RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 12-04-2022 03
ExÃ©cutÃ© par pierr (administrateur) sur DESKTOP-5NOJ9HG (11-04-2022 21:25:54)
ExÃ©cutÃ© depuis C:\Users\pierr\Downloads
Profils chargÃ©s: pierr
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Chrome
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.194.0.16\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.194.0.16\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.194.0.16\OverwolfBrowser.exe <4>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Discord Inc. -> Discord Inc.) C:\Users\pierr\AppData\Local\Discord\app-1.0.9004\Discord.exe <6>
(DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\pierr\AppData\Roaming\Spotify\Spotify.exe <6>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <30>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(RuntimeBroker.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(RuntimeBroker.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(services.exe ->) () [Fichier non signÃ©] C:\Windows\Runservice.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2022-03-12] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [Discord] => C:\Users\pierr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [ApowerREC] => C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe [7197336 2018-09-04] (Apowersoft Ltd -> Apowersoft)
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952552 2020-11-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [Spotify] => C:\Users\pierr\AppData\Roaming\Spotify\Spotify.exe [20025272 2022-03-19] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1563416075-4248544364-2925839088-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2022-04-02] (Overwolf Ltd -> Overwolf Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.75\Installer\chrmstp.exe [2022-04-05] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {31202A9C-EAF0-4441-8409-D013AADCF078} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {366A360B-81D1-44AC-BEB5-9B76959CE57B} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3817392 2020-06-18] (Easeware Technology Limited -> Easeware)
Task: {503D0F64-A042-45D6-A05F-1EC22CF3990A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {670925A2-5887-4A51-A190-57B336B16F11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-24] (Google Inc -> Google LLC)
Task: {7825507B-F094-480E-B550-78122C209409} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540888 2022-04-02] (Overwolf Ltd -> Overwolf LTD)
Task: {8C5D8218-BB58-4242-855B-D73D151CDEB6} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [Fichier non signÃ©]
Task: {B9B0F06D-189D-4043-9741-E82E588A3BBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-24] (Google Inc -> Google LLC)
Task: {FDE83DB6-354D-48B4-85B3-EE286F08D458} - System32\Tasks\ChromeLoader => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'Ã©lÃ©ment de donnÃ©es a 4315 caractÃ¨res en plus). <==== ATTENTION

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{63961337-97f0-4de9-8086-ab3992e2d1cb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ebdbaa6a-29fe-4c2a-a141-b42040ec037d}: [DhcpNameServer] 192.168.1.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge: 
=======
Edge HomeButtonPage: HKU\S-1-5-21-1563416075-4248544364-2925839088-1001 -> hxxp://www.home-explore.com/
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvÃ©(e)]
Edge Profile: C:\Users\pierr\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-06]
Edge HomePage: Default -> hxxp://www.home-explore.com/
Edge StartupUrls: Default -> "hxxp://www.home-explore.com/"
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfeeÂ® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-04-07] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-29] (Oracle America, Inc. -> Oracle Corporation)

