Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2021 Exécuté par theow (administrateur) sur THEOPC (HUAWEI MACHC-WAX9) (14-06-2021 11:38:16) Exécuté depuis C:\Users\theow\OneDrive\Bureau Profils chargés: theow Platform: Windows 10 Home Version 20H2 19042.1052 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldProcMon.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\SLDWORKS.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe (Dassault Systèmes SolidWorks Corporation) [Fichier non signé] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\cef\swCefSubProc.exe (Discord Inc. -> Discord Inc.) C:\Users\theow\AppData\Local\Discord\app-1.0.9002\Discord.exe <6> (Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.8.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17> (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MateBookService.exe (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe (Huawei Technologies Co., Ltd. -> ) C:\Windows\System32\RPC\OSD\osdservice.exe (Huawei Technologies Co., Ltd.) C:\Program Files\WindowsApps\HuaweiPC.HuaweiKeyboardHotkeys_9.0.19.0_x64__amfdc1pkdnmaa\HotKey\OSD_Daemon.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\dptf_helper.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_69d915519e0a2ac8\aesm_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxext.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_68bcc6f9f228b6f0\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_68bcc6f9f228b6f0\IntelCpHeciSvc.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3cf4f6fdbcf7ab9d\Intel_PIE_Service.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\SessionService.exe (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhqi.inf_amd64_bdfdd19835fa86d6\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1126128 2020-07-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-06] (Adobe Inc. -> ) HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\Run: [Discord] => C:\Users\theow\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33223648 2021-06-09] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-06-14] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\Run: [Voicemod] => "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\MountPoints2: {3eaea289-a766-11eb-b224-60f262c68ee5} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-711823210-1418918789-249467907-1001\...\MountPoints2: {89c8b9dd-b226-11eb-b228-60f262c68ee5} - "E:\HiSuiteDownLoader.exe" HKLM\...\Windows x64\Print Processors\Canon MG6400 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBT.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6400 series: C:\Windows\system32\CNMLMBT.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.101\Installer\chrmstp.exe [2021-06-10] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Démarrage rapide.lnk [2021-05-11] ShortcutTarget: SOLIDWORKS 2020 Démarrage rapide.lnk -> C:\Windows\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {11A72391-2BA8-46BB-9914-292889313331} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {288F6E71-C9C6-42ED-845E-765DAF99AB2A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {30A241CA-BDD8-48B4-BC89-65EE3A6F99C3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {49A124F8-3B53-4793-9437-7627E3A58A84} - System32\Tasks\Opera scheduled Autoupdate 1605881437 => C:\Users\theow\AppData\Local\Programs\Opera\launcher.exe [2199760 2021-06-02] (Opera Software AS -> Opera Software) Task: {4C19F51E-28AF-4BD8-BF5E-21FD25B203B3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4C968E2A-BCF2-462E-96E6-A47F34ACF4B6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {523A207F-57C9-48F6-9213-7BB7E341AF12} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {575CEC71-AA51-42D8-8413-0FCB8D63F247} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {62CFA9E7-2210-42FC-8311-4A771BD5AB53} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5310392 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {650B3E71-4260-4236-97BD-B5C1B47037D4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {65CF0597-D521-4571-8955-5CA6B534FFB5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {6B84B7AE-929C-4265-A216-3E36BCF5E674} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {6F6963C6-DCDC-4364-8612-FC8D7F178448} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {7180E712-594F-4A38-BD45-3271F1EA28C5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-10] (Google LLC -> Google LLC) Task: {75FC43B2-7188-453E-B6FF-D8E9014DA388} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {77B56CD4-5A6E-4E97-8003-9AFDE47ACD6D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147296 