3 usbip_vhci; C:\WINDOWS\System32\drivers\usbip_vhci.sys [45904 2019-09-03] (ASUSTOR Inc. -> )
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [41072 2020-10-02] (Virtual Desktop, Inc. -> Virtual Desktop)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2020-10-02] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [90112 2021-06-05] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 xmos_s_usbaudio; C:\WINDOWS\System32\drivers\xmos_s_usbaudio.sys [413240 2022-06-15] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 xmos_s_usbaudioks; C:\WINDOWS\System32\drivers\xmos_s_usbaudioks.sys [54840 2022-06-15] (Microsoft Windows Hardware Compatibility Publisher -> )
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-31 14:37 - 2022-08-31 14:37 - 000000000 ____D C:\FRST
2022-08-30 11:13 - 2022-08-30 11:13 - 000193488 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-08-30 11:13 - 2022-08-30 11:13 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-08-30 11:13 - 2022-08-30 11:13 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-08-30 11:10 - 2022-08-30 11:10 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-08-29 23:06 - 2022-08-29 23:06 - 000000000 ____D C:\Program Files (x86)\OneClickFirewall
2022-08-29 23:05 - 2022-08-29 23:05 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk
2022-08-29 21:58 - 2022-08-30 11:10 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-08-29 21:58 - 2022-08-29 23:07 - 000000000 ____D C:\Users\thelo\AppData\Local\mbam
2022-08-29 21:58 - 2022-08-29 21:58 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-08-29 21:58 - 2022-08-29 21:58 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-08-29 21:58 - 2022-08-29 21:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-08-29 21:58 - 2022-08-29 21:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-08-29 21:58 - 2022-08-29 21:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-08-29 21:58 - 2022-08-29 21:58 - 000000000 ____D C:\Program Files\Malwarebytes
2022-08-29 21:40 - 2022-08-29 21:40 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2022-08-29 21:40 - 2022-08-29 21:40 - 000002618 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2022-08-29 21:40 - 2022-08-29 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2022-08-29 21:40 - 2022-08-29 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2022-08-29 21:38 - 2022-08-25 11:12 - 001966112 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001966112 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001522720 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-29 21:38 - 2022-08-25 11:12 - 001522720 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 001447920 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001447920 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001159496 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 001159496 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000792072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000669192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000594952 _____ C:\WINDOWS\system32\GameManager64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000529936 _____ C:\WINDOWS\system32\dgtrayicon.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000493064 _____ C:\WINDOWS\system32\EEURestart.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000351752 _____ C:\WINDOWS\system32\clinfo.exe
2022-08-29 21:38 - 2022-08-25 11:11 - 000197128 _____ C:\WINDOWS\system32\mantle64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000176648 _____ C:\WINDOWS\system32\mantleaxl64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000154120 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000138248 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000042016 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000038920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2022-08-29 21:38 - 2022-08-25 11:11 - 000034688 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2022-08-29 21:38 - 2022-08-25 11:08 - 000174616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2022-08-29 21:38 - 2022-08-25 11:08 - 000137760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000257040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000217616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2022-08-29 21:38 - 2022-08-25 11:07 - 000161808 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2022-08-29 21:38 - 2022-08-25 11:03 - 000156576 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2022-08-29 21:38 - 2022-08-25 11:03 - 000126336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2022-08-29 21:38 - 2022-08-19 18:46 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2022-08-29 21:38 - 2022-08-19 18:46 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2022-08-29 21:38 - 2022-08-12 21:25 - 000054704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 075115040 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 001507352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000928784 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000526360 _____ C:\WINDOWS\system32\atieah64.