RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 18-04-2022 01
ExÃ©cutÃ© par 4ur4 (administrateur) sur 4UR4-PC (22-04-2022 13:00:49)
ExÃ©cutÃ© depuis C:\Users\4ur4\Desktop
Profils chargÃ©s: 4ur4
Plate-forme: Microsoft WindowsÂ 7 Ãdition Familiale Premium  Service Pack 1 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: FF
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\plugins_nms.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
(services.exe ->) (ASUSTeK Computer Inc.) [Fichier non signÃ©] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(services.exe ->) (Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(taskeng.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(taskeng.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [82992808 2022-04-15] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-227349634-2629115989-1124379718-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36705520 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-227349634-2629115989-1124379718-1000\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [1248392 2022-04-05] (AO Kaspersky Lab -> AO Kaspersky Lab)
HKLM\...\Windows x64\Print Processors\Canon MG5400 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBB.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5400 series: C:\Windows\system32\CNMLMBB.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {040C33BE-E337-4AC8-9033-20C32679A28D} - System32\Tasks\{D6A06240-3B49-4503-B829-3759CDAF0EB8} => C:\Windows\system32\pcalua.exe -a C:\Users\4ur4\Desktop\AIX_2.0_CORE_MAPS.exe -d C:\Users\4ur4\Desktop
Task: {07FD12B4-4AF3-47DF-ABC9-15B2FF521DEE} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {0C62062B-0A6D-4071-9947-82FEE1053BB5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0D8DF9F0-06FB-496B-A8CA-94DD98C394AB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {27C58B84-B2C9-4C6C-A1E5-8A179C772772} - System32\Tasks\CCleanerSkipUAC - 4ur4 => C:\Program Files\CCleaner\CCleaner.exe [30836464 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {497578CC-2509-4105-8B26-2BB2DD523CAA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4B1CBABC-94DD-48A9-8C7A-53C704D0EFA8} - System32\Tasks\{9EEBE92E-1FC9-4BB3-B73B-0983F099C52A} => C:\Windows\system32\pcalua.exe -a C:\Users\4ur4\Desktop\R2ClientInstall_v1.2.1.exe -d C:\Users\4ur4\Desktop
Task: {57DF7A0B-8361-4B08-8BD5-3302B7977B56} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2332448 2017-06-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F9C764E-63A6-4015-9413-D741EB7DEA48} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [38688 2017-06-13] (Microsoft Corporation -> Microsoft)
Task: {77CF9130-910D-4595-87F3-80C3696F572A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7EF61375-66F0-469E-986F-07ACAA76C327} - System32\Tasks\Games\UpdateCheck_S-1-5-21-227349634-2629115989-1124379718-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {8CE4A2AA-F07B-41E1-9CAA-672F5E1345FF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {90087001-CC71-4DB8-A7EA-9C238B4908F5} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [1799456 2017-06-13] (Microsoft Corporation -> Microsoft)
Task: {98D5CD87-9FFF-4DC8-8BAF-68926C64F4A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-04-07] (Piriform Software Ltd -> Piriform)
Task: {9C941D45-BB53-487C-B577-FA1AD6244E5C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {A6679B10-1822-418A-BBD6-A664560D8CDE} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1801504 2017-06-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {AE131715-6691-44FB-8C7E-BCBA0953A6FD} - System32\Tasks\{011563D3-6FFF-45C2-A130-E35478B60909} => C:\Windows\system32\pcalua.exe -a C:\Users\4ur4\Desktop\tng_2_0_installer_part_2.exe -d C:\Users\4ur4\Desktop
Task: {C4B8AD7F-9402-4D59-9E37-925B751F39EE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D2E36CA9-7E7A-4865-B908-8F2E99A1E912} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1801504 2017-06-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0D6BB71-1C86-404A-A1DF-5412D0247749} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E4E4E752-101A-4400-BFA5-61A8F404CBD7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E864B8A6-D717-4902-B74F-07B67A631527} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F115B0E9-E2A7-4B26-B501-F8ECB11311F9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F2BD78A9-F7CB-4C1A-9965-500E0E03E305} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3353784 2018-03-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {F71EACFD-6219-4024-B7EC-6908F0673E95} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB702AB4-3B01-45C8-91A5-CF7C09224A47} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2332448 2017-06-13] (Microsoft Corporation -> Microsoft Corporation)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)


==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{194BB875-9F1A-4422-94E4-5BF17991C55B}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{194BB875-9F1A-4422-94E4-5BF17991C55B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AFD157A3-FA56-4C28-9046-41C805E2C366}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: kf7xkpfs.default
FF ProfilePath: C:\Users\4ur4\AppData\Roaming\Mozilla\Firefox\Profiles\kf7xkpfs.default [2021-12-18]
FF ProfilePath: C:\Users\4ur4\AppData\Roaming\Mozilla\Firefox\Profiles\m2i51ezv.default-release [2022-04-22]
FF DownloadDir: C:\Users\4ur4\Desktop
FF Extension: (Kaspersky Protection) - C:\Users\4ur4\AppData\Roaming\Mozilla\Firefox\Profiles\m2i51ezv.default-release\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2021-12-23]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvÃ©(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-12-18] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-12-18] <==== ATTENTION