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {78001693-D80A-4D95-81BF-AEE0BCD037BC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {96198DC5-4595-4D4A-81C2-79BECCC58F06} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A98A90A2-6C29-4BCE-ACB8-42936160A272} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK Task: {B17BDD0B-4DAB-4470-BA2B-E3C92D7C397B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C82662D7-1BB5-4F68-9F7A-855C516BED36} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-10] (Google LLC -> Google LLC) Task: {D10924B6-4FE5-4271-AA48-F07DD644BC3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DFAFC8FA-F081-4BDF-A9FE-59D89AB68BDD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5310392 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {E0EF1B9C-2530-4418-A23D-5BF9A52AD5B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147296 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) Task: {E97E48FD-06B0-4997-8730-354D5FF78FFC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F1F54F09-2FDD-4DC2-B0F3-EF3848440260} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b30816c3-fda5-4fac-bd13-678c0f3762c1}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\theow\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-01] Edge HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_ByKo5GOPu13rXwwrH5KEbXOupzQshEyf6ef-RemiD4GxQODesJtoOStC8LDuyZ4_Ep8U3u-ijQlWR-Hrw7J_JEJ6ESEBOwZolX30axwYjgEa2k6XmBXRtj_GWjvKbdqlRvtxqPT7RVvQQtiflPbsbukZ3I6ct Edge StartupUrls: Default -> "hxxps://www.google.fr/","hxxp://www.youtube.com/?gl=FR&hl=fr" Edge Session Restore: Default -> est activé. Edge Extension: (Session Buddy) - C:\Users\theow\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2020-07-18] Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\theow\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-04-03] Edge Extension: (uBlock Origin) - C:\Users\theow\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-04-03] Edge Extension: (Netflix Party is now Teleparty) - C:\Users\theow\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-04-03] FireFox: ======== FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~2\Bin\x86\NPCOMP~1.DLL [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default [2021-06-14] CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_ByKo5GOPu13rXwwrH5KEbXOupzQshEyf6ef-RemiD4GxQODesJtoOStC8LDuyZ4_Ep8U3u-ijQlWR-Hrw7J_JEJ6ESEBOwZolX30axwYjgEa2k6XmBXRtj_GWjvKbdqlRvtxqPT7RVvQQtiflPbsbukZ3I6ct CHR StartupUrls: Default -> "hxxps://www.google.fr/","hxxp://www.youtube.com/?gl=FR&hl=fr" CHR Session Restore: Default -> est activé. CHR Extension: (Slides) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-10] CHR Extension: (YouTube) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\agimnkijcaahngcdmfeangaknmldooml [2021-02-03] CHR Extension: (Theme Creator) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2021-01-10] CHR Extension: (Docs) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-10] CHR Extension: (Google Drive) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-10] CHR Extension: (YouTube) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-10] CHR Extension: (uBlock Origin) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-05-08] CHR Extension: (Session Buddy) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2021-01-10] CHR Extension: (ThemeBeta.com) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehminaganecepofhmcomhkmnnglkokd [2021-06-07] CHR Extension: (wanteeed) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2021-06-03] CHR Extension: (Sheets) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-10] CHR Extension: (Google Docs hors connexion) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-20] CHR Extension: (Volume Master - contrôleur de volume) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2021-01-10] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Netflix Party is now Teleparty) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-06-14] CHR Extension: (Gmail) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-10] CHR Extension: (Chrome Media Router) - C:\Users\theow\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-07] Opera: ======= OPR Profile: C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable [2021-06-10] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Translator) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2020-11-22] OPR Extension: (Session Buddy) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2020-11-22] OPR Extension: (Rich Hints Agent) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-10] OPR Extension: (Volume Master - contrôleur de volume) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2020-11-22] OPR Extension: (uBlock Origin) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2021-06-10] OPR Extension: (Installer des extensions Chrome) - C:\Users\theow\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-11-22] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056672 2021-06-09] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-18] (EasyAntiCheat Oy -> Epic Games, Inc) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [372200 2019-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 Huawei_OSDServer; C:\Windows\system32\RPC\OSD\osdservice.exe [217072 2019-08-16] (Huawei Technologies Co., Ltd. -> ) R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [25288 2021-03-12] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10723232 2021-06-14] (Logitech Inc -> Logitech, Inc.) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.) R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [1317064 2021-03-12] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675376 2021-03-29] (A-Volute SAS -> Nahimic) R2 SessionSvc; C:\WINDOWS\System32\drivers\SessionService.exe [35760 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2021-05-11] (SolidWorks) [Fichier non signé] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhqi.inf_amd64_bdfdd19835fa86d6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhqi.inf_amd64_bdfdd19835fa86d6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 IBtRstd; C:\WINDOWS\System32\drivers\ibtrstd.sys [52800 2019-12-13] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-06-14] (Logitech Inc -> Logitech) R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.) R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-05-18] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-05-18] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-05-18] (Logitech Inc -> Logitech) R3 MpKsl483aaa79; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FFB19580-D7ED-403A-8011-4050E648AABD}\MpKslDrv.sys [107744 2021-06-14] (Microsoft Windows -> Microsoft Corporation) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WDTDrv; C:\WINDOWS\System32\Drivers\WDTDrv.sys [55600 2019-10-31] (Huaqin Telecom Technology Co.,LTD -> ) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-14 11:35 - 2021-06-14 11:38 - 000000000 ___DC C:\FRST 2021-06-14 11:34 - 2021-06-14 11:34 - 002300416 _____ (Farbar) C:\Users\theow\Downloads\FRST64.exe 2021-06-14 08:58 - 2021-06-14 08:58 - 013884680 _____ (NortonLifeLock Inc.) C:\Users\theow\Downloads\NPE.exe 2021-06-14 08:58 - 2021-06-14 08:58 - 000000000 ____D C:\Users\theow\AppData\Local\NPE 2021-06-14 08:58 - 2021-06-14 08:58 - 000000000 ____D C:\ProgramData\Norton 2021-06-14 08:47 - 2021-06-14 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-06-14 08:47 - 2021-06-14 08:47 - 000000000 ____D C:\Program Files\LGHUB 2021-06-11 15:54 - 2021-06-11 15:54 - 000052083 _____ C:\Users\theow\Downloads\fonds_de_plan_a4h_a4v_a3h.zip 2021-06-11 11:14 - 2021-06-11 11:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-06-11 11:14 - 2021-06-11 11:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-06-11 11:14 - 2021-06-11 11:14 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-06-11 11:13 - 2021-06-11 11:13 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-06-11 11:13 - 2021-06-11 11:13 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-06-11 11:13 - 2021-06-11 11:13 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-06-11 11:13 - 2021-06-11 11:13 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-06-11 11:13 - 2021-06-11 11:13 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-06-11 11:13 - 2021-06-11 11:13 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-06-11 11:13 - 2021-06-11 11:13 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-06-11 11:13 - 2021-06-11 11:13 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-06-11 11:13 - 2021-06-11 11:13 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-06-11 11:13 - 2021-06-11 11:13 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-06-11 11:13 - 2021-06-11 11:13 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-06-11 11:13 - 2021-06-11 11:13 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-06-11 11:13 - 2021-06-11 11:13 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-06-11 11:13 - 2021-06-11 11:13 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-06-11 11:13 - 2021-06-11 11:13 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-06-09 10:33 - 2021-06-09 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-06-09 08:53 - 2021-06-09 08:53 - 105043188 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 10.pdf 2021-06-09 08:53 - 2021-06-09 08:53 - 066274781 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 11.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 170165779 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 9.