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000463888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000395280 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2022-08-29 21:37 - 2022-08-25 11:07 - 000201032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000163936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000135200 _____ C:\WINDOWS\system32\atidxx64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000133136 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000109088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000109072 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2022-08-29 21:37 - 2022-08-25 11:07 - 000065560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2022-08-29 21:37 - 2022-08-25 11:06 - 091449864 _____ C:\WINDOWS\system32\amd_comgr.dll
2022-08-29 21:37 - 2022-08-25 11:05 - 000129040 _____ C:\WINDOWS\system32\amdxc64.dll
2022-08-29 21:37 - 2022-08-25 11:05 - 000104464 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000933920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000761888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2022-08-29 21:37 - 2022-08-25 11:03 - 000461832 _____ C:\WINDOWS\system32\amdlogum.exe
2022-08-29 21:37 - 2022-08-25 11:02 - 010558496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 001695960 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 001374792 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 000559120 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2022-08-29 21:37 - 2022-08-25 11:02 - 000422928 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000553896 _____ C:\WINDOWS\system32\amdmiracast.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000166416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000156568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000140872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2022-08-29 21:37 - 2022-08-25 11:01 - 000126336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2022-08-29 21:37 - 2022-08-19 18:40 - 079816480 _____ C:\WINDOWS\system32\amdxc64.so
2022-08-29 21:37 - 2022-08-19 18:40 - 000576872 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2022-08-29 21:37 - 2022-08-19 18:40 - 000576872 _____ C:\WINDOWS\system32\atiapfxx.blb
2022-08-29 20:22 - 2022-07-31 14:33 - 000009750 _____ C:\WINDOWS\core.bin
2022-08-29 20:22 - 2022-07-31 14:24 - 000000667 _____ C:\WINDOWS\core.ps1
2022-08-29 15:42 - 2022-08-29 15:42 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\illusion__HoneySelect2
2022-08-29 07:14 - 2022-08-29 07:44 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Motrix
2022-08-29 07:14 - 2022-08-29 07:14 - 000000000 ____D C:\Users\thelo\AppData\Local\motrix-updater
2022-08-29 02:32 - 2022-08-29 02:32 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Luminar Neo
2022-08-29 02:24 - 2022-08-29 02:24 - 000000000 ____D C:\Users\thelo\AppData\Local\Sentry
2022-08-29 02:22 - 2022-08-29 02:22 - 000003774 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - Detect_Monitor
2022-08-29 02:22 - 2022-08-29 02:22 - 000003244 _____ C:\WINDOWS\system32\Tasks\ViGEmBusUpdater1
2022-08-29 02:22 - 2022-08-29 02:22 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Winsoft
2022-08-29 00:39 - 2022-08-29 00:40 - 000000000 ____D C:\Users\thelo\.docker
2022-08-29 00:35 - 2022-08-29 00:40 - 000000000 ____D C:\Program Files\Docker
2022-08-29 00:34 - 2022-08-29 00:40 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Docker
2022-08-29 00:34 - 2022-08-29 00:40 - 000000000 ____D C:\ProgramData\DockerDesktop
2022-08-29 00:34 - 2022-08-29 00:39 - 000000000 ____D C:\Users\thelo\AppData\Local\Docker
2022-08-28 02:11 - 2022-08-28 02:11 - 000000000 ____D C:\Users\thelo\.matplotlib
2022-08-28 02:07 - 2022-08-28 02:07 - 000000000 ____D C:\Users\thelo\AppData\Local\pip
2022-08-28 02:04 - 2022-08-28 02:07 - 000000000 ____D C:\Users\thelo\.conda
2022-08-27 09:56 - 2022-08-27 09:56 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\illusion__KoikatsuSunshine
2022-08-19 12:50 - 2022-08-19 12:50 - 000746432 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Device.dll
2022-08-19 12:50 - 2022-08-19 12:50 - 000077760 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Platform.dll
2022-08-19 12:29 - 2022-08-19 12:29 - 000043336 _____ (Advanced Micro Devices) C:\WINDOWS\system32\AMDRyzenMasterDriver.sys