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2009-06-05] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.) [Fichier non signÃ©]
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2021-01-28] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [795376 2022-04-07] (Piriform Software Ltd -> )
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-21] (Microsoft Corporation -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [158912 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [374920 2022-04-05] (AO Kaspersky Lab -> AO Kaspersky Lab)
S2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 mi-raysat_3dsmax2017_64; C:\Program Files\Autodesk\3ds Max 2017\raysat_3dsmax2017_64server.exe [86016 2011-09-15] () [Fichier non signÃ©]
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [83616 2018-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3611808 2015-07-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [185344 2017-02-13] (Microsoft Corporation) [Fichier non signÃ©]
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20214808 2020-02-23] (Chaos Software Ltd. -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [107760 2019-06-21] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 ADIHdAudAddService; C:\Windows\System32\drivers\ADIHdAud.sys [475136 2009-06-05] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 I2cHkBurn; C:\Windows\System32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [51712 2009-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [644320 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [176864 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] (ASUSTeK Computer Inc. -> )
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [178728 2009-05-12] (Marvell Semiconductor -> Marvell Semiconductor, Inc.)
R3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [129960 2021-06-09] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [36946840 2022-01-25] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [398816 2021-06-02] (Marvell Semiconductor -> Marvell)
R3 kldlfmgr; C:\Windows\System32\Drivers\kldlfmgr.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kldlfwpk; C:\Windows\System32\Drivers\kldlfwpk.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 Kldlimpc; C:\Windows\System32\Drivers\Kldlimpc.sys [2524896 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kldlksec; C:\Windows\System32\Drivers\kldlksec.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kldlksl; C:\Windows\System32\Drivers\kldlksl.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kldlndis; C:\Windows\System32\Drivers\kldlndis.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kldlnio; C:\Windows\System32\Drivers\kldlnio.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-04-22 13:00 - 2022-04-22 13:01 - 000024524 _____ C:\Users\4ur4\Desktop\FRST.txt
2022-04-22 13:00 - 2022-04-22 13:01 - 000000000 ____D C:\FRST
2022-04-22 12:57 - 2022-04-22 12:58 - 002366464 _____ (Farbar) C:\Users\4ur4\Desktop\FRST64.exe
2022-04-15 14:05 - 2022-04-16 13:51 - 000000000 ____D C:\Users\4ur4\AppData\Roaming\discord
2022-04-15 14:04 - 2022-04-16 13:51 - 000000000 ____D C:\Users\4ur4\AppData\Local\Discord
2022-04-14 21:08 - 2022-04-14 21:08 - 000000000 ____D C:\ProgramData\Piriform
2022-04-12 23:53 - 2022-04-13 09:54 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-03-31 15:01 - 2022-03-31 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R2Games
2022-03-31 15:01 - 2022-03-31 15:01 - 000003136 _____ C:\Windows\system32\Tasks\{9EEBE92E-1FC9-4BB3-B73B-0983F099C52A}
2022-03-31 15:01 - 2022-03-31 15:01 - 000000000 ____D C:\Program Files (x86)\R2Games

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2022-04-22 13:01 - 2022-01-25 02:07 - 000000000 ____D C:\Program Files\CCleaner
2022-04-22 13:01 - 2021-10-27 14:31 - 000000000 ____D C:\Users\4ur4\AppData\LocalLow\Mozilla
2022-04-22 13:01 - 2015-10-22 10:02 - 000000000 ____D C:\ProgramData\NVIDIA
2022-04-22 12:56 - 2022-02-11 22:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-22 12:52 - 2020-01-08 01:40 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-04-22 12:51 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-22 04:16 - 2009-07-14 06:45 - 000026912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-04-22 04:16 - 2009-07-14 06:45 - 000026912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-04-22 03:03 - 2020-07-12 18:19 - 000000000 ____D C:\Program Files (x86)\Steam
2022-04-21 19:23 - 2020-11-10 20:53 - 000000000 ____D C:\Program Files (x86)\Java
2022-04-21 19:22 - 2019-10-02 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-04-21 19:21 - 2020-11-10 20:53 - 000165600 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2022-04-15 14:05 - 2017-08-17 22:11 - 000000000 ____D C:\Users\4ur4\AppData\Local\SquirrelTemp
2022-04-14 21:08 - 2015-11-30 00:47 - 000000000 ____D C:\Users\4ur4\AppData\Local\CrashDumps
2022-04-13 10:12 - 2015-10-21 21:33 - 000000000 ____D C:\Windows\system32\MRT
2022-04-13 10:09 - 2015-10-23 19:39 - 143823848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-04-13 09:54 - 2021-11-03 14:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-04-13 00:11 - 2021-11-03 14:15 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-12 09:55 - 2022-01-25 02:07 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-04-07 14:47 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2022-03-31 14:15 - 2009-07-14 17:24 - 000741642 _____ C:\Windows\system32\perfh00C.dat
2022-03-31 14:15 - 2009-07-14 17:24 - 000148840 _____ C:\Windows\system32\perfc00C.dat
2022-03-31 14:15 - 2009-07-14 07:13 - 001662166 _____ C:\Windows\system32\PerfStringBackup.INI
2022-03-28 19:13 - 2022-03-17 20:47 - 000000000 ____D C:\Users\4ur4\Desktop\Crystal_Maidens
2022-03-28 19:12 - 2015-10-30 19:09 - 000000000 ____D C:\Users\4ur4\AppData\Roaming\Audacity
2022-03-27 14:46 - 2009-07-14 07:08 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Fichiers Ã  la racine de certains dossiers ========