Chrome: 
=======
CHR Profile: C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default [2022-04-11]
CHR Notifications: Default -> hxxps://c.uhc.gg; hxxps://twitter.com; hxxps://www.reddit.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87infr0srvimo2003219&param1=y6bdVFVIsvuYsgEClQfz8I7gEdb7af9GSy3VsrdP%2BKL6%2B7NK%2Bj%2BuVyiXErsEJDYvMAlpKemeuvI88SEtpP86oZ96%2BPkze3cBuE3u3Z%2FK%2FzoXt%2F6s8oA0b6x8kMGfpVoXsPVi55x1mFHFdXgp1Tv0Dq%2FJBTKUvm9kZPU82Jz6NYgmlUDpI323ZsA4rvZykWGEsVK0kqne2Tt02AsPRBrJzojPH8UZJBlOPaQHXpP5tjFTeRofZYVK2pAkw3c1P7bDpyeb5W7XG3kgnqMFxm%2FQpYD6EgWDNDrNm4N6lOxtwA43aPkFfUJOzD%2FocwvkRT41pFOn0vHCRsYGYiFRamk0jJJD9A%2Bx70JJiacbTmqrV30BIWc%2B8vnsjk0xAykd13YPn%2FxrkP3g6WvjKyQXLF2uSw%3D%3D
CHR StartupUrls: Default -> "hxxps://www.laregion.fr/-Le-Site-Jeune"
CHR Extension: (Slides) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-24]
CHR Extension: (BetterTTV) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-04-03]
CHR Extension: (Docs) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-24]
CHR Extension: (GoogleÂ Drive) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Adblock360) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjchineajlfhdlaonabjhlllhmdlmdc [2022-02-22]
CHR Extension: (YouTube) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-24]
CHR Extension: (Dark Reader) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2022-03-15]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-02-16]
CHR Extension: (Sheets) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-24]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-14]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-04-07]
CHR Extension: (ProPDFConverter) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpolagaegkaihmknbompmhcedcoohjm [2020-06-12]
CHR Extension: (Instant Gaming) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2022-01-03]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Twitch Channel Points Autoclicker) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbeamibpehihpjljabhnchghlbneiane [2021-03-06]
CHR Extension: (Gmail) - C:\Users\pierr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Options) - C:\Users\pierr\AppData\Local [2022-04-11]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2020-06-04] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-02-20] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2021-12-18] () [Fichier non signÃ©]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [975088 2022-04-07] (McAfee, LLC -> McAfee, LLC)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575064 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540888 2022-04-02] (Overwolf Ltd -> Overwolf LTD)
R2 Parsec; C:\Program Files\Parsec\pservice.exe [190536 2018-07-27] (Parsec Cloud, Inc. -> Parsec)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10401912 2022-03-12] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8508504 2022-03-11] (Riot Games, Inc. -> Riot Games, Inc.)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [53128 2018-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin HÃ¶glinger-Stelzer)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-04-11 21:25 - 2022-04-11 21:27 - 000019262 _____ C:\Users\pierr\Downloads\FRST.txt
2022-04-11 21:25 - 2022-04-11 21:25 - 002365952 _____ (Farbar) C:\Users\pierr\Downloads\FRST64.exe
2022-04-11 19:47 - 2022-04-11 21:27 - 000000000 ____D C:\FRST
2022-03-23 17:55 - 2022-03-23 17:55 - 000012325 _____ C:\Users\pierr\Downloads\PAGE DE GARDE PORTFOLIO.odt
2022-03-20 12:40 - 2022-03-20 12:50 - 001125884 _____ C:\WINDOWS\Minidump\032022-85312-01.dmp
2022-03-14 21:04 - 2022-03-14 21:04 - 000112663 _____ C:\Users\pierr\Downloads\diapo parcoursup.odp