2022-08-16 18:02 - 2022-08-16 18:01 - 015796096 _____ C:\Users\thelo\Desktop\calib Copy 1.ady
2022-08-09 23:16 - 2022-08-09 23:16 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-09 23:16 - 2022-08-09 23:16 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-09 23:15 - 2022-08-09 23:15 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-09 23:14 - 2022-08-09 23:14 - 000000000 ___HD C:\$WinREAgent
2022-08-08 00:37 - 2022-08-08 00:37 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-08-07 23:44 - 2022-08-07 23:44 - 000002245 _____ C:\Users\Public\Desktop\Topaz Gigapixel AI.lnk
2022-08-07 23:44 - 2022-08-07 23:44 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2022-08-07 23:44 - 2022-08-07 23:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Gigapixel AI
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-08-31 14:37 - 2020-06-24 18:43 - 000000000 ____D C:\ProgramData\Mozilla
2022-08-31 14:36 - 2020-06-24 18:45 - 000000000 ____D C:\Users\thelo\AppData\LocalLow\Mozilla
2022-08-31 14:31 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-31 14:31 - 2020-06-24 18:31 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-31 14:29 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Adguard
2022-08-31 14:26 - 2020-06-24 20:30 - 000000000 ____D C:\Program Files (x86)\Steam
2022-08-31 14:25 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-31 14:19 - 2020-09-12 18:32 - 000000000 ____D C:\Users\thelo\AppData\Roaming\discord
2022-08-31 14:18 - 2021-11-09 20:46 - 000000000 ____D C:\Users\thelo\AppData\Local\Discord
2022-08-31 14:09 - 2020-06-24 18:34 - 000000000 ____D C:\Program Files (x86)\Adguard
2022-08-31 12:26 - 2022-05-17 01:35 - 000000000 ____D C:\Users\thelo\AppData\Local\AMD_Common
2022-08-31 05:04 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-31 05:04 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-31 01:23 - 2020-09-16 13:44 - 000000000 ____D C:\Users\thelo\AppData\Roaming\TIDAL
2022-08-30 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-08-30 13:11 - 2021-01-21 00:43 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Hola
2022-08-30 13:11 - 2021-01-21 00:43 - 000000000 ____D C:\Users\thelo\AppData\Local\luminati
2022-08-30 11:20 - 2022-07-04 21:33 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-30 11:20 - 2021-06-05 20:15 - 000769848 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-30 11:20 - 2021-06-05 20:15 - 000148146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-30 11:20 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-08-30 11:14 - 2020-06-24 22:15 - 000000000 ____D C:\Users\thelo\AppData\Local\CrashDumps
2022-08-30 11:13 - 2022-07-04 21:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-30 11:13 - 2022-07-04 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2022-08-30 11:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-08-30 11:13 - 2020-06-25 00:23 - 000012288 ___SH C:\DumpStack.log.tmp
2022-08-30 11:12 - 2022-07-04 21:21 - 000000000 ____D C:\Users\thelo
2022-08-30 11:12 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-08-30 02:07 - 2020-07-25 13:56 - 000000000 ____D C:\Users\thelo\AppData\Roaming\qBittorrent
2022-08-30 01:26 - 2022-07-04 21:34 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 01:26 - 2022-07-04 21:34 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-30 00:22 - 2022-05-16 21:12 - 000000000 ____D C:\Users\thelo\AppData\Local\D3DSCache
2022-08-30 00:00 - 2020-06-24 23:14 - 000000000 ____D C:\Users\thelo\AppData\Roaming\vlc
2022-08-29 23:08 - 2020-08-15 18:10 - 000000000 ____D C:\Users\thelo\AppData\Local\Adobe
2022-08-29 23:05 - 2021-09-18 17:38 - 000000000 ___HD C:\adobeTemp
2022-08-29 23:05 - 2020-08-15 18:16 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-29 23:05 - 2020-08-15 18:10 - 000000000 ____D C:\ProgramData\Adobe
2022-08-29 23:05 - 2020-06-24 18:29 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Adobe
2022-08-29 23:04 - 2020-10-21 01:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-08-29 23:04 - 2020-08-15 18:19 - 000000000 ____D C:\Program Files\Adobe
2022-08-29 23:03 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-29 21:58 - 2021-06-05 14:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-29 21:42 - 2020-06-25 00:39 - 000000000 ____D C:\Users\thelo\AppData\Local\AMD
2022-08-29 21:41 - 2022-05-16 21:12 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-08-29 21:40 - 2022-07-04 21:34 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-08-29 21:40 - 2020-06-24 18:40 - 000000000 ____D C:\Program Files\AMD
2022-08-29 21:40 - 2020-06-24 18:29 - 000000000 ____D C:\Users\thelo\AppData\Local\Packages
2022-08-29 21:40 - 2020-06-24 18:28 - 000000000 ____D C:\ProgramData\Packages
2022-08-29 21:38 - 2022-07-04 20:13 - 000000000 ____D C:\AMD