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 164094568 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 7.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 159720323 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 5.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 149463171 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 6.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 145669220 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 8.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 122762720 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 4.pdf 2021-06-09 08:52 - 2021-06-09 08:52 - 068858467 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 3.pdf 2021-06-09 08:51 - 2021-06-09 08:51 - 143718488 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 2.pdf 2021-06-09 08:51 - 2021-06-09 08:51 - 126392435 _____ C:\Users\theow\Downloads\Copie de 𝘑𝘢𝘨𝘢𝘢𝘢𝘯 𝘛𝘰𝘮𝘦 1.pdf 2021-05-20 14:23 - 2021-05-20 14:23 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA 2021-05-20 09:57 - 2021-05-31 16:02 - 000000000 ____D C:\Users\theow\Downloads\stage 2021-05-18 09:33 - 2021-05-18 09:33 - 000000000 ____D C:\Users\theow\AppData\Local\Logitech 2021-05-18 09:31 - 2021-06-14 08:48 - 000000000 ____D C:\Users\theow\AppData\Roaming\LGHUB 2021-05-18 09:31 - 2021-06-14 08:47 - 000000000 ____D C:\Users\theow\AppData\Local\LGHUB 2021-05-18 09:31 - 2021-05-18 09:33 - 000000000 ____D C:\ProgramData\Logishrd 2021-05-18 09:31 - 2021-05-18 09:32 - 000000000 ____D C:\Program Files\Logitech Gaming Software 2021-05-18 09:31 - 2021-05-18 09:31 - 000066896 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys 2021-05-18 09:31 - 2021-05-18 09:31 - 000037200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys 2021-05-18 09:31 - 2021-05-18 09:31 - 000025928 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys 2021-05-18 09:31 - 2021-05-18 09:31 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2021-05-18 09:31 - 2021-05-18 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-05-18 09:31 - 2021-05-18 09:31 - 000000000 ____D C:\ProgramData\LGHUB 2021-05-18 09:30 - 2021-05-18 09:30 - 000000000 ____D C:\Users\theow\AppData\Roaming\Logitech 2021-05-18 09:30 - 2021-05-18 09:30 - 000000000 ____D C:\Users\theow\AppData\Roaming\Logishrd 2021-05-17 08:50 - 2021-05-17 08:50 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-05-17 08:50 - 2021-05-17 08:50 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-05-17 08:50 - 2021-05-17 08:50 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-05-17 08:50 - 2021-05-17 08:50 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-05-17 08:50 - 2021-05-17 08:50 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-05-17 08:50 - 2021-05-17 08:50 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-14 11:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-14 11:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-06-14 11:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-06-14 11:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-06-14 10:47 - 2020-11-30 13:43 - 000000000 ____D C:\Users\theow\AppData\Local\Discord 2021-06-14 10:47 - 2020-06-18 17:48 - 000000000 ____D C:\Users\theow\AppData\Roaming\discord 2021-06-14 10:21 - 2020-07-10 21:28 - 000000000 ___HD C:\temp 2021-06-14 10:07 - 2021-05-11 09:01 - 000000000 ____D C:\Users\theow\AppData\Local\SolidWorks 2021-06-14 10:07 - 2021-05-10 19:23 - 000000000 ____D C:\Users\theow\AppData\Roaming\SOLIDWORKS 2021-06-14 10:07 - 2020-06-22 20:38 - 000000000 ____D C:\Users\theow\AppData\Local\CrashDumps 2021-06-14 08:52 - 2021-04-03 18:58 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-14 08:52 - 2019-12-07 16:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat 2021-06-14 08:52 - 2019-12-07 16:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat 2021-06-14 08:51 - 2020-07-18 14:45 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-14 08:51 - 2020-03-24 09:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-06-14 08:50 - 2021-04-03 18:57 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-711823210-1418918789-249467907-1001 2021-06-14 08:50 - 2021-04-03 18:50 - 000002424 _____ C:\Users\theow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-06-14 08:50 - 2020-03-24 10:57 - 000000000 ___RD C:\Users\theow\OneDrive 2021-06-14 08:50 - 2020-03-24 09:57 - 000000000 ____D C:\ProgramData\NVIDIA 2021-06-14 08:46 - 2020-03-24 10:54 - 000000000 __SHD C:\Users\theow\IntelGraphicsProfiles 2021-06-14 08:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-06-14 08:45 - 2021-04-03 18:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-06-14 08:45 - 2021-04-03 18:49 - 001378904 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-06-14 08:45 - 2021-04-03 18:48 