2017-08-18 19:16 - 2019-02-03 21:54 - 000016384 ___SH () C:\Users\4ur4\AppData\Roaming\Thumbs.db
2017-05-06 02:57 - 2017-05-06 02:57 - 000011676 _____ () C:\Users\4ur4\AppData\Roaming\UserTile.png
2020-05-02 20:23 - 2020-05-02 20:51 - 000000096 _____ () C:\Users\4ur4\AppData\Roaming\version2.xml
2017-04-22 19:52 - 2017-07-02 14:31 - 000001456 _____ () C:\Users\4ur4\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2018-09-28 14:10 - 2022-04-14 21:10 - 000000205 _____ () C:\Users\4ur4\AppData\Local\oobelibMkey.log
2020-02-26 12:55 - 2020-02-26 12:55 - 000000871 _____ () C:\Users\4ur4\AppData\Local\recently-used.xbel
2015-11-11 10:29 - 2021-03-16 23:09 - 000007608 _____ () C:\Users\4ur4\AppData\Local\Resmon.ResmonCfg
2021-01-12 16:43 - 2021-01-12 16:43 - 000000000 _____ () C:\Users\4ur4\AppData\Local\{52D14774-3B48-4F2D-80A2-3A17F7FD4AE4}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)


==================== BCD ================================

Gestionnaire de dâmarrage Windows
---------------------------------
identificateur          {bootmgr}
device                  partition=\Device\HarddiskVolume1
description             Windows Boot Manager
locale                  fr-FR
inherit                 {globalsettings}
default                 {current}
resumeobject            {a8e9f614-7742-11e5-9709-80a0e11ba584}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Chargeur de dâmarrage Windows
-----------------------------
identificateur          {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  fr-FR
inherit                 {bootloadersettings}
recoverysequence        {a8e9f618-7742-11e5-9709-80a0e11ba584}
recoveryenabled         Yes
testsigning             No
osdevice                partition=C:
systemroot              \Windows
resumeobject            {a8e9f614-7742-11e5-9709-80a0e11ba584}
nx                      OptIn

Chargeur de dâmarrage Windows
-----------------------------
identificateur          {a8e9f618-7742-11e5-9709-80a0e11ba584}
device                  ramdisk=[C:]\Recovery\a8e9f618-7742-11e5-9709-80a0e11ba584\Winre.wim,{a8e9f619-7742-11e5-9709-80a0e11ba584}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\a8e9f618-7742-11e5-9709-80a0e11ba584\Winre.wim,{a8e9f619-7742-11e5-9709-80a0e11ba584}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Reprendre â¦ partir de la mise en veille prolongâe
-------------------------------------------------
identificateur          {a8e9f614-7742-11e5-9709-80a0e11ba584}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  fr-FR
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No

Testeur de mâmoire Windows
--------------------------
identificateur          {memdiag}
device                  partition=\Device\HarddiskVolume1
path                    \boot\memtest.exe
description             Diagnostics mâmoire Windows
locale                  fr-FR
inherit                 {globalsettings}
badmemoryaccess         Yes

ParamÅ tres EMS
--------------
identificateur          {emssettings}
bootems                 Yes

ParamÅ tres du dâbogueur
-----------------------
identificateur          {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

Erreurs de mâmoire RAM
----------------------
identificateur          {badmemory}

ParamÅ tres globaux
------------------
identificateur          {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

ParamÅ tres du chargeur de dâmarrage
-----------------------------------
identificateur          {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

ParamÅ tres de l'hyperviseur
-------------------
identificateur          {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

ParamÅ tres du chargeur de reprise
---------------------------------
identificateur          {resumeloadersettings}
inherit                 {globalsettings}

Options de pâriphârique
-----------------------
identificateur          {a8e9f619-7742-11e5-9709-80a0e11ba584}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\a8e9f618-7742-11e5-9709-80a0e11ba584\boot.sdi


LastRegBack: 2022-04-18 14:11
==================== Fin de FRST.txt ========================