2022-08-29 21:36 - 2022-07-04 21:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-29 17:08 - 2020-10-24 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Caves of Qud [GOG.com]
2022-08-29 07:59 - 2022-07-07 15:41 - 000000000 ____D C:\Program Files (x86)\Audeze
2022-08-29 07:59 - 2022-06-27 13:30 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2022-08-29 07:59 - 2022-02-02 15:54 - 000000000 ____D C:\Users\thelo\AppData\Local\Audeze
2022-08-29 07:59 - 2020-08-29 15:16 - 000000000 ____D C:\Users\thelo\AppData\Roaming\Topaz Labs LLC
2022-08-29 07:59 - 2020-08-29 15:07 - 000000000 ____D C:\Users\thelo\AppData\Local\Topaz Labs LLC
2022-08-29 07:36 - 2020-07-14 09:43 - 000000360 _____ C:\Users\thelo\AppData\Local\arrowgene_launcher.settings
2022-08-29 07:32 - 2022-03-11 22:29 - 000000000 ____D C:\Users\thelo\AppData\Roaming\RenPy
2022-08-29 00:38 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2022-08-29 00:38 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-08-29 00:38 - 2020-06-24 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-08-29 00:38 - 2020-06-24 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-28 04:59 - 2021-03-27 12:16 - 000003139 _____ C:\ProgramData\GeorgeYohngVST.ini
2022-08-28 04:59 - 2020-09-21 23:54 - 000000000 ____D C:\Users\thelo\AppData\Roaming\foobar2000
2022-08-28 02:11 - 2020-08-29 15:04 - 000000000 ____D C:\Users\thelo\.cache
2022-08-26 07:51 - 2020-07-12 17:06 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-25 23:01 - 2021-06-12 16:07 - 000000000 ____D C:\Users\thelo\Documents\Simple Sticky Notes
2022-08-25 11:11 - 2022-07-04 20:00 - 000448520 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2022-08-25 11:11 - 2022-07-04 20:00 - 000034688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2022-08-25 11:07 - 2022-07-04 20:00 - 001979920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2022-08-25 11:07 - 2022-07-04 20:00 - 001507352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2022-08-25 11:03 - 2022-07-04 20:00 - 000222672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2022-08-25 11:03 - 2022-07-04 20:00 - 000177840 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2022-08-24 23:10 - 2020-07-14 09:59 - 000000000 ____D C:\Users\thelo\AppData\Local\ElevatedDiagnostics
2022-08-24 21:04 - 2022-07-04 21:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-24 21:04 - 2021-06-27 19:21 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-23 16:27 - 2021-07-20 17:07 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-08-20 11:01 - 2020-07-04 11:48 - 000000000 ____D C:\Users\thelo\AppData\Local\Plex Media Server
2022-08-19 19:04 - 2022-05-17 01:43 - 002977368 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2022-08-18 16:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-08-17 15:25 - 2020-06-24 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard
2022-08-17 02:45 - 2022-07-04 21:34 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 02:45 - 2022-07-04 21:34 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 16:31 - 2022-07-06 14:47 - 000000000 ____D C:\Program Files (x86)\Razer
2022-08-11 22:33 - 2020-07-12 12:33 - 000000000 ____D C:\Program Files (x86)\Origin
2022-08-11 21:46 - 2021-11-09 20:46 - 000002227 _____ C:\Users\thelo\Desktop\Discord.lnk
2022-08-11 05:33 - 2022-07-06 14:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2022-08-11 05:31 - 2022-07-04 21:30 - 000908152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-11 05:30 - 2022-07-04 21:10 - 000000000 ____D C:\WINDOWS\HoloShell
2022-08-11 05:30 - 2021-06-05 20:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-08-11 05:30 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-09 23:20 - 2020-06-25 10:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-09 23:18 - 2020-06-25 10:52 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-09 23:15 - 2022-07-04 21:31 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-09 23:13 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-06 11:23 - 2020-06-24 20:31 - 000000000 ____D C:\Users\thelo\AppData\Local\Ubisoft Game Launcher
==================== Fichiers à la racine de certains dossiers ========
2021-08-01 07:44 - 2021-08-01 07:44 - 000000265 _____ () C:\ProgramData\fontcacheev1.dat
2020-07-14 09:43 - 2022-08-29 07:36 - 000047970 _____ () C:\Users\thelo\AppData\Local\arrowgene_launcher.log
2020-07-14 09:43 - 2022-08-29 07:36 - 000000360 _____ () C:\Users\thelo\AppData\Local\arrowgene_launcher.settings
2020-08-15 18:15 - 2021-09-18 17:08 - 000000615 _____ () C:\Users\thelo\AppData\Local\oobelibMkey.log
2022-07-12 21:25 - 2022-07-13 00:11 - 000000193 _____ () C:\Users\thelo\AppData\Local\Planlog_1.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================