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-14 08:45 - 2020-03-24 09:45 - 000000000 __HDC C:\Intel 2021-06-14 08:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-06-11 16:31 - 2020-03-24 09:57 - 000083702 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1 2021-06-11 16:31 - 2020-03-24 09:57 - 000030804 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1 2021-06-11 16:31 - 2020-03-24 09:51 - 000000000 ____D C:\ProgramData\Goodix 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-06-11 16:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-06-11 16:31 - 2019-12-07 11:03 - 001572864 _____ C:\WINDOWS\system32\config\BBI 2021-06-11 11:42 - 2021-04-03 18:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-06-11 11:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-06-11 11:08 - 2020-06-19 23:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-06-11 11:06 - 2020-06-19 23:48 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-06-11 08:43 - 2020-12-30 00:37 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-06-10 16:28 - 2020-03-24 10:54 - 000018155 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1 2021-06-10 13:16 - 2020-08-27 12:32 - 000000000 ____D C:\Users\theow\AppData\Local\Spotify 2021-06-10 13:16 - 2020-08-19 15:10 - 000000000 ____D C:\Users\theow\AppData\Roaming\Spotify 2021-06-10 09:27 - 2020-07-10 19:02 - 000000000 ____D C:\Users\theow\AppData\Local\Adobe 2021-06-10 08:44 - 2021-01-10 01:52 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-06-09 16:27 - 2020-03-24 09:57 - 000013884 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1 2021-06-09 10:33 - 2020-10-07 12:41 - 000002400 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2021-06-09 10:33 - 2020-10-06 18:09 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-06-09 10:33 - 2020-10-06 18:09 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-06-09 10:33 - 2020-10-06 18:09 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-06-09 10:33 - 2020-03-24 10:02 - 000000000 ____D C:\Program Files\Microsoft Office 2021-06-09 10:27 - 2020-03-24 09:57 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1 2021-06-09 10:26 - 2020-06-18 18:09 - 000007388 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1 2021-06-04 15:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-06-04 09:18 - 2020-08-21 00:27 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-06-03 14:15 - 2020-11-15 16:48 - 000000000 ____D C:\Users\theow\AppData\Roaming\FasterThanLight 2021-06-03 13:27 - 2020-06-18 16:24 - 000000000 ____D C:\Users\theow\AppData\Local\D3DSCache 2021-06-02 14:08 - 2021-04-03 18:54 - 000004178 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1605881437 2021-06-02 14:08 - 2020-11-20 16:10 - 000001412 _____ C:\Users\theow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2021-06-02 11:20 - 2021-02-02 21:46 - 000000000 ____D C:\Users\theow\AppData\Roaming\HabboCity 2021-05-30 17:06 - 2020-06-19 12:17 - 000013042 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1 2021-05-27 16:17 - 2020-06-19 00:05 - 000016924 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1 2021-05-25 08:47 - 2020-06-19 21:14 - 001694672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2021-05-25 08:47 - 2020-06-19 21:14 - 000250304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2021-05-25 08:47 - 2020-06-19 21:14 - 000192952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2021-05-25 08:47 - 2020-06-19 21:14 - 000159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2021-05-25 08:47 - 2020-06-19 21:14 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2021-05-25 08:47 - 2020-06-19 21:14 - 000038328 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2021-05-25 07:48 - 2020-08-21 00:27 - 000725304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-05-25 07:48 - 2020-08-21 00:27 - 000470328 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-05-20 16:31 - 2021-04-03 18:50 - 000000000 ____D C:\Users\theow 2021-05-20 14:23 - 2020-09-04 23:33 - 000000000 ____D C:\Users\theow\OneDrive\Documents\My Games 2021-05-18 11:23 - 2020-03-24 10:54 - 000000000 ____D C:\Users\theow\AppData\Local\Packages 2021-05-18 09:31 - 2020-03-24 09:43 - 000000000 ____D C:\ProgramData\Package Cache 2021-05-18 08:45 - 2020-03-24 11:00 - 000000000 ____D C:\Users\theow\AppData\Local\PlaceholderTileLogoFolder 2021-05-17 09:55 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-05-17 09:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-05-17 08:52 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll ==================== Fichiers à la racine de certains dossiers ======== 2020-07-10 19:18 - 2020-07-10 19:18 - 000000000 _____ () C:\Users\theow\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================