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-04-11 21:18 - 2018-08-29 18:30 - 000000000 ____D C:\Program Files (x86)\Steam
2022-04-11 21:12 - 2021-08-11 17:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-11 21:07 - 2018-08-29 18:23 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-11 20:56 - 2018-08-29 19:20 - 000000000 ____D C:\Users\pierr\AppData\Roaming\discord
2022-04-11 20:54 - 2018-08-29 19:19 - 000000000 ____D C:\Users\pierr\AppData\Local\Discord
2022-04-11 19:56 - 2021-04-14 12:12 - 000000000 ____D C:\Users\pierr\AppData\Roaming\Spotify
2022-04-11 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-11 17:52 - 2018-08-30 11:25 - 000000000 ____D C:\Users\pierr\AppData\Local\Spotify
2022-04-11 17:16 - 2021-04-14 12:00 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk
2022-04-11 17:16 - 2020-06-01 20:09 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-04-11 17:16 - 2020-03-24 23:34 - 000001711 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2022-04-11 17:16 - 2018-11-03 17:47 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2022-04-11 17:16 - 2018-10-20 14:20 - 000000016 _____ C:\ProgramData\mntemp
2022-04-11 17:16 - 2018-08-29 18:54 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-04-11 17:15 - 2020-05-01 11:03 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-04-11 17:14 - 2020-05-01 01:33 - 000000000 ____D C:\ProgramData\Riot Games
2022-04-11 12:53 - 2022-02-02 21:01 - 000000000 ____D C:\Users\pierr\AppData\Local\Overwolf
2022-04-10 09:56 - 2021-11-07 01:20 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-10 09:56 - 2020-06-20 13:16 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-10 09:56 - 2019-08-24 13:06 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-10 09:56 - 2018-10-20 14:20 - 000012720 _____ C:\ProgramData\sokqucqi.nri
2022-04-10 09:13 - 2021-08-18 10:23 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d78ecaac208ceb
2022-04-10 09:13 - 2021-08-11 18:22 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-09 11:01 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-09 11:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-09 10:28 - 2021-04-29 10:41 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2022-04-08 18:12 - 2022-02-11 20:32 - 000000679 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation.lnk
2022-04-08 13:21 - 2021-08-11 18:11 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-08 13:21 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2022-04-08 13:21 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2022-04-08 13:21 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-07 12:49 - 2022-02-02 21:03 - 000000000 ____D C:\Program Files (x86)\Overwolf
2022-04-07 12:44 - 2021-01-22 13:44 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-04-06 21:12 - 2020-05-30 01:53 - 000000000 ____D C:\Program Files (x86)\Origin
2022-04-06 14:40 - 2018-08-29 19:08 - 000000000 ____D C:\Program Files (x86)\Minecraft
2022-04-04 16:41 - 2018-09-28 21:40 - 000000000 ____D C:\Users\pierr\AppData\Roaming\obs-studio
2022-04-02 16:42 - 2020-07-01 17:26 - 000000000 ____D C:\Users\pierr\OneDrive\Documents\Trackmania2020
2022-04-02 16:42 - 2019-06-16 19:50 - 000000000 ____D C:\ProgramData\TrackMania
2022-04-02 14:26 - 2020-06-29 21:12 - 000000000 ____D C:\Users\pierr\AppData\Local\Ubisoft Game Launcher
2022-03-27 09:25 - 2019-08-08 17:50 - 000000000 ____D C:\Users\pierr\AppData\Local\CrashDumps
2022-03-23 21:13 - 2021-01-22 13:44 - 000601432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2022-03-23 21:12 - 2021-01-22 13:44 - 000483664 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2022-03-23 17:51 - 2018-08-29 19:08 - 000000000 ____D C:\Users\pierr\AppData\Roaming\.minecraft
2022-03-21 23:32 - 2021-08-11 16:47 - 000000000 ____D C:\Users\pierr
2022-03-21 21:21 - 2021-12-18 13:11 - 000000865 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2022-03-21 21:20 - 2021-08-11 18:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-21 21:20 - 2020-08-09 05:10 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-20 12:51 - 2021-12-17 10:14 - 000000000 ____D C:\WINDOWS\Minidump
2022-03-20 12:40 - 2019-08-31 21:28 - 1227876611 _____ C:\WINDOWS\MEMORY.DMP
2022-03-15 13:57 - 2018-10-19 23:01 - 000000000 ____D C:\Users\pierr\AppData\Local\ElevatedDiagnostics
2022-03-13 10:23 - 2020-05-01 01:38 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-03-13 00:43 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-03-13 00:43 - 2018-08-29 18:35 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2022-03-12 00:16 - 2020-08-03 17:00 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2022-03-12 00:16 - 2020-03-24 22:57 - 000002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk

==================== Fichiers Ã  la racine de certains dossiers ========

2020-03-02 10:14 - 2020-03-02 10:14 - 000001169 _____ () C:\Users\pierr\AppData\Roaming\AdobeWLCMR2Cache.dat
2019-08-28 11:50 - 2021-03-17 14:45 - 000004824 _____ () C:\Users\pierr\AppData\Roaming\SpeedRunnersLog.txt
2020-09-19 12:20 - 2020-12-21 19:58 - 000000081 _____ () C:\Users\pierr\AppData\Local\.bidstack.